
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
File: hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json)
Hash identifier: toF+MAzX/ywr6oWX5BaFJ+RT9sslbpGPDnJt8jwI1kE=
Subject key identifier: E5:90:12:16:4A:CE:02:23:5C:4A:AF:74:F6:82:B4:6D:89:58:7D:51
Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
Certificate issuer: /CN=85512d19d37946cd4c236f890469635751f5d904
Certificate serial: 01988B7D5F1ECA0A104861A8BB53EE7394C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
Manifest number: 161E
Signing time: Fri 08 Aug 2025 21:01:46 +0000
Manifest this update: Fri 08 Aug 2025 21:01:46 +0000
Manifest next update: Sat 09 Aug 2025 21:01:46 +0000
Files and hashes: 1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: zn3esqBxbrsRVwuNK31IioXU12N0hol+HIWH1NJSKd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7d:5f:1e:ca:0a:10:48:61:a8:bb:53:ee:73:94:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85512d19d37946cd4c236f890469635751f5d904
Validity
Not Before: Aug 8 21:01:46 2025 GMT
Not After : Aug 9 21:01:46 2025 GMT
Subject: CN=e59012164ace02235c4aaf74f682b46d89587d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d0:f1:7c:6c:24:84:3f:fb:8a:36:24:fa:f9:
4c:72:10:b4:28:df:82:5d:91:78:4d:01:8d:31:be:
60:29:9d:9e:94:9b:9b:23:66:bb:bd:61:08:40:07:
06:27:01:41:bc:db:b6:e8:e0:02:f4:6f:8c:cd:6c:
65:1d:d6:04:52:38:b6:7c:95:53:50:48:d1:21:e3:
c5:06:b5:03:1b:35:d6:22:bb:65:8d:44:fd:ed:6c:
6e:48:66:10:e4:39:c1:57:7a:a2:40:04:f8:b5:03:
89:81:ac:e6:c6:56:5a:46:63:e7:db:9f:40:24:80:
5f:7c:fd:f4:61:a3:5c:91:30:94:84:bc:7d:cf:93:
65:52:91:23:3b:c3:90:00:c0:b8:10:2f:57:10:9c:
95:ef:19:57:2e:bd:b1:08:01:70:a9:ed:a8:8a:d4:
0d:15:ed:a1:be:23:b7:74:9b:1c:c1:ed:58:b2:d2:
f6:ff:96:8a:f8:e3:82:ae:ff:15:c7:ef:ec:2a:d6:
ea:4d:a9:fb:4f:1c:47:b7:9d:54:69:5d:e3:26:1b:
d2:08:d4:13:75:c6:b3:a2:fa:da:5f:92:0f:e4:d9:
93:83:fc:53:a9:cc:0d:9a:ee:a9:82:a7:39:cd:64:
37:37:23:5a:00:14:b1:87:9a:7a:e5:6f:19:6b:7d:
b5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:90:12:16:4A:CE:02:23:5C:4A:AF:74:F6:82:B4:6D:89:58:7D:51
X509v3 Authority Key Identifier:
keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:d3:f5:01:6f:83:c3:9b:53:5f:0c:ff:eb:07:ec:e6:9d:d2:
ff:bd:f0:df:c8:6c:2c:11:ee:dd:be:4e:ff:3d:3e:63:79:a4:
e7:1e:b5:4d:79:45:ea:dc:f4:55:e8:27:25:e3:ef:82:24:47:
96:bd:67:7d:a7:eb:93:19:4f:4d:d8:0f:15:26:37:7c:3e:8c:
6a:e8:a7:1d:32:67:46:a6:b7:18:0a:59:1f:b5:50:49:70:cb:
c3:41:87:28:f6:94:42:cc:55:59:57:11:e9:87:a5:70:6d:d8:
c1:88:4c:c8:46:dc:74:95:dc:d2:4e:fa:5c:73:34:51:79:06:
2a:1d:ac:0b:36:73:72:eb:e8:7a:50:eb:b2:14:b0:90:d2:b0:
20:85:1d:0d:b9:34:a8:56:d1:0a:1e:c7:07:76:27:12:1f:1d:
19:b6:77:42:db:43:df:f3:14:b3:67:48:bf:90:3f:ea:0c:8e:
d9:6c:6b:63:43:4e:f0:1e:00:d7:6a:35:63:55:d2:a6:27:fb:
37:ad:fe:ec:90:b3:b2:37:af:5e:11:7b:0e:6c:46:4a:92:0e:
7f:81:66:40:f3:ed:28:77:0c:a4:3d:fc:c4:87:43:88:03:3b:
42:2b:08:55:d6:24:2f:9f:f3:00:54:83:4f:fe:0e:3b:08:3e:
61:80:b9:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:23:26 2025 by rpki-client