Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier: ht4xBHa/SdpDwh10rcmDx1ZoepVq3O+Bzlo94B956mk=
Subject key identifier: 44:7F:66:00:09:69:94:F2:D8:CF:74:BB:D2:E7:A4:C4:A4:2B:F0:3D
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial: 0197C9F145D08EB8687F1B3EF7EB5DB5F626
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number: 1047
Signing time: Wed 02 Jul 2025 07:02:01 +0000
Manifest this update: Wed 02 Jul 2025 07:02:01 +0000
Manifest next update: Thu 03 Jul 2025 07:02:01 +0000
Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: dTvhCma/j7rg1DSFrucS8x4IkTLgZ6kb/3dletlIsr8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f1:45:d0:8e:b8:68:7f:1b:3e:f7:eb:5d:b5:f6:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Validity
Not Before: Jul 2 07:02:01 2025 GMT
Not After : Jul 3 07:02:01 2025 GMT
Subject: CN=447f6600096994f2d8cf74bbd2e7a4c4a42bf03d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a0:0a:c0:f3:b9:a6:6c:88:c3:67:7e:6c:d6:
64:84:16:95:85:da:72:f9:d6:c8:d7:62:d9:8f:51:
79:25:a2:b4:3a:60:a5:bc:ae:65:67:da:c9:79:e8:
8c:6e:ff:27:83:78:d5:20:71:dd:37:7f:df:4f:67:
de:f7:a0:7f:3d:32:0f:7a:3e:00:20:39:95:7a:4f:
29:08:94:32:f9:b2:c6:73:ea:ec:84:83:f3:68:64:
e2:db:6f:e2:18:f4:cb:15:51:12:76:73:22:1a:f5:
5c:71:e2:5e:33:05:7e:21:dc:61:a0:41:2a:90:ee:
58:4a:fc:3a:09:b6:08:70:0b:f2:8f:0d:d6:ae:5d:
f8:49:4a:b9:b6:07:c1:8b:23:4b:80:9a:7d:26:3f:
37:bb:b4:ad:ee:e9:64:a8:16:67:e3:01:a1:c6:2b:
90:ef:a5:59:e4:48:55:68:a9:33:25:bd:cf:4d:32:
90:bc:0e:41:8e:bf:b3:d3:3a:5d:38:ff:d9:1e:16:
9e:c3:59:74:fe:05:bf:24:db:ce:69:13:c4:e9:01:
60:a1:cd:38:66:8c:45:41:56:4a:7e:7a:6f:33:8e:
a0:96:84:b0:a4:4c:0c:f3:ea:ef:dd:6e:f8:92:9c:
61:bf:02:93:2f:43:3d:38:26:dd:ec:03:17:f0:1d:
5f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7F:66:00:09:69:94:F2:D8:CF:74:BB:D2:E7:A4:C4:A4:2B:F0:3D
X509v3 Authority Key Identifier:
keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:3a:88:62:c1:d4:68:8c:83:75:11:9c:eb:a6:74:f5:a4:f5:
76:78:51:28:24:57:5c:58:74:e8:df:83:75:b1:8d:6f:1f:d3:
c5:3d:14:85:02:d1:b7:61:db:af:c7:ae:dc:9d:70:d7:82:10:
b6:70:64:31:22:70:37:ff:9b:3c:66:36:6e:94:ca:49:97:33:
80:d0:e9:98:a0:cb:2f:fa:a9:4e:cc:5b:a5:39:30:9f:88:95:
e2:50:80:0b:79:96:d5:7f:46:a8:db:15:82:a3:05:24:32:f4:
a2:7e:46:b0:c5:ea:ec:1d:c3:60:c9:55:83:a2:7f:df:41:d1:
33:9e:a4:64:e1:47:be:ce:1d:37:d8:d8:a7:18:39:48:65:83:
30:05:dd:ae:56:09:4d:c8:d8:c0:df:e2:97:d2:a8:a5:a7:78:
7a:67:48:52:f8:d5:17:0b:33:fd:00:d9:9c:e5:4d:ef:25:6a:
b9:7a:c7:66:87:8e:62:66:05:c6:35:b9:69:af:b9:b3:f1:58:
01:8a:ed:89:36:0f:9b:a4:bb:a6:95:67:dc:a8:12:b7:e7:cf:
12:18:84:e6:e6:f4:6c:c0:77:cb:ee:b9:d9:26:f4:01:bd:da:
74:4a:9e:a2:1f:9d:2b:53:45:ac:91:11:ea:32:3b:57:c1:63:
89:ae:f6:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:10:00 2025 by rpki-client