
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
File: hTq7t9e8xKXFbpEu76wbC7BFUCE.mft (raw, json)
Hash identifier: PiMVonUAqSttzQ023motUQTMX0JX5Dv8YeVTgZs9kHk=
Subject key identifier: F9:9E:A1:80:70:4F:27:BB:85:35:8A:45:7D:79:5D:53:FD:97:41:BB
Authority key identifier: 85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21
Certificate issuer: /CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021
Certificate serial: 01988C21036EDA01DA72FFDAC29C192B3F15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
Manifest number: 056F
Signing time: Sat 09 Aug 2025 00:00:30 +0000
Manifest this update: Sat 09 Aug 2025 00:00:30 +0000
Manifest next update: Sun 10 Aug 2025 00:00:30 +0000
Files and hashes: 1: hTq7t9e8xKXFbpEu76wbC7BFUCE.crl (hash: lMuTrKd1cT2hYADb2lh9/OickeKYNGFrVtQANkFSd6E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:21:03:6e:da:01:da:72:ff:da:c2:9c:19:2b:3f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021
Validity
Not Before: Aug 9 00:00:30 2025 GMT
Not After : Aug 10 00:00:30 2025 GMT
Subject: CN=f99ea180704f27bb85358a457d795d53fd9741bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:df:ef:cc:ba:99:ff:c7:91:dc:e9:ed:ac:18:
2f:3c:42:bc:57:ab:a6:5e:e7:22:2d:45:d0:bc:00:
61:f2:fc:47:29:ca:35:cc:ac:48:54:2e:f2:6d:08:
f7:9d:cf:81:f5:56:f3:05:ec:75:5d:0a:2c:b9:b5:
0a:e6:5b:f2:06:75:77:8d:d2:83:31:fc:91:bc:72:
20:58:79:ac:dd:cb:54:5b:cf:dc:4e:87:ce:42:23:
82:7d:d9:21:e1:2f:76:9c:53:e7:95:a6:4e:9e:1a:
63:22:9d:08:99:dd:df:9a:03:49:b5:b4:73:87:5e:
ce:60:73:d1:96:6b:d0:31:28:16:c7:ba:23:79:19:
e6:b3:01:c3:b5:40:70:a8:df:ba:2f:a1:45:ab:be:
27:35:12:83:09:a0:30:6a:c4:d7:55:1f:d2:aa:ad:
5e:dc:3f:e8:46:db:dd:56:cc:a5:16:61:02:55:7d:
e5:6a:d6:14:00:de:4f:35:94:4e:4c:8e:11:d9:e0:
d8:65:59:ca:78:9e:28:71:2a:53:cd:c7:57:f3:7f:
39:a3:57:d6:6c:10:6c:b2:86:7a:ac:85:33:dc:54:
27:c9:36:cf:8b:11:37:6b:cb:cb:f5:8b:10:c7:19:
2a:e1:6b:6f:ea:02:ef:b5:6a:00:fe:07:e2:0b:95:
16:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9E:A1:80:70:4F:27:BB:85:35:8A:45:7D:79:5D:53:FD:97:41:BB
X509v3 Authority Key Identifier:
keyid:85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:dc:87:52:fc:59:57:47:13:61:f1:ef:b3:df:b8:c0:97:c1:
66:d0:a4:9e:98:2b:54:c4:71:62:6d:bc:30:67:3b:16:09:cc:
ce:f0:79:6f:8c:bd:2c:b7:a5:7c:20:b5:87:77:a5:b4:68:30:
43:9e:b0:a0:70:e1:0e:2c:43:d2:7b:f8:da:64:33:e1:ad:de:
d6:9f:7d:47:50:e2:15:84:89:2e:eb:5d:b4:d8:6b:e9:fe:14:
02:49:7a:4a:53:52:91:83:bc:0c:82:37:c1:08:0a:82:99:76:
d1:77:74:ea:4a:31:6c:15:ff:45:58:66:1b:55:5a:4a:0b:8a:
8f:ac:fe:c2:53:e0:65:30:3c:eb:c9:39:7c:3f:b6:6d:cd:5c:
7b:44:d8:c0:84:b8:4e:c2:d3:ab:45:7c:f6:c9:90:01:6e:d9:
2c:14:79:62:ce:45:b7:04:80:93:79:6a:e5:b8:11:48:78:c4:
f2:93:1f:68:a2:91:dd:e3:4d:c7:34:0f:4e:50:58:a9:e5:f1:
cb:52:25:3a:9c:c0:27:31:1e:15:98:c3:50:21:8b:a1:79:09:
df:f3:fc:a7:0e:5c:a8:f0:5d:57:7a:4f:c1:68:be:e0:01:ee:
5e:dd:e5:7d:de:34:9c:68:97:e9:38:f9:7e:c5:53:ba:55:ce:
b0:17:37:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:57 2025 by rpki-client