Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: I8rjXZMdrss4w89bbB1cqMOfMbizpVg1TyjCtnSHZ70=
Subject key identifier: FA:13:5F:78:4D:E6:43:62:0B:17:6C:71:EB:A0:6B:95:B2:FA:E4:06
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 0198458977F6E1011170FDD2CD7EBCC2CEC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0C54
Signing time: Sat 26 Jul 2025 07:01:33 +0000
Manifest this update: Sat 26 Jul 2025 07:01:33 +0000
Manifest next update: Sun 27 Jul 2025 07:01:33 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: Iud+3PEKIGXJgoWLuQZGDVzqAV/mcVqB9VyFxn8bJPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:89:77:f6:e1:01:11:70:fd:d2:cd:7e:bc:c2:ce:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: Jul 26 07:01:33 2025 GMT
Not After : Jul 27 07:01:33 2025 GMT
Subject: CN=fa135f784de643620b176c71eba06b95b2fae406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d7:1f:aa:bb:20:2b:8a:4f:89:2e:1d:6a:66:
09:04:73:e5:2a:fb:62:84:6e:91:c8:de:ef:d9:6e:
44:18:9d:c9:b6:d7:cc:85:f8:4f:8d:4a:38:b5:07:
45:30:58:ab:60:74:4e:b9:68:8b:1d:b4:36:6b:07:
18:ba:5f:08:42:be:cd:45:ec:22:da:5d:2e:ac:17:
e9:1b:a0:27:c0:d0:42:b7:70:bd:09:36:74:e6:e5:
6f:87:f5:86:9d:6d:6f:63:92:a6:29:01:c5:2d:cc:
e4:7f:07:66:1d:f3:21:79:3a:e9:be:88:bd:03:98:
cd:35:53:83:40:7e:7a:cd:16:22:5c:09:60:9e:70:
a3:cd:28:d2:8f:d9:52:a3:19:df:c8:d0:2a:b9:7d:
32:ac:2b:a6:c8:aa:bc:c5:b1:fb:22:da:8d:a2:25:
32:45:52:5a:aa:d1:02:e5:52:99:81:28:45:e8:57:
80:82:7f:6e:84:6a:3e:d5:6d:e1:f4:3b:85:50:d8:
c1:6f:ee:f5:81:eb:41:ca:f5:11:09:42:62:f7:92:
22:bd:9d:5d:48:f7:b0:a7:6e:65:e6:a9:ad:65:a3:
92:7c:df:d1:f8:70:80:f3:18:1b:38:cf:6f:2f:3d:
27:46:de:ce:b6:cb:85:19:92:8f:ba:04:8d:55:25:
75:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:13:5F:78:4D:E6:43:62:0B:17:6C:71:EB:A0:6B:95:B2:FA:E4:06
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:af:4a:6c:91:2a:f8:80:f5:ab:50:b4:66:9f:fb:3b:a3:4a:
35:d9:de:39:3b:ac:ad:9d:2d:45:d0:a9:d9:12:97:07:64:a6:
ac:7c:cf:82:7d:91:15:ee:75:04:38:5a:2c:f5:77:6e:9c:72:
53:ea:6a:d3:c1:d3:0d:25:a6:4a:ac:59:48:35:06:8d:df:80:
f5:ac:b2:13:15:c4:b3:49:f1:31:4e:9c:78:e5:a9:1f:a3:d0:
cf:14:69:1d:2d:80:fe:d8:ce:6d:7a:b4:1b:bf:d7:31:e5:0b:
75:a2:2e:3a:48:ae:6d:7b:82:ac:3e:a5:0b:42:74:e6:33:08:
df:4d:5d:32:d0:c5:76:64:c7:d1:ba:6b:72:a0:9c:07:36:8f:
e7:40:d1:a6:c8:b7:0d:a0:87:51:e9:fb:13:02:79:99:86:f2:
2e:f6:bd:b9:23:b0:87:a6:02:8e:16:32:6b:f1:8e:e6:bf:6f:
69:85:06:7a:51:0f:3d:e2:29:fc:b5:36:a2:a4:2a:fd:b1:d3:
00:2b:51:98:f8:e9:25:e3:c0:f6:dd:5e:50:33:a2:8c:c2:99:
46:45:3e:47:f8:b3:26:27:37:f2:06:64:58:c7:04:5a:16:35:
5b:7e:3d:6b:9f:62:3e:2b:f0:21:f4:20:5c:97:d8:6e:c0:48:
2a:29:2c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:03:23 2025 by rpki-client