
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
File: WrJabDkrjmejrSH2D9MxHWt_Hlw.mft (raw, json)
Hash identifier: ggPLgXrnKY0pEf2e43RCeo7JbsDJnYNec5fCmA1aXyQ=
Subject key identifier: 14:EE:04:29:4D:A3:F7:4F:31:1A:6D:94:3C:DB:4B:CF:E4:B4:6E:01
Authority key identifier: 5A:B2:5A:6C:39:2B:8E:67:A3:AD:21:F6:0F:D3:31:1D:6B:7F:1E:5C
Certificate issuer: /CN=5ab25a6c392b8e67a3ad21f60fd3311d6b7f1e5c
Certificate serial: 01987F79360E6DAF20470B3620E84698CB9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
Manifest number: 0EB8
Signing time: Wed 06 Aug 2025 13:01:46 +0000
Manifest this update: Wed 06 Aug 2025 13:01:46 +0000
Manifest next update: Thu 07 Aug 2025 13:01:46 +0000
Files and hashes: 1: WrJabDkrjmejrSH2D9MxHWt_Hlw.crl (hash: //GWgbRDVcwzT/lJgGLYWfsSMS6MRJzIpUgqIyCy33c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 13:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:79:36:0e:6d:af:20:47:0b:36:20:e8:46:98:cb:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab25a6c392b8e67a3ad21f60fd3311d6b7f1e5c
Validity
Not Before: Aug 6 13:01:46 2025 GMT
Not After : Aug 7 13:01:46 2025 GMT
Subject: CN=14ee04294da3f74f311a6d943cdb4bcfe4b46e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:12:68:22:29:68:dc:e2:82:e1:4a:3d:f4:77:
38:84:ea:91:62:5f:fb:3e:db:cd:6d:75:74:c8:ea:
bf:4f:2a:98:4d:48:5d:29:29:e1:72:eb:e7:0e:b7:
24:5d:28:9b:f7:f3:84:55:2a:47:67:53:21:a2:90:
97:a9:a5:9f:40:9a:90:78:44:d2:39:ad:ae:dc:e7:
5f:7e:c6:0b:c9:e4:1b:e0:3b:ad:6c:75:9f:6d:14:
4b:e3:a9:64:64:98:82:48:55:cd:7c:ea:c7:45:b2:
f5:26:73:7f:3f:8c:70:c7:90:0f:c1:d3:5c:32:a6:
17:79:74:8b:8e:af:bc:c7:55:ea:73:24:1a:de:22:
94:6e:17:18:af:a7:b9:3d:bb:b4:94:34:2e:48:ee:
93:52:85:7d:a0:8e:1a:93:4f:5a:66:4a:8e:7f:3a:
68:9a:44:c9:32:cd:da:ad:f5:a9:c7:af:18:6c:c4:
2b:50:4b:25:cc:96:df:66:49:46:5b:2c:57:46:96:
bd:5e:8f:fe:d8:18:02:b9:e5:43:03:d6:c0:b6:56:
d4:c9:c0:56:3d:2d:4d:f3:30:03:7a:82:39:fa:81:
0f:35:c9:1b:b1:54:44:11:0d:8d:e1:57:62:d8:a5:
d8:2f:32:73:e6:3c:af:85:31:f4:37:48:49:7e:00:
41:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:EE:04:29:4D:A3:F7:4F:31:1A:6D:94:3C:DB:4B:CF:E4:B4:6E:01
X509v3 Authority Key Identifier:
keyid:5A:B2:5A:6C:39:2B:8E:67:A3:AD:21:F6:0F:D3:31:1D:6B:7F:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:29:39:ea:d4:ca:d1:a0:ce:b8:6f:6e:b0:82:10:72:dd:55:
a1:5b:5b:aa:9f:bb:45:fb:3d:17:c1:b0:e5:fd:16:97:fd:f6:
c8:10:6f:d6:c5:46:b6:2b:02:c7:2f:f6:78:cd:c4:a8:2f:67:
38:c1:5c:d5:9b:e7:dc:f6:4f:e3:3e:79:ec:c9:19:66:78:1b:
17:ab:37:c3:db:08:8e:f8:e9:86:f4:0f:76:16:ca:39:18:ba:
e1:fe:fe:bb:fa:81:39:0e:ad:0b:62:c7:98:5d:d9:68:67:8c:
50:d6:c3:47:73:2c:e8:41:9c:67:f6:d4:04:00:5f:52:7c:c4:
79:64:93:1d:86:70:7d:13:a9:78:da:71:38:a3:6d:b5:71:c9:
a8:10:04:43:e9:00:62:c0:25:6f:ee:8f:0b:65:6a:c1:c6:4d:
c4:d3:b6:16:98:38:b3:ba:63:62:10:7c:27:2b:1f:89:fa:b6:
dc:63:1f:56:f4:a1:5e:d9:37:69:46:c2:5c:d6:bf:78:f0:0b:
6d:c5:76:99:b3:64:f9:82:bf:32:02:46:46:ce:7d:f0:a9:eb:
ea:ad:43:99:80:59:a3:11:68:57:e5:e8:0d:c9:ce:8d:a0:9a:
79:49:eb:a2:08:46:3e:d7:2b:43:8a:be:c5:f9:b4:f1:eb:21:
81:d8:4f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:25:08 2025 by rpki-client