Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json)
Hash identifier: v3wDWAvHRM2OA3L9H1u0SuoSgBCgozI4gSqL5SttHqA=
Subject key identifier: E2:BD:8D:54:75:14:3D:17:C0:D9:2A:A5:99:51:78:11:B9:02:3A:29
Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445
Certificate serial: 019847E4CE3B9D5ADC55FD9BF94D000A5DE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
Manifest number: 1217
Signing time: Sat 26 Jul 2025 18:00:33 +0000
Manifest this update: Sat 26 Jul 2025 18:00:33 +0000
Manifest next update: Sun 27 Jul 2025 18:00:33 +0000
Files and hashes: 1: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: cTPjKrlIlu8qaE03hgp0nMf109BjinmnJbN5ZfprMOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e4:ce:3b:9d:5a:dc:55:fd:9b:f9:4d:00:0a:5d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c237b6883697912957f8d3373702bc906d26445
Validity
Not Before: Jul 26 18:00:33 2025 GMT
Not After : Jul 27 18:00:33 2025 GMT
Subject: CN=e2bd8d5475143d17c0d92aa599517811b9023a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:91:ce:72:64:35:95:8b:09:69:2c:a1:1b:c7:
6c:18:d7:7b:c0:e9:ae:5f:18:ac:d0:e4:bf:46:fd:
6e:ef:80:3e:0b:0e:55:cd:c2:42:c7:b1:21:08:e4:
7d:e9:22:db:18:c0:4c:40:02:9b:0b:e0:dd:97:2f:
a9:47:52:0c:47:c4:20:a4:f0:91:c9:f9:86:70:03:
27:bd:90:69:db:b4:4d:6e:68:02:ed:5f:ad:b7:c1:
a7:1c:cc:e9:a5:fa:25:3c:1d:8c:16:7b:9e:7e:3a:
0f:dc:ce:78:c2:40:0b:75:ad:1d:95:2f:da:98:51:
fa:1e:a5:26:0e:22:28:bd:bc:21:f9:15:53:57:31:
0e:ab:72:a8:d9:d9:bf:32:64:bd:b6:01:ff:f5:a8:
34:56:f6:82:b4:96:2d:28:83:a2:c8:ac:88:73:12:
3f:24:bb:4c:ee:48:ee:3f:5f:d2:30:02:f8:8e:1a:
7d:b2:8e:09:0e:85:b5:5e:c8:ac:a1:40:06:2c:62:
67:03:75:28:d3:97:37:35:f8:02:d7:7b:bf:9a:a4:
c2:9a:c7:00:4e:98:fe:df:ed:c0:2f:2a:c8:5c:90:
b3:32:12:9b:74:23:a2:fb:8b:de:1d:77:0a:3c:5e:
ff:05:02:9b:9f:3c:39:78:0e:70:fa:52:32:31:61:
5d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BD:8D:54:75:14:3D:17:C0:D9:2A:A5:99:51:78:11:B9:02:3A:29
X509v3 Authority Key Identifier:
keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:c6:1e:96:d4:1b:8f:07:8f:ed:ba:69:b8:1f:24:89:c5:0b:
16:00:56:b5:15:c7:ed:7c:7d:3c:52:84:1c:4d:9f:c9:d6:36:
08:bb:00:5f:f2:8b:64:63:98:89:aa:68:1a:d5:c7:9b:8c:50:
eb:dc:8b:21:a4:00:f2:63:0b:45:75:59:a9:de:93:6f:d6:98:
1c:1c:2c:0d:f1:1b:f6:01:ff:4a:76:c7:e6:e8:8b:85:af:74:
04:45:73:2d:62:bf:96:92:ff:97:30:dd:5b:77:51:33:7a:b7:
43:d7:45:8e:df:cb:bf:ea:c5:70:71:04:f7:72:85:44:f6:3b:
bb:fb:fb:e8:5c:4e:33:b9:be:57:0a:bd:02:1c:55:1e:03:9d:
e3:19:11:b4:75:4f:39:83:74:11:b4:56:8e:68:31:be:4e:d2:
34:c1:fb:38:ed:53:9e:c8:fd:9e:6a:31:fb:89:4c:91:c4:30:
41:3d:dd:95:a6:38:b0:82:8e:ca:1f:2b:5c:82:c7:da:28:30:
f2:16:8d:4e:bf:da:6e:62:0d:41:82:56:42:e9:b3:ba:aa:d1:
5f:ef:c0:fc:5a:9c:df:54:20:43:66:f4:4f:05:19:d7:a4:0d:
f1:84:db:ca:ca:d2:a4:e3:b5:82:c7:fc:2a:f2:74:64:70:01:
13:34:e4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:23:18 2025 by rpki-client