Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
File: HYFeKwc-sEV2vLJN3k341Ot8nwg.mft (raw, json)
Hash identifier: KFVzG/0+fbZ7TzFZU2Ynk3UrWWonDIPA6WLCVyBsc9U=
Subject key identifier: BE:68:DD:25:D0:DC:C2:63:1B:0F:47:07:B9:99:E2:C2:74:CE:25:3E
Authority key identifier: 1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08
Certificate issuer: /CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08
Certificate serial: 019A4D74640669EB7778FB9FBF01ADD2536D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
Manifest number: 0BF3
Signing time: Tue 04 Nov 2025 06:01:04 +0000
Manifest this update: Tue 04 Nov 2025 06:01:04 +0000
Manifest next update: Wed 05 Nov 2025 06:01:04 +0000
Files and hashes: 1: HYFeKwc-sEV2vLJN3k341Ot8nwg.crl (hash: sPkTTwPR7M4CivmJLS5RLLQHMvcF1HSI+oEZKmEh6NE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:64:06:69:eb:77:78:fb:9f:bf:01:ad:d2:53:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08
Validity
Not Before: Nov 4 06:01:04 2025 GMT
Not After : Nov 5 06:01:04 2025 GMT
Subject: CN=be68dd25d0dcc2631b0f4707b999e2c274ce253e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a4:48:0b:0c:51:d8:03:c9:f5:c7:f9:b2:ce:
11:8e:a4:ee:79:ff:0a:67:1b:d7:28:e0:0a:eb:7e:
6f:59:c9:14:75:a3:45:17:24:db:55:fa:cc:7f:e6:
b0:d6:0b:8c:df:37:f5:d1:d0:ae:f3:fe:ec:2b:f5:
45:68:d4:1e:95:72:ae:81:e2:b0:f4:78:77:96:fb:
dd:2b:23:9e:bd:1b:0f:1e:ef:db:8e:15:8e:f2:73:
44:89:44:ce:ea:b3:84:0c:54:56:8c:59:66:f7:8e:
51:3e:3c:33:6e:96:09:0c:d1:25:ea:8c:ba:04:45:
e4:a4:39:9c:56:01:e9:b3:10:c3:0c:1b:8d:26:dd:
59:84:c7:17:1b:d3:c5:f1:ec:d1:28:2e:67:53:f1:
b2:3f:e8:5f:20:31:a9:04:f1:52:2b:5b:f2:52:87:
eb:f3:fd:95:4a:fc:89:6e:78:17:5e:8b:c6:19:01:
a0:b5:2d:0f:ef:8e:d7:b1:18:5e:3a:30:24:9b:51:
e4:9e:73:3d:20:af:28:ea:21:c3:67:ba:ce:a7:b9:
c5:41:5a:f3:af:80:02:5b:7a:ef:22:8b:c5:79:29:
e2:d4:a7:22:f1:6c:26:02:0b:2f:cb:ca:a4:b7:fd:
19:89:11:f6:74:96:86:23:56:a8:16:34:e1:79:52:
8f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:68:DD:25:D0:DC:C2:63:1B:0F:47:07:B9:99:E2:C2:74:CE:25:3E
X509v3 Authority Key Identifier:
keyid:1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:16:50:8b:d2:97:21:61:46:21:f3:ab:b1:71:af:ef:d5:bb:
81:63:b2:cf:fd:3a:24:a0:26:d1:03:18:ed:43:0d:c8:b5:62:
01:54:cb:43:0a:82:01:e6:52:de:ce:62:b8:b4:97:9e:76:4c:
fd:39:d4:f9:5a:e9:88:c6:97:4f:dd:3e:40:2c:d4:10:d3:5d:
6b:c0:a1:51:5c:76:72:c1:26:29:fd:c6:01:60:22:0e:68:2b:
db:e1:15:7b:b1:d4:7e:a0:85:3a:6d:0d:94:3b:f7:ee:45:46:
7c:0c:80:7f:0b:c3:0f:38:f7:82:ea:08:29:1e:42:8a:a3:54:
73:7e:e6:9c:ab:31:b2:eb:79:75:e2:41:d8:dd:20:c7:ea:78:
6f:ad:13:5c:fb:48:73:f5:81:28:08:c4:a1:6e:5a:02:a9:25:
2a:9e:bd:1b:ab:19:02:51:ca:c4:9b:e2:47:39:4f:f6:f1:9b:
66:7c:dd:46:91:c6:9b:37:3a:63:30:d5:0e:b4:9b:a6:ba:a8:
1f:42:db:35:d2:f0:92:34:43:fe:29:50:89:17:d8:91:00:e2:
2c:05:8a:63:9f:c8:b4:1a:5a:67:11:ef:4f:ec:de:43:a9:4d:
a1:5c:a2:f4:31:47:60:0f:7d:7e:17:42:f9:d1:15:a7:ef:c2:
9f:ba:1e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:14 2025 by rpki-client