
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: r0IhV8JaR0ZWIBe5P/dropdu3teVF8yVs1U8WJf8pBc=
Subject key identifier: 97:0B:DC:98:D3:77:7F:98:D6:DD:04:85:3A:36:FB:86:97:49:BF:3C
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 0198744FBAE8160C754B3875B2A101DD9233
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 122E
Signing time: Mon 04 Aug 2025 09:00:38 +0000
Manifest this update: Mon 04 Aug 2025 09:00:38 +0000
Manifest next update: Tue 05 Aug 2025 09:00:38 +0000
Files and hashes: 1: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: 9rfLkGFaN+M+kPDaBNKXPjsRKwzbh8KGvGYE+MGz80I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:4f:ba:e8:16:0c:75:4b:38:75:b2:a1:01:dd:92:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: Aug 4 09:00:38 2025 GMT
Not After : Aug 5 09:00:38 2025 GMT
Subject: CN=970bdc98d3777f98d6dd04853a36fb869749bf3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:86:0c:38:60:b6:16:39:92:03:8b:d7:83:95:
8f:f7:2f:7a:6a:5f:33:27:b3:f1:f2:a9:df:94:bb:
73:74:e0:e8:15:1c:34:b1:95:d1:9e:24:16:8e:ff:
49:66:65:aa:49:14:85:b4:32:7e:50:50:d7:0c:fc:
1b:ef:37:68:53:e4:c3:61:9e:f2:04:7c:02:8e:7b:
35:14:37:fa:96:02:98:6f:82:a4:fa:96:cb:9d:d5:
02:90:93:85:cc:db:e2:3e:55:7e:24:98:5f:e6:59:
6b:c3:84:92:35:43:cd:b8:ca:85:cf:6e:75:58:61:
08:10:0f:64:f2:38:67:a9:cd:43:83:6f:84:77:51:
5b:b5:c9:be:d5:b1:66:6c:ad:10:cc:16:2d:23:59:
a0:f2:71:2a:94:53:df:75:d9:5c:33:30:fb:68:0a:
b3:41:c0:1f:7c:d3:1d:32:69:ed:da:83:af:74:a0:
06:77:56:54:20:50:49:d7:37:35:13:d7:61:62:ff:
02:11:a9:c4:67:97:1f:14:fb:74:4f:99:32:15:fa:
a8:da:12:9d:9f:d6:de:7b:31:a3:b8:ec:60:10:c4:
c7:19:de:3c:40:f0:79:b6:72:f6:0f:4c:d7:bd:67:
10:d4:8d:bc:7c:c0:ab:d7:bf:49:5b:3e:a7:fc:d6:
02:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:0B:DC:98:D3:77:7F:98:D6:DD:04:85:3A:36:FB:86:97:49:BF:3C
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:12:db:34:5c:d2:d1:7c:48:9b:80:54:ec:b4:46:cd:f3:03:
f8:a2:e0:08:69:64:21:af:4f:63:92:35:52:d0:14:d1:6d:08:
9f:63:df:1c:d9:f4:fb:f3:be:f0:75:6d:f3:b7:2f:07:2d:fd:
f0:97:a2:92:0d:66:d6:9f:ff:cf:b6:88:f4:6c:43:53:7f:ba:
30:e8:ec:f1:45:64:f5:df:a0:a5:2b:ca:9c:81:2d:24:73:ed:
7c:3a:a4:bb:3d:7e:8d:76:71:ec:81:c9:5e:6f:98:5b:e8:3d:
23:2d:de:6f:e1:b0:d3:30:5c:de:81:cc:17:12:e6:d5:50:79:
4a:fc:e8:af:a4:87:0a:b3:ff:a4:14:fe:62:18:a6:7b:62:5e:
5e:ff:4f:3d:78:c4:7b:65:77:39:b3:0b:85:3b:ab:8f:ff:ae:
83:1d:87:19:fd:de:89:71:b4:a8:9c:22:dd:47:83:a0:54:3f:
97:29:d9:24:31:e5:04:e8:6d:ac:c9:3b:88:ef:b9:85:dc:25:
61:ae:8e:52:d6:9f:5d:46:a9:9f:3b:1c:d0:80:47:bf:7b:ac:
0f:e6:e7:cd:79:dc:19:e3:a3:04:b5:b5:e7:83:cc:c9:8d:78:
ce:bb:1a:23:5b:ec:bb:89:9d:3e:bc:ba:02:28:5e:13:cf:0c:
30:40:c3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:12 2025 by rpki-client