Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier: EOYU9/Ja/dUch6ALw+cI7V3mgDVx5ro6TmElnekQIZQ=
Subject key identifier: 02:2F:87:EC:0F:94:FF:4C:8C:6E:67:83:22:28:B6:31:E8:0D:61:13
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial: 019921B05A42CEEC6E53619C0E1E4E74E8F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number: 10F9
Signing time: Sun 07 Sep 2025 01:00:29 +0000
Manifest this update: Sun 07 Sep 2025 01:00:29 +0000
Manifest next update: Mon 08 Sep 2025 01:00:29 +0000
Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: brLGPweTITqW5UZKUR/45FMnEevZBr7I3Fn6tW1BrVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:5a:42:ce:ec:6e:53:61:9c:0e:1e:4e:74:e8:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Validity
Not Before: Sep 7 01:00:29 2025 GMT
Not After : Sep 8 01:00:29 2025 GMT
Subject: CN=022f87ec0f94ff4c8c6e67832228b631e80d6113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f3:96:be:10:69:c1:ed:73:eb:91:cc:e8:f6:
6f:20:16:a2:6f:df:c6:5a:dc:b7:bd:d4:86:38:21:
27:32:0b:47:75:fc:8e:e7:7e:10:71:e5:7f:49:f1:
96:ef:06:4a:1a:c5:5f:a5:0c:9a:3a:e2:91:99:57:
4e:b0:ad:01:3d:b0:93:95:8a:d6:84:f5:f3:91:99:
0f:52:05:b7:2e:26:4c:de:d6:28:8d:14:d8:60:21:
05:bc:4e:47:47:52:f2:f9:a1:ca:3e:6d:f5:b3:60:
49:dc:9c:8f:00:6c:69:ad:85:3b:f7:54:94:27:82:
89:85:21:6e:dc:0c:32:d9:53:38:fd:37:bc:7a:8e:
aa:16:e1:6e:a0:0d:dd:52:ef:ff:60:d5:f7:e2:b0:
58:18:29:22:35:2a:d0:e0:8c:49:64:b5:e6:b8:94:
a1:bb:94:19:2d:fa:ca:75:87:0e:32:a5:5c:ed:ee:
dc:6b:78:4f:33:be:97:f1:7d:75:7e:7d:17:9e:c8:
d0:fc:13:94:2a:6c:31:32:66:58:52:be:48:b3:06:
14:2d:f1:46:d2:6d:87:c4:9a:b6:84:e1:7a:89:98:
47:49:1c:ee:28:a6:c5:0e:2b:3b:98:50:8b:0f:47:
0e:a0:51:7d:22:45:5c:47:67:e4:be:ab:48:59:6b:
b8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2F:87:EC:0F:94:FF:4C:8C:6E:67:83:22:28:B6:31:E8:0D:61:13
X509v3 Authority Key Identifier:
keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:91:d9:d1:56:7a:9f:1d:e1:53:a1:09:5b:f9:ce:8d:a6:3f:
85:bc:25:3b:3c:11:cf:a5:81:e2:0c:84:12:05:ca:21:35:9b:
b7:0a:38:4f:fa:81:7a:c0:8d:26:b0:84:e3:30:fd:9c:71:c9:
3e:65:01:6c:7b:03:60:60:e7:9d:d7:89:1d:75:72:d0:2f:25:
71:67:5f:69:bd:33:20:26:be:17:42:b1:8c:e5:1b:e7:e1:08:
cc:19:a8:46:67:03:2b:c3:ce:a2:4a:f3:bb:c9:b3:d9:d5:9e:
db:30:b9:c2:16:5b:0f:0e:4d:89:55:6c:ab:1e:7b:7a:34:df:
99:57:ab:91:68:92:4b:a4:ce:fb:2e:1c:52:60:8e:b7:a6:b2:
ef:e0:46:fc:0f:0d:84:04:9d:36:25:34:63:ce:7a:37:b8:5b:
16:7d:00:bd:f8:c4:48:f1:a6:b8:eb:92:c8:2d:49:4c:8a:e6:
9a:1c:8b:f7:b4:f0:ac:81:11:19:a2:6d:a1:43:58:ba:66:fe:
fe:4b:aa:3d:e9:a1:65:e2:61:99:bf:13:28:cb:5d:22:3c:f9:
d7:db:c4:92:f3:7a:b0:81:28:2e:2a:4c:da:04:24:18:24:ba:
76:a5:fe:bd:7a:cf:91:b1:63:4e:dd:0d:d4:e8:d5:6c:81:24:
32:48:e1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:22 2025 by rpki-client