
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
File: hJxbptQKtOTjm3tpttLZhEqiSK8.mft (raw, json)
Hash identifier: rNvyvRRWdBMWCUWmUQOBOQdvMKIypQM0zFsWp1LM1zY=
Subject key identifier: E4:87:08:4D:D3:39:9F:F1:27:15:81:CA:90:57:40:43:7F:60:82:BE
Authority key identifier: 84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF
Certificate issuer: /CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af
Certificate serial: 019766CDA653C7065D22A441E3F0CF6F5395
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
Manifest number: 0C6B
Signing time: Fri 13 Jun 2025 01:00:42 +0000
Manifest this update: Fri 13 Jun 2025 01:00:42 +0000
Manifest next update: Sat 14 Jun 2025 01:00:42 +0000
Files and hashes: 1: hJxbptQKtOTjm3tpttLZhEqiSK8.crl (hash: sSYP98TKix+y6NPzEG+vX0q72N7HS/kx0YspCdjgRuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:cd:a6:53:c7:06:5d:22:a4:41:e3:f0:cf:6f:53:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af
Validity
Not Before: Jun 13 01:00:42 2025 GMT
Not After : Jun 14 01:00:42 2025 GMT
Subject: CN=e487084dd3399ff1271581ca905740437f6082be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a4:47:95:9b:33:6d:22:95:60:3e:05:e8:ba:
10:ff:e1:13:1e:01:5d:4a:4d:4c:78:7a:b4:9d:28:
9c:13:f4:2e:14:31:4a:17:52:45:06:ce:59:27:c7:
1f:9d:4c:76:44:8d:c9:e5:29:21:2b:0d:1e:d8:7d:
d4:3f:f6:7f:06:88:c9:28:99:62:20:a8:4e:df:d7:
84:d0:18:5d:ef:8d:96:f0:d9:99:6f:a8:9a:c5:b6:
3a:d3:05:9a:24:4a:52:71:33:a6:da:00:d6:35:8d:
81:00:4d:12:c6:c2:d4:46:38:0c:37:ce:7f:73:85:
ae:37:71:01:9f:78:35:3a:7b:c0:e6:fc:04:14:89:
d6:77:5e:db:78:00:64:2d:d8:10:e2:90:ae:fb:00:
6c:6b:c8:3d:fc:19:5f:96:b4:c1:f9:f7:08:15:fe:
2e:d8:bc:cd:19:bf:95:b1:94:31:82:8b:49:86:6b:
5f:d0:42:49:41:fe:50:26:b6:d5:8f:46:4c:bc:4a:
4d:88:7d:cd:14:cc:1b:85:6f:18:3d:8c:ca:8d:d5:
d3:0b:90:bf:56:11:1a:79:d7:27:4c:ca:2d:a0:99:
a5:d3:af:53:84:d9:e7:63:a1:24:c7:80:4f:b8:f5:
16:96:62:b2:41:e2:91:de:22:26:c2:f1:59:3a:35:
10:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:87:08:4D:D3:39:9F:F1:27:15:81:CA:90:57:40:43:7F:60:82:BE
X509v3 Authority Key Identifier:
keyid:84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:f2:94:35:a8:22:f7:08:c9:34:cb:76:69:9c:87:10:95:51:
a5:95:44:74:3f:05:4c:92:04:af:6c:48:c4:89:78:d9:0f:e3:
2c:fa:7b:d2:bf:7c:f2:5f:c3:9d:74:27:f3:3a:d2:df:d2:b8:
25:ca:d7:bc:52:52:db:ee:02:0f:c5:25:d0:2a:17:d0:40:cb:
1f:fb:0c:ec:9d:d3:bf:48:c9:0d:94:9f:0d:9a:dc:37:96:05:
e2:4b:a9:8b:b4:ac:71:db:f6:a4:2a:aa:90:ed:e3:8a:6e:db:
5d:52:2e:90:20:6f:78:8a:45:df:8b:01:a7:b1:5e:6e:62:9b:
fc:00:ee:ce:07:3c:f6:e6:53:54:ed:31:f6:03:ed:6c:01:ea:
73:5f:f6:dc:3e:e6:15:3d:75:8c:ca:3b:3b:62:4e:24:b5:05:
8e:27:1d:a2:5d:e4:c3:9c:02:89:db:38:85:1f:63:38:d9:d3:
37:e0:30:a7:4e:9a:15:6d:5b:8f:e5:d4:14:28:b6:8f:5d:68:
34:62:ee:46:92:ca:da:60:63:ca:d8:2d:01:74:fc:e8:35:41:
36:4f:7c:59:d2:47:a8:84:dd:bd:a0:86:3f:9b:ac:9b:c2:c3:
94:80:f8:e8:2d:0e:fa:9a:7e:35:a9:6e:dd:e6:34:e9:23:16:
6b:b6:21:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdmzaZTxwZdIqRB4/DPb1OVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OWM1YmE2ZDQwYWI0ZTRlMzliN2I2OWI2ZDJkOTg0NGFh
MjQ4YWYwHhcNMjUwNjEzMDEwMDQyWhcNMjUwNjE0MDEwMDQyWjAzMTEwLwYDVQQD
EyhlNDg3MDg0ZGQzMzk5ZmYxMjcxNTgxY2E5MDU3NDA0MzdmNjA4MmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqRHlZszbSKVYD4F6LoQ/+ETHgFd
Sk1MeHq0nSicE/QuFDFKF1JFBs5ZJ8cfnUx2RI3J5SkhKw0e2H3UP/Z/BojJKJli
IKhO39eE0Bhd742W8NmZb6iaxbY60wWaJEpScTOm2gDWNY2BAE0SxsLURjgMN85/
c4WuN3EBn3g1OnvA5vwEFInWd17beABkLdgQ4pCu+wBsa8g9/BlflrTB+fcIFf4u
2LzNGb+VsZQxgotJhmtf0EJJQf5QJrbVj0ZMvEpNiH3NFMwbhW8YPYzKjdXTC5C/
VhEaedcnTMotoJml069ThNnnY6Ekx4BPuPUWlmKyQeKR3iImwvFZOjUQyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOSHCE3TOZ/xJxWBypBXQEN/YIK+MB8GA1UdIwQY
MBaAFIScW6bUCrTk45t7abbS2YRKokivMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8zN2M1MTQtODIxMy00MzhjLWExNjQt
ZDk4NDg3YmRlZTQ4LzEvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8zN2M1MTQtODIxMy00MzhjLWExNjQtZDk4NDg3YmRlZTQ4
LzEvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvKUNagi
9wjJNMt2aZyHEJVRpZVEdD8FTJIEr2xIxIl42Q/jLPp70r988l/DnXQn8zrS39K4
JcrXvFJS2+4CD8Ul0CoX0EDLH/sM7J3Tv0jJDZSfDZrcN5YF4kupi7Sscdv2pCqq
kO3jim7bXVIukCBveIpF34sBp7FebmKb/ADuzgc89uZTVO0x9gPtbAHqc1/23D7m
FT11jMo7O2JOJLUFjicdol3kw5wCids4hR9jONnTN+Awp06aFW1bj+XUFCi2j11o
NGLuRpLK2mBjytgtAXT86DVBNk98WdJHqITdvaCGP5usm8LDlID46C0O+pp+Nalu
3eY06SMWa7Yh6w==
-----END CERTIFICATE-----
Generated at Fri Jun 13 04:04:12 2025 by rpki-client