Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: Js56iyDaceazpdWRCvEDtKwqcdO7Apeu68QIspvTxxo=
Subject key identifier: 44:11:DC:E6:4D:41:C2:CA:AA:8E:99:87:70:29:71:BF:DD:D9:A0:9B
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 01991809D89266CADD2ACA3294ED811F4AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 099E
Signing time: Fri 05 Sep 2025 04:02:02 +0000
Manifest this update: Fri 05 Sep 2025 04:02:02 +0000
Manifest next update: Sat 06 Sep 2025 04:02:02 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: VyX4Ft2UmOzLA4tdw9XhHyyJhr3HcxjoPI9DG87HI4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:09:d8:92:66:ca:dd:2a:ca:32:94:ed:81:1f:4a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: Sep 5 04:02:02 2025 GMT
Not After : Sep 6 04:02:02 2025 GMT
Subject: CN=4411dce64d41c2caaa8e9987702971bfddd9a09b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a2:eb:3e:60:a9:ef:63:8d:82:01:38:5c:07:
75:1e:47:36:a3:b6:46:4e:ce:2a:9e:3a:04:70:8e:
b9:04:f3:65:48:f6:6a:85:a0:b6:ab:97:e7:02:95:
47:46:d8:f9:00:c7:0e:d0:d7:c4:3c:dc:07:a1:8e:
d9:07:98:31:a8:06:2a:78:01:38:0c:0e:54:b0:4c:
a9:9c:2f:68:ad:e9:69:4b:06:9d:44:2a:0f:87:ac:
fd:a7:45:b7:10:43:37:f5:07:77:0a:fd:7b:a0:c5:
49:8a:d2:4e:19:0e:0a:9a:b8:e3:9a:99:ac:9b:e7:
d5:95:3d:37:86:4e:c2:80:15:c7:27:8b:fc:43:c1:
7a:3f:a0:d0:51:97:44:ef:b5:c3:2c:d6:66:a5:48:
89:c7:c1:1a:b0:97:bf:97:37:27:18:e7:ed:cc:b5:
71:6e:ae:09:3a:41:7e:ce:3d:19:c6:d2:e8:e8:4c:
68:6b:16:7c:22:0d:82:12:f5:42:90:0f:fa:47:77:
5e:3f:19:58:ff:72:49:88:71:07:9b:74:33:28:03:
c2:3b:5a:94:8e:4e:a9:b6:dc:64:96:34:c6:67:d3:
24:08:1c:2f:76:0e:b6:e4:0f:33:7d:a9:60:5c:b7:
8c:ab:92:e5:02:3c:c1:1b:74:9e:9f:d9:f5:92:0e:
35:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:11:DC:E6:4D:41:C2:CA:AA:8E:99:87:70:29:71:BF:DD:D9:A0:9B
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:0a:38:32:f8:ff:da:4a:cc:33:15:ac:85:aa:04:5c:0c:26:
5b:df:f1:b0:94:33:bc:4e:2a:04:ee:73:53:86:7a:76:03:c4:
58:31:2e:e8:fa:ec:db:fb:b3:99:46:d9:a0:9a:55:e7:2f:e8:
d4:19:ca:cc:6e:2e:25:6c:f3:4d:b9:55:a4:52:51:52:53:2e:
e7:59:09:90:e1:94:45:5d:24:d5:fa:a4:5a:b6:8f:4e:dd:52:
e2:24:6c:b1:cd:24:2c:bc:20:87:cd:18:ab:12:72:4e:fc:5c:
de:78:94:7f:ae:fa:3b:2a:f0:6b:81:7e:9d:ad:0c:23:0a:e2:
43:1d:f8:fe:9e:ca:7c:56:b8:44:c8:64:ba:73:60:ad:c0:ab:
5f:ca:9a:8a:d7:7f:22:87:ce:04:1a:bc:a3:f8:ac:60:37:3a:
d5:da:a2:70:d8:58:4c:9b:93:9f:23:a2:39:15:38:2c:c7:12:
dd:00:a9:ec:cb:56:48:f3:b9:93:d7:53:56:d4:6a:d4:29:c9:
62:5d:fe:bb:63:09:51:bf:06:6c:b1:80:88:df:91:57:5c:69:
27:b5:df:d2:40:c7:00:49:46:b2:eb:1e:cb:96:38:5d:fc:47:
d7:ab:47:46:71:cd:6f:6e:e1:e9:cf:48:e5:c6:78:ab:e6:66:
e7:80:22:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 07:37:31 2025 by rpki-client