Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: Y8rw21GO6xPC0dmcVNVYoqFip/Xh1CP9RjtMV6Zhe+w=
Subject key identifier: 55:1B:20:C7:74:71:AA:C3:7C:FA:F7:0A:10:AA:F2:2C:FE:6F:A3:BE
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 019923A0CB12F3E4D744435B90E1A56C643E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 10AE
Signing time: Sun 07 Sep 2025 10:02:44 +0000
Manifest this update: Sun 07 Sep 2025 10:02:44 +0000
Manifest next update: Mon 08 Sep 2025 10:02:44 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: dtDMCNJHln5qvyTpTDa2R9zxg7AnK7hAeeXMMxuBu6Q=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:cb:12:f3:e4:d7:44:43:5b:90:e1:a5:6c:64:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Sep 7 10:02:44 2025 GMT
Not After : Sep 8 10:02:44 2025 GMT
Subject: CN=551b20c77471aac37cfaf70a10aaf22cfe6fa3be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:37:21:2f:9a:b6:43:29:eb:f9:d5:9e:ae:96:
73:e3:fc:f4:ef:d6:74:ae:70:ef:2a:31:a6:b8:36:
c7:c2:78:94:21:e1:3d:ad:5e:6c:e0:1f:da:a0:19:
81:73:42:5a:fc:4d:fe:d0:c2:08:0e:55:30:ce:dc:
8f:ce:3f:14:52:6d:28:69:6b:a6:19:2f:8c:8c:c0:
b9:c0:0f:b0:f5:4c:fe:4c:ef:fb:11:c6:d6:e4:be:
fa:ab:1b:d6:de:0a:a7:0c:00:3d:64:8c:27:b9:52:
70:e3:58:bb:4d:f3:a0:32:9a:37:19:a1:7e:70:eb:
64:1a:10:4c:8b:2e:c7:ea:bf:f2:fd:ad:08:72:cf:
8e:f8:4c:8f:ad:c7:fb:64:20:d3:e1:93:a0:b7:02:
d2:4c:fd:6f:4d:2a:f0:16:08:f5:ad:5e:e7:4d:27:
41:75:4e:b2:14:1c:86:67:fc:f4:78:25:48:f3:65:
7e:3f:b1:de:c8:90:7a:8f:03:1e:e5:56:83:e5:7f:
db:2a:f1:10:72:de:4e:31:20:3c:a1:4b:e5:ef:a2:
68:15:a8:87:54:25:fe:a1:a4:e4:d3:73:7c:56:f2:
6a:d9:da:2a:37:a2:e0:c4:c1:60:6a:e5:55:96:f3:
8c:0d:63:ab:e9:6e:bc:32:70:5a:b6:67:f7:91:25:
02:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1B:20:C7:74:71:AA:C3:7C:FA:F7:0A:10:AA:F2:2C:FE:6F:A3:BE
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:7b:c3:30:9d:4a:d0:7d:f2:3b:6a:1c:25:4c:2a:51:a7:4b:
70:49:09:87:57:72:a4:d0:fa:0c:13:67:e3:c0:72:dc:86:cf:
97:6a:3d:2a:c2:99:5e:93:47:5d:16:44:0e:38:cb:8f:80:e4:
f6:49:8a:08:4a:02:da:49:97:9a:22:4e:4a:50:a0:70:30:51:
6e:12:be:c1:80:bf:02:5a:d4:52:1a:56:cd:0f:70:bc:80:5d:
f9:af:05:b1:45:8f:43:be:7a:19:13:98:82:3e:5a:2f:1d:e0:
bc:23:72:bb:a2:0e:1d:b7:7b:f3:16:9a:cc:37:2c:fb:65:94:
f8:c5:bf:de:da:4f:0e:31:d4:18:88:f5:10:4c:31:00:35:d0:
26:40:fa:c7:e3:63:88:cf:b1:88:a7:06:f7:d4:84:29:3f:80:
08:91:65:9f:e5:af:c7:af:9d:c2:ab:32:13:ff:e7:02:04:be:
ad:e4:08:60:11:fe:ce:b9:12:c6:b1:59:d8:6a:06:5f:c0:70:
3b:fb:7c:dc:74:a1:53:c0:16:73:4c:69:3f:2f:bb:95:3d:3f:
c3:d7:23:ab:ae:10:0a:be:bc:ea:f0:03:5f:0b:20:54:9e:6e:
40:19:3e:61:da:37:f4:e7:83:bd:18:ca:6e:27:a5:fa:dc:d1:
4d:c7:3a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:24:21 2025 by rpki-client