Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json)
Hash identifier: jBRLqoP6AfdO3Ao6fYuR9TSn0GfpK0P8QjaNdx2fjEQ=
Subject key identifier: 1D:41:81:82:DC:3B:AA:EB:04:1A:C0:F6:63:FC:E1:41:01:31:FD:46
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 0198541F9E1EE4ADBF4928F195BEE99F59FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
Manifest number: 0E88
Signing time: Tue 29 Jul 2025 03:00:14 +0000
Manifest this update: Tue 29 Jul 2025 03:00:14 +0000
Manifest next update: Wed 30 Jul 2025 03:00:14 +0000
Files and hashes: 1: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: akTBUpWGvhRVz9vcrsrXbC2DDNBtTpEho88RLLWSwYs=)
2: pkoA1nbX0r8lwiVwxbfu80R8kOU.roa (hash: dAPrEkvaKQk5s5Z7WHpV1G3F1Sw4lOg/QTiasC7ZX1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 03:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:1f:9e:1e:e4:ad:bf:49:28:f1:95:be:e9:9f:59:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Jul 29 03:00:14 2025 GMT
Not After : Jul 30 03:00:14 2025 GMT
Subject: CN=1d418182dc3baaeb041ac0f663fce1410131fd46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:22:a3:e4:76:70:10:22:6e:25:82:16:e5:1b:
89:be:9e:90:dd:64:64:22:45:85:67:75:f7:3c:18:
d0:2a:a7:4f:41:3e:9e:73:dd:3a:c8:ae:96:d7:3a:
e8:46:80:69:21:72:f4:c1:b4:3a:bf:f4:87:50:96:
59:bc:b2:59:35:57:cc:83:58:41:96:10:33:cb:7e:
9a:9c:93:cb:f3:80:63:ed:84:15:e7:be:84:8d:6f:
70:1a:77:aa:ae:91:a5:55:2a:52:ac:86:1b:75:cc:
09:8d:39:f3:44:fc:5b:dd:63:ee:fe:40:f5:ce:8a:
b1:52:28:a8:a6:e7:b5:1d:d1:95:9f:24:13:4b:f8:
3d:a9:90:40:da:52:62:8c:98:57:96:91:df:98:52:
e8:ef:bf:0c:e5:3c:c1:c8:49:3a:b6:87:ac:86:17:
e7:1b:82:50:49:5c:ed:b5:3b:9d:3e:75:ff:b8:5a:
a3:84:2e:68:df:9f:df:98:4a:ed:11:b5:73:fc:c3:
63:ee:d4:0f:6d:5a:4e:63:30:11:08:0f:e0:7f:e7:
25:28:75:48:3a:c4:7c:3e:4f:80:3e:a4:57:67:1b:
c6:09:96:28:f5:d8:d9:69:99:27:a0:dc:36:74:86:
c7:22:8e:02:8e:ca:df:63:f7:c0:37:d3:95:77:e4:
62:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:41:81:82:DC:3B:AA:EB:04:1A:C0:F6:63:FC:E1:41:01:31:FD:46
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:2e:e1:59:d8:a8:d2:19:e3:d9:e0:8f:b7:84:cd:6b:89:00:
da:5d:5e:7e:58:05:15:e5:91:98:d4:3d:e0:8f:68:f8:40:ae:
2a:55:f8:25:f7:c3:7e:40:81:94:02:b8:0f:76:8f:49:52:bc:
07:45:6e:a5:42:d2:62:c1:f4:d0:c5:74:18:4f:bf:83:aa:d6:
a8:bb:49:a2:99:32:3d:ba:83:81:b0:7a:95:df:91:58:02:65:
22:9a:a4:ff:33:02:d2:b4:53:aa:57:b4:a0:d2:54:a7:64:e8:
cf:e7:55:d4:99:33:73:61:db:93:6a:27:46:78:04:4e:9b:54:
0a:f3:96:a6:d1:5f:f8:88:b7:eb:65:45:a8:73:92:cc:e6:4d:
0a:5f:ce:b8:32:0b:5e:a1:61:0c:be:e1:a0:73:1c:d6:78:b1:
d4:84:d4:2b:44:04:77:17:24:99:31:a4:b1:4d:67:b7:1d:f7:
83:ad:58:88:05:08:5a:5d:39:36:e3:00:09:5d:10:9f:b0:3b:
b2:11:7f:6a:3d:cf:ac:26:90:27:54:55:7e:bc:a1:47:c2:51:
2f:ee:4c:65:fc:20:9d:1f:59:50:51:dc:2d:0f:0f:41:2a:33:
4b:43:41:50:60:f8:d3:e1:25:fa:1b:f3:68:fd:6b:77:c4:70:
6b:63:4b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 12:02:45 2025 by rpki-client