Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
File: HhkRubtcij4eK4pRFl-KcaCSxo0.mft (raw, json)
Hash identifier: el94qzTFF+akQ3kKjB45YoXeg5DHcwXgSsnNwF+yXA8=
Subject key identifier: A9:74:77:D2:B0:FD:6A:D0:7E:84:41:08:FA:5C:7B:8E:C4:50:09:A4
Authority key identifier: 1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
Certificate issuer: /CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Certificate serial: 0198752BD1DB4815F300A554605DA0DEA3FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
Manifest number: 11D0
Signing time: Mon 04 Aug 2025 13:01:02 +0000
Manifest this update: Mon 04 Aug 2025 13:01:02 +0000
Manifest next update: Tue 05 Aug 2025 13:01:02 +0000
Files and hashes: 1: HhkRubtcij4eK4pRFl-KcaCSxo0.crl (hash: vY2jBTgT4aGEV7wSj+QjKPuyKOjU1enb90Ug3vZLFL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:2b:d1:db:48:15:f3:00:a5:54:60:5d:a0:de:a3:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e1911b9bb5c8a3e1e2b8a51165f8a71a092c68d
Validity
Not Before: Aug 4 13:01:02 2025 GMT
Not After : Aug 5 13:01:02 2025 GMT
Subject: CN=a97477d2b0fd6ad07e844108fa5c7b8ec45009a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:dc:38:9e:f4:0e:19:90:11:a7:55:32:67:43:
cb:40:1a:7b:4f:6a:78:d0:97:fc:08:e7:d8:f5:88:
82:cd:75:ae:06:35:ff:b2:66:19:a4:e7:7c:51:a1:
dd:19:eb:5c:5a:26:76:1e:80:95:2b:65:44:63:bf:
10:06:22:ef:83:8d:da:5e:1e:ab:82:21:b7:9f:88:
66:51:74:5e:8c:cc:1a:b1:06:87:ec:31:25:8b:ce:
5b:66:1e:1b:a2:18:e3:b6:08:3a:85:c4:cd:27:87:
3d:1a:dd:72:e5:63:a6:0b:87:1c:18:8c:36:60:b0:
2b:ae:c1:55:cf:a7:d8:3f:b2:44:fd:4b:fc:61:72:
f9:67:82:df:fb:05:be:2e:75:2d:02:41:dc:63:8a:
02:0f:35:7f:47:9a:a0:ea:3c:1c:97:bf:31:36:f5:
c9:5a:49:38:f2:0a:fb:8b:7f:18:f1:14:84:88:b4:
24:90:9f:61:8d:53:8e:97:ea:d2:a4:f1:3a:15:7a:
0c:26:c4:5f:00:86:e3:e3:49:4f:18:fa:06:b8:d3:
34:03:5a:71:6b:06:a1:44:9e:f7:44:77:e1:ce:87:
60:3e:99:1f:ea:cf:18:91:54:37:07:c5:b6:16:ba:
76:8f:d6:fe:14:8d:63:12:97:77:25:89:d9:e4:45:
ed:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:74:77:D2:B0:FD:6A:D0:7E:84:41:08:FA:5C:7B:8E:C4:50:09:A4
X509v3 Authority Key Identifier:
keyid:1E:19:11:B9:BB:5C:8A:3E:1E:2B:8A:51:16:5F:8A:71:A0:92:C6:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhkRubtcij4eK4pRFl-KcaCSxo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/761ab1-d572-496e-adad-b7686b9061a5/1/HhkRubtcij4eK4pRFl-KcaCSxo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:b6:4f:a5:00:23:80:b0:b3:3c:e5:cb:15:0c:b7:3e:de:42:
e3:92:34:95:ee:7d:b4:90:21:74:15:df:31:ee:28:ae:47:d6:
8e:22:c3:ea:f0:5f:7d:ca:44:94:5b:70:3d:02:48:f6:57:68:
67:52:cf:1e:59:c4:58:7d:06:97:ed:3e:b1:f0:e3:9b:bb:63:
b4:39:60:85:e5:ab:e9:3c:0d:eb:9f:09:d6:89:29:00:84:88:
60:7d:40:60:0c:c2:88:4b:a9:12:38:b7:be:70:47:07:52:12:
6e:5c:56:a9:19:6a:30:b5:0a:2f:e3:b6:b0:29:5d:11:1e:57:
ea:90:32:f3:6d:cc:2a:d1:93:94:e0:ae:46:45:5c:27:c7:af:
1e:d0:47:61:16:03:69:23:0e:09:72:98:42:93:74:de:7c:ef:
8a:29:ba:4f:01:d6:79:46:26:dd:73:d8:c0:75:a5:d7:4f:a9:
27:72:6d:77:fd:18:3e:b5:22:f6:41:d8:26:a7:46:fe:fe:2c:
dd:55:0e:49:44:db:33:c6:13:d5:b2:10:cd:95:7e:86:8a:cc:
62:88:d4:9f:82:30:7e:0e:ab:5f:eb:d2:f6:fc:ed:ef:e5:f8:
bd:ba:ec:8a:00:d9:26:7a:c1:d9:45:c9:16:b0:ee:49:e4:18:
7f:37:72:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:38:01 2025 by rpki-client