Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: 8nLo4pEDQ2VzhEbh5eYkeHQSMx9yok+kZWMUgQfrbBo=
Subject key identifier: A4:4B:6B:16:B6:EF:0A:24:7E:C6:CF:DA:D5:83:FC:4D:2B:5A:BE:76
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 019847ADA432782F5ED0EDC95710619E3E41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 0717
Signing time: Sat 26 Jul 2025 17:00:18 +0000
Manifest this update: Sat 26 Jul 2025 17:00:18 +0000
Manifest next update: Sun 27 Jul 2025 17:00:18 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: HuqVl5F/aSibvTBhY7bga+yKE5UsQrlC6v9AHOwj+iY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 15:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:ad:a4:32:78:2f:5e:d0:ed:c9:57:10:61:9e:3e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Jul 26 17:00:18 2025 GMT
Not After : Jul 27 17:00:18 2025 GMT
Subject: CN=a44b6b16b6ef0a247ec6cfdad583fc4d2b5abe76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fb:d6:d7:1e:9c:24:b4:f2:51:b1:5e:4f:5d:
b2:ce:a7:b3:fe:e0:03:4d:47:ee:5e:1e:e3:32:0f:
a6:63:db:dc:3f:0a:30:ea:5c:bf:1d:1d:40:dd:e4:
3f:9b:2f:41:30:34:8a:d1:c6:06:89:df:51:12:f6:
55:c4:49:31:03:fc:e8:9a:9b:a3:da:97:65:7a:a8:
d9:55:55:11:01:8b:a8:3d:ef:ee:dc:8c:dc:ae:84:
34:ae:99:5a:6d:04:55:d7:18:c4:d5:2a:32:c9:db:
f4:39:fc:3c:41:25:a0:13:b8:4a:91:6a:05:df:7b:
96:27:16:5d:22:bd:a9:46:7f:f3:1b:b0:15:c9:00:
ba:1a:ea:d0:51:96:6d:5c:df:8a:01:c8:f4:f5:de:
a6:fd:ea:ac:b7:19:0b:b5:12:42:ed:76:86:61:8e:
21:e2:5c:78:0f:cb:6f:ef:4c:f8:3b:39:16:fb:6f:
b9:56:f6:0d:f3:e0:02:fe:ed:f7:a7:c7:06:a5:33:
cc:ac:3a:85:f9:b6:25:5e:e9:c0:83:90:7b:15:b9:
9d:37:d0:cc:76:f4:ab:9b:da:78:2c:7b:3c:ad:2c:
1b:63:50:64:0f:bc:78:2f:68:e9:10:5c:b7:a2:b0:
2e:bb:7a:79:ad:5f:f0:56:3b:9d:ff:9a:07:40:19:
1f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4B:6B:16:B6:EF:0A:24:7E:C6:CF:DA:D5:83:FC:4D:2B:5A:BE:76
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:52:08:12:8e:f6:d6:44:83:79:9b:2b:68:ad:b3:57:37:6b:
86:57:c2:8b:26:2c:f2:84:48:7d:a0:27:84:0e:57:5e:96:b3:
9c:b5:c8:64:8d:c8:b3:1b:67:0e:5e:6c:b2:75:31:a9:b9:a8:
0e:19:d3:f7:1b:56:d7:02:a4:55:74:42:32:98:b5:ac:00:4a:
b8:61:7f:71:cb:ae:10:74:aa:cf:b7:0b:7d:20:c5:0e:7c:88:
02:30:4c:ff:9b:48:5f:2e:d7:3e:52:e0:4e:81:5d:37:17:0f:
a8:ce:ec:eb:35:f2:2b:b1:52:67:59:fc:ac:7e:21:4f:6d:05:
da:03:fd:20:97:79:6d:f7:19:4b:f1:3b:d0:9b:87:c1:5b:d8:
44:cc:5d:16:ce:bd:61:29:4c:95:b3:e6:7e:da:52:fc:ee:8b:
88:e9:bf:bd:de:75:8e:35:7c:a8:e5:45:08:8f:69:17:a7:5c:
f2:99:56:91:82:23:40:1d:53:b0:8a:fa:68:13:86:00:38:4a:
53:b6:27:e4:38:87:41:10:55:5e:6e:c8:66:92:a4:a8:37:89:
9a:d3:a9:c6:0a:07:d5:92:d9:9e:9f:f7:cb:fd:25:22:cc:02:
a2:bd:a1:ed:86:42:4b:b3:1f:e4:9d:e8:57:d8:44:fb:ae:1f:
1b:55:7a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 23:16:51 2025 by rpki-client