Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
File: HAKBccHlLIrK1NspuS0hazMvAyA.mft (raw, json)
Hash identifier: /5MgGcYyqr5BYSJbq9UCCfFB4CZySSLD1SvCVWw3UNI=
Subject key identifier: F8:E8:A0:CA:BD:46:1C:2D:99:B2:D3:35:11:D9:1F:28:B9:C4:E2:ED
Authority key identifier: 1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
Certificate issuer: /CN=1c028171c1e52c8acad4db29b92d216b332f0320
Certificate serial: 0198808B99565FD2C5C63DB02BA251F7EFFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
Manifest number: 94
Signing time: Wed 06 Aug 2025 18:01:28 +0000
Manifest this update: Wed 06 Aug 2025 18:01:28 +0000
Manifest next update: Thu 07 Aug 2025 18:01:28 +0000
Files and hashes: 1: HAKBccHlLIrK1NspuS0hazMvAyA.crl (hash: +T7hxMaxEJev3aokFQ4S5g19syCsQVX2O8pb7Hw7ZD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8b:99:56:5f:d2:c5:c6:3d:b0:2b:a2:51:f7:ef:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c028171c1e52c8acad4db29b92d216b332f0320
Validity
Not Before: Aug 6 18:01:28 2025 GMT
Not After : Aug 7 18:01:28 2025 GMT
Subject: CN=f8e8a0cabd461c2d99b2d33511d91f28b9c4e2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:58:c8:7e:e6:78:a7:66:c9:38:c0:d8:df:83:
b1:dd:23:27:cf:69:0e:b8:ff:82:48:ba:3e:88:54:
25:a2:6c:ea:93:3d:1c:11:c4:95:40:21:87:84:ad:
10:ce:3a:57:ab:bd:e5:b3:a5:b4:19:7f:39:92:f8:
d9:67:f1:33:5e:20:b6:b2:d0:1f:a9:6e:94:f6:d1:
8e:8e:f9:f7:33:94:6e:41:b7:17:27:49:58:74:21:
3b:e5:65:93:af:28:f6:17:25:78:ea:2c:55:6e:c3:
2f:bd:55:6f:65:1e:ed:63:01:93:1b:92:9a:a3:8d:
4a:07:2e:ba:24:f1:47:23:67:25:36:61:92:24:9d:
09:eb:e0:c5:a2:dd:e5:8c:c7:44:26:70:b5:d4:31:
9c:c1:72:3e:2e:84:e3:ad:23:56:d5:f7:81:42:75:
50:15:07:18:eb:f4:68:74:8e:e9:f4:67:15:4a:e3:
e7:21:e0:40:ce:28:bc:64:7e:4d:f8:88:d9:e6:5a:
dc:23:b0:fe:ac:e6:58:17:60:b3:5a:7a:82:b2:b2:
16:64:ba:e1:28:8e:0b:bd:17:43:4b:84:fe:47:d9:
00:cc:a1:5f:ee:6b:4b:dd:b3:f0:dd:9f:10:b2:04:
a5:f0:43:82:05:a1:72:f2:8d:ff:fc:0e:c9:b6:6f:
b2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E8:A0:CA:BD:46:1C:2D:99:B2:D3:35:11:D9:1F:28:B9:C4:E2:ED
X509v3 Authority Key Identifier:
keyid:1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:8e:80:1a:89:bc:93:94:3d:15:b1:69:98:f5:b4:45:9f:2d:
fa:e2:40:1b:8d:c9:e2:aa:ee:2f:3d:8d:f8:c6:18:bd:6f:2f:
90:c4:51:57:49:bd:73:19:a5:c0:87:39:c8:47:d0:2b:e5:f9:
aa:de:27:70:1e:57:a3:3c:77:34:90:76:3b:cb:5c:f2:1d:97:
24:7c:10:4d:05:15:09:cc:30:3d:5f:70:99:8e:8f:32:c8:52:
f7:d0:39:65:08:0b:21:96:79:38:d9:b6:8a:88:1c:81:03:58:
43:87:86:07:28:98:12:5e:8c:e5:6d:f0:1b:6d:51:9e:a1:29:
fe:39:f6:b7:a7:d6:ea:de:bb:25:04:37:10:8a:0d:ec:5c:bb:
d6:a8:7b:d8:b2:0b:80:2a:f8:6b:d6:95:66:01:cd:4e:22:6e:
23:a1:57:d6:6c:0d:2b:ab:cf:c0:7c:39:16:2d:9f:ed:78:c3:
8a:dc:f8:80:de:68:03:28:ba:98:d1:16:66:21:75:d5:5e:88:
aa:8e:43:55:2b:b8:4a:35:f1:97:70:9c:1d:3a:c7:f9:4d:e5:
6c:4c:df:aa:77:29:a7:26:7d:83:ee:b4:c1:ed:34:64:c9:53:
17:0c:8f:b3:ce:04:51:c9:66:76:1a:b3:6a:dd:0c:5d:5d:85:
e4:7f:f3:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:16:20 2025 by rpki-client