Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/15ae7a-883e-45dc-a804-aa6434e54f39/1/hUYhlvWiZe4_S4kOKGZyQCCNO68.mft
File: hUYhlvWiZe4_S4kOKGZyQCCNO68.mft (raw, json)
Hash identifier: XWU8SyKrboZ5/tehOAugEPnW8nXR1MYMiuofulQxnP4=
Subject key identifier: 35:B0:9B:F0:24:33:AE:B9:70:97:98:43:1F:D0:97:27:91:E8:95:D7
Authority key identifier: 85:46:21:96:F5:A2:65:EE:3F:4B:89:0E:28:66:72:40:20:8D:3B:AF
Certificate issuer: /CN=85462196f5a265ee3f4b890e28667240208d3baf
Certificate serial: 0198481BB9647952D7DD5AB01BE986050033
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUYhlvWiZe4_S4kOKGZyQCCNO68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/15ae7a-883e-45dc-a804-aa6434e54f39/1/hUYhlvWiZe4_S4kOKGZyQCCNO68.mft
Manifest number: 043F
Signing time: Sat 26 Jul 2025 19:00:33 +0000
Manifest this update: Sat 26 Jul 2025 19:00:33 +0000
Manifest next update: Sun 27 Jul 2025 19:00:33 +0000
Files and hashes: 1: hUYhlvWiZe4_S4kOKGZyQCCNO68.crl (hash: DUCknj3S48jzy2G6Rpxu+Ctt4tG0qE5bD2MnI6bJ0nA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/15ae7a-883e-45dc-a804-aa6434e54f39/1/hUYhlvWiZe4_S4kOKGZyQCCNO68.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/15ae7a-883e-45dc-a804-aa6434e54f39/1/hUYhlvWiZe4_S4kOKGZyQCCNO68.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUYhlvWiZe4_S4kOKGZyQCCNO68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:1b:b9:64:79:52:d7:dd:5a:b0:1b:e9:86:05:00:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85462196f5a265ee3f4b890e28667240208d3baf
Validity
Not Before: Jul 26 19:00:33 2025 GMT
Not After : Jul 27 19:00:33 2025 GMT
Subject: CN=35b09bf02433aeb9709798431fd0972791e895d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4b:e1:64:a7:6c:68:db:1e:9d:74:c9:8d:60:
a9:95:18:41:f3:b1:e5:da:ef:c1:b8:bd:8f:05:9e:
c6:3f:60:bb:69:95:8d:61:7e:94:69:8d:0e:9f:39:
12:85:85:2f:4f:4b:9f:36:7d:ef:28:ca:54:d0:c7:
23:d0:38:b2:87:a9:d7:a1:50:82:39:1c:27:38:88:
ce:3e:6a:a2:8b:5e:5b:d1:64:80:5e:ed:30:10:c7:
2f:66:21:b6:ec:b2:9e:5e:1c:e2:ff:3e:1f:6b:1c:
43:3c:73:6d:35:6f:4b:d0:c4:ad:05:c0:42:0b:4d:
7f:3f:44:2d:65:2c:bb:eb:04:5a:9a:84:fc:67:ca:
e5:bd:24:48:be:8d:13:3b:31:1f:50:00:c7:9a:81:
b2:ea:b4:e8:19:be:a4:ad:c4:4d:28:f2:31:ed:cb:
bf:41:47:1e:80:ce:fb:9a:82:5b:89:4e:e6:08:52:
c5:eb:28:31:64:c0:c5:49:72:c7:3c:0c:86:7f:c7:
c2:21:56:e9:af:6e:93:5f:b0:b1:49:8d:fd:b8:2d:
eb:b2:b8:54:5f:60:1c:6e:82:a2:93:db:d9:54:a8:
59:b6:b0:d3:02:30:0e:9a:da:41:82:2f:e6:11:ed:
d7:4b:46:f3:bb:57:f4:26:0f:8f:c8:59:60:db:40:
55:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B0:9B:F0:24:33:AE:B9:70:97:98:43:1F:D0:97:27:91:E8:95:D7
X509v3 Authority Key Identifier:
keyid:85:46:21:96:F5:A2:65:EE:3F:4B:89:0E:28:66:72:40:20:8D:3B:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUYhlvWiZe4_S4kOKGZyQCCNO68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/15ae7a-883e-45dc-a804-aa6434e54f39/1/hUYhlvWiZe4_S4kOKGZyQCCNO68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/15ae7a-883e-45dc-a804-aa6434e54f39/1/hUYhlvWiZe4_S4kOKGZyQCCNO68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:bb:03:b7:50:5c:86:74:e9:cb:55:2f:56:10:9e:ab:98:36:
07:81:13:8a:c1:73:ec:5a:56:0b:b8:58:44:58:18:81:cf:16:
03:d4:c0:9b:ae:d7:8b:3f:f2:67:b2:c9:c0:94:b1:43:8a:3c:
5e:44:d0:66:4d:fb:5c:5d:40:eb:3a:32:b4:58:cc:4b:de:e9:
6b:6e:6b:b0:0e:20:a3:d5:61:b2:1b:2d:20:40:1d:e8:ab:10:
34:9b:95:01:fd:a4:da:82:0b:8b:92:fc:9f:6e:94:73:d8:8b:
17:50:b0:cc:4b:35:c4:ee:b2:2e:42:d0:34:11:a6:9a:3c:f8:
9a:c2:7b:04:d5:e6:1d:26:99:ce:e9:e2:8f:87:ae:68:c9:3e:
f8:eb:fa:b5:e2:41:39:d5:bd:13:5b:7a:6f:78:7d:7b:5e:29:
92:68:13:d1:66:ab:a3:bb:a3:6e:93:36:84:02:83:ce:e7:00:
91:57:44:56:90:77:d1:66:34:c1:2d:31:d3:04:7d:2f:5b:58:
a9:48:c5:16:1f:85:d5:ef:cc:4f:e5:ff:16:ef:85:f5:0a:35:
70:3f:86:b3:f4:70:18:06:70:02:fa:d3:94:c3:ef:58:52:bc:
4d:9d:c1:06:b2:95:9a:ce:53:74:18:d8:11:04:48:03:8c:76:
cf:67:e2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:52:51 2025 by rpki-client