Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
File: HzkK-DPX1CaQQsJJvPSWSFcglbY.mft (raw, json)
Hash identifier: c3uDzjXmcXT8f4taz280K8Tn6b/GBETUrrEpd/syTFs=
Subject key identifier: BA:52:34:1D:94:5E:17:7B:9E:21:99:B9:42:C6:10:C2:C5:23:BF:54
Authority key identifier: 1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
Certificate issuer: /CN=1f390af833d7d4269042c249bcf49648572095b6
Certificate serial: 019A50E449FAF8482965E9BCD2E61972DC12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
Manifest number: 11AD
Signing time: Tue 04 Nov 2025 22:02:09 +0000
Manifest this update: Tue 04 Nov 2025 22:02:09 +0000
Manifest next update: Wed 05 Nov 2025 22:02:09 +0000
Files and hashes: 1: HzkK-DPX1CaQQsJJvPSWSFcglbY.crl (hash: UHBsOqur5zlpmKHxUiwI6Loc4tIgO5z68sYfc3ubJTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e4:49:fa:f8:48:29:65:e9:bc:d2:e6:19:72:dc:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f390af833d7d4269042c249bcf49648572095b6
Validity
Not Before: Nov 4 22:02:09 2025 GMT
Not After : Nov 5 22:02:09 2025 GMT
Subject: CN=ba52341d945e177b9e2199b942c610c2c523bf54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:15:10:b7:90:22:c3:57:42:bb:b7:d5:ff:
7e:ed:e0:88:45:af:f0:8a:8e:93:3b:b8:e6:d1:fc:
ce:1b:04:24:ad:6c:79:ff:4e:06:64:fb:d9:04:9a:
85:c3:a0:15:1b:ee:6d:a2:74:16:12:07:a5:60:46:
bd:7c:53:0f:bf:dd:d5:82:23:1c:d7:3b:01:58:a2:
91:02:ae:d5:f6:4b:50:60:55:bf:2d:2f:d1:ba:99:
69:71:4e:fd:85:08:eb:ee:f6:5c:56:4c:d7:ec:51:
4e:e1:81:3c:ce:3a:63:ab:88:9c:e8:3e:67:6d:8f:
b5:2d:22:44:f6:9c:f3:f3:17:a9:fa:c2:73:a0:0e:
54:d6:c7:11:d0:c0:de:1c:83:23:48:c4:a9:6f:0b:
1f:41:ba:79:80:2c:c3:35:fa:d0:c1:3c:82:cd:d4:
97:ca:43:3f:ec:fc:cb:35:29:51:64:b5:a2:a6:e4:
9a:c9:45:ce:0c:b1:81:fb:a5:c0:5e:68:e1:93:10:
9b:e8:20:ec:4e:c5:e8:e6:2a:91:4b:42:76:a5:fa:
43:50:2f:55:d0:e3:ba:ce:77:3b:b8:5e:30:d8:87:
e2:43:87:ca:ae:46:fc:a9:ef:96:5b:3b:8b:77:c7:
3a:7d:6c:f0:90:35:f5:45:37:cf:04:12:04:98:c2:
aa:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:52:34:1D:94:5E:17:7B:9E:21:99:B9:42:C6:10:C2:C5:23:BF:54
X509v3 Authority Key Identifier:
keyid:1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:98:0b:dd:83:b5:9d:4f:9f:7b:cc:aa:29:89:51:c7:05:33:
5a:e9:0c:c0:ee:29:df:55:2d:8c:18:94:14:7a:17:77:19:ab:
b9:25:8e:5d:2a:aa:cc:a2:b0:7d:90:9f:48:9b:c6:43:9f:39:
f8:41:67:26:15:2f:a0:5c:bf:e7:28:0f:ae:9c:ee:70:0a:ac:
e4:1b:75:6b:3f:7e:e0:38:5b:8e:c1:e8:cb:90:af:8d:0d:d1:
84:ce:a0:9f:85:da:15:c6:68:fd:7b:94:c3:c2:02:d6:9b:f3:
e4:29:dc:e9:7a:77:80:92:dc:5a:8f:ff:eb:9a:ba:10:c9:33:
13:4a:6d:cc:ff:ca:2f:39:39:26:a0:c5:d8:34:d2:a7:6e:77:
f2:67:ec:c6:d1:96:5f:4f:4a:c6:02:d4:b3:85:16:7c:87:82:
83:11:7e:e6:1a:cc:2d:3a:9b:03:4d:f5:d0:80:0a:df:b0:c1:
be:72:03:48:ad:d7:58:67:71:f1:3c:d4:02:7b:ae:0d:e5:35:
37:c0:88:77:61:6e:2a:8f:c6:2d:1e:ad:6f:18:bb:10:0a:d1:
f6:84:4d:d3:a0:b1:ef:1e:27:26:3c:91:b9:16:bc:ab:9a:3b:
89:6a:68:71:38:bf:85:0a:c3:2b:e6:7c:b6:b2:95:6a:81:d1:
71:1f:f0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:43:14 2025 by rpki-client