Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json)
Hash identifier: Hx90DWDcvu6kCR1+SdbzV2wOu3tKoubKJtqNdvet0/w=
Subject key identifier: 52:94:74:AF:35:11:0A:F2:05:B1:C2:9E:74:7E:07:8F:FB:B1:37:99
Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Certificate serial: 0199307F214CA2647A347511869071879382
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
Manifest number: 1679
Signing time: Tue 09 Sep 2025 22:01:01 +0000
Manifest this update: Tue 09 Sep 2025 22:01:01 +0000
Manifest next update: Wed 10 Sep 2025 22:01:01 +0000
Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: mo/Wa7hOD2ZCs+aM0e2xJPt9JBx5R2wQF+pomg8wKns=)
2: Tp4BAItGYlXYP71Yl1jvkjdBkns.roa (hash: BUC2R1hzU4lwEDEogKCUTPLUZZa/Hz8pj9j9ce25uwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:7f:21:4c:a2:64:7a:34:75:11:86:90:71:87:93:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8
Validity
Not Before: Sep 9 22:01:01 2025 GMT
Not After : Sep 10 22:01:01 2025 GMT
Subject: CN=529474af35110af205b1c29e747e078ffbb13799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b1:ea:4a:58:01:c9:46:09:0c:21:91:e1:93:
31:d4:56:c0:fb:27:a2:6c:9f:b5:d6:35:87:81:37:
c5:b3:6b:d5:e1:25:2c:24:ac:8b:c6:37:2c:b5:fc:
91:00:14:0a:54:6f:e7:8e:0c:ef:9f:b1:42:2b:53:
5c:54:94:cf:7a:98:29:ac:7f:2e:d5:aa:3a:da:b4:
55:ac:73:e4:af:ab:2f:76:95:02:19:c2:7c:1d:9b:
4f:51:90:3f:21:74:42:f5:a6:69:1b:e7:6c:85:4b:
fe:fd:7e:2c:5f:10:4a:00:17:32:80:ce:74:e5:63:
27:7e:15:6c:50:d4:58:ec:ea:e7:33:9b:96:4d:3a:
ea:79:b4:28:66:18:d7:71:02:cd:7a:82:49:93:06:
b3:ec:30:e6:02:fd:d0:9b:09:b7:e7:28:71:f3:15:
69:ad:f0:16:87:5c:46:02:88:52:78:4a:93:d6:b6:
e4:c6:62:27:9d:67:34:1a:a2:d0:54:4a:b9:0b:08:
81:17:0d:bf:3f:a5:75:01:6f:9c:f8:ac:fa:41:74:
bf:5e:92:51:f2:a6:5a:fe:8e:52:8e:8f:8c:10:79:
56:34:93:ad:5e:dc:5a:a1:aa:2a:47:79:1c:15:e8:
1a:6a:96:94:0a:d2:8d:4f:14:d6:d4:eb:a6:8c:01:
bd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:94:74:AF:35:11:0A:F2:05:B1:C2:9E:74:7E:07:8F:FB:B1:37:99
X509v3 Authority Key Identifier:
keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:bd:0b:1c:d4:1e:6d:6d:98:20:48:a0:f9:78:18:74:5b:4e:
e7:19:f1:ab:ab:c0:03:e3:6a:5b:f7:22:5f:80:93:4d:4c:61:
f1:04:59:e9:41:e3:9c:a4:36:49:6c:aa:84:86:ad:3a:9c:b9:
77:9d:0f:35:9d:d5:b9:5d:a3:5f:9b:6b:b2:6c:b1:27:ce:e6:
3d:23:c8:23:24:47:c6:ba:99:7c:66:44:d8:1f:aa:c5:5e:b6:
5c:41:58:ff:0f:02:c6:c5:12:5d:c0:92:05:2d:f9:47:e7:b9:
6c:20:16:5d:ef:73:c8:90:2c:12:17:94:55:e4:6a:0a:c0:1e:
1f:be:0b:b1:fa:4b:54:be:a9:29:c8:a9:67:f5:45:51:16:b0:
32:f0:8b:c2:76:61:7e:b8:63:a2:5c:df:68:5b:30:d7:19:ab:
81:d6:c4:77:7d:50:fb:10:87:c0:ec:21:b9:91:11:c2:1d:a8:
ac:3c:1b:31:33:95:c1:f7:f0:7f:09:70:2e:1c:bc:76:4c:25:
5e:70:46:bb:d2:ab:74:07:95:b4:6f:60:c1:47:71:74:c9:ec:
c1:b3:46:c6:19:be:af:6e:2e:c4:0b:ea:50:f5:34:8f:dd:e4:
a1:ee:d3:05:e3:83:55:b6:5e:a7:8d:62:fe:73:58:42:83:56:
59:b1:f5:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:38:13 2025 by rpki-client