Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
File: hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft (raw, json)
Hash identifier: HTOQ9AXnZG/QFa4dxDODb8555VJ2cVTndpLoPX5AH3k=
Subject key identifier: 60:7D:F8:95:50:91:40:A4:49:24:1F:C3:59:85:04:2F:32:81:70:DD
Authority key identifier: 84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
Certificate issuer: /CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Certificate serial: 019921B197E5F47788BF69CDF0E73341E782
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
Manifest number: 0956
Signing time: Sun 07 Sep 2025 01:01:50 +0000
Manifest this update: Sun 07 Sep 2025 01:01:50 +0000
Manifest next update: Mon 08 Sep 2025 01:01:50 +0000
Files and hashes: 1: hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl (hash: mtllj4O2tZe+2Goahvj3r9GfUa1pHa0mxQaTYhzlRQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:97:e5:f4:77:88:bf:69:cd:f0:e7:33:41:e7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Validity
Not Before: Sep 7 01:01:50 2025 GMT
Not After : Sep 8 01:01:50 2025 GMT
Subject: CN=607df895509140a449241fc35985042f328170dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b1:01:48:6a:40:8c:8b:e9:2a:7a:fd:e1:b6:
72:64:d8:ea:29:e3:d4:04:81:38:d0:cf:aa:4f:f2:
cd:d0:16:9c:44:42:44:4f:8f:e9:33:d0:b2:18:2c:
62:74:fa:b6:6c:f3:aa:06:4c:78:23:73:ac:da:37:
82:94:57:6b:20:8f:86:8a:c8:b7:57:04:08:4c:3a:
c0:ef:00:a5:63:ce:27:06:e3:92:48:84:31:14:90:
66:e9:e9:f1:73:a7:e2:66:7c:d3:35:e5:f0:a4:8c:
e1:5a:6e:03:03:8f:86:c7:2b:e1:24:6f:96:a1:ab:
fd:72:1d:0f:c6:50:35:45:d6:e2:81:6c:df:d7:ac:
d9:f0:74:dd:45:b7:4c:aa:3f:91:91:63:68:84:8d:
00:d1:66:56:a9:74:c8:bb:2f:be:70:ae:16:5d:08:
ad:6f:de:8d:f5:2e:9f:07:e4:ba:a2:e4:63:64:5e:
ea:b7:bb:e4:da:6f:19:1a:e3:f5:85:c3:ed:7e:e1:
57:96:d5:1d:bc:0b:ef:ed:b6:8d:67:61:50:44:17:
af:5b:0b:19:04:6c:f7:8d:bc:05:c7:cc:77:27:f6:
4e:f1:7e:8b:93:b7:2a:27:30:78:82:88:ac:cd:f4:
47:ec:93:85:3d:33:18:2c:df:db:fc:cb:c9:41:f4:
18:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7D:F8:95:50:91:40:A4:49:24:1F:C3:59:85:04:2F:32:81:70:DD
X509v3 Authority Key Identifier:
keyid:84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:d3:ea:4b:91:9c:34:08:97:44:36:5e:e5:ce:b1:6e:39:1f:
2a:9f:49:80:dc:92:c6:54:ee:7a:5a:8a:00:7b:70:74:a5:7b:
bf:2f:75:fa:52:08:4d:ea:c9:b5:71:60:ce:f3:db:94:c2:75:
ec:7d:fb:b1:7b:e7:33:fd:57:bb:77:36:bc:bc:e8:a6:53:74:
46:94:d9:78:e0:f2:99:2e:62:d2:c0:11:84:2b:6b:12:6c:1a:
7d:7b:1a:34:fd:a0:56:f9:a8:3c:55:67:1f:8b:43:99:77:dd:
0f:d8:c3:e5:4f:f3:ea:d8:0b:4f:1c:3a:d3:92:10:e3:94:c8:
54:45:99:85:6e:95:c8:7f:4f:db:99:6c:6f:67:e8:52:ae:94:
ac:d6:e5:be:2f:bb:95:4e:3a:be:87:9e:a2:c7:9f:bc:1a:52:
8b:b5:b7:e1:4b:cc:42:96:b0:cd:ea:62:03:9e:e8:3c:52:64:
31:89:dd:3e:9c:bd:90:7b:82:70:c6:39:4e:5e:2a:40:d2:c3:
d3:83:37:bc:7c:64:f3:1e:b4:a5:a5:f9:5f:8f:54:ed:4d:50:
f3:8d:4a:b9:36:a2:0c:b5:c0:e3:f7:d2:77:fb:95:42:c1:a4:
c8:bd:9c:2b:01:0c:29:77:29:f2:61:ab:37:d4:7a:56:15:43:
57:92:56:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:59 2025 by rpki-client