Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/566ddb-db89-467d-b225-fa8601b3b0ad/1/b0hdoepm0fZhammw0CuaK8Gk_9M.mft
File: b0hdoepm0fZhammw0CuaK8Gk_9M.mft (raw, json)
Hash identifier: FHjwIGFrXw1QIDALTwmlMgU9iezh7VV3aqjEABvYvn4=
Subject key identifier: 2F:1A:8E:7F:9C:17:0E:8E:CB:7C:8A:A3:59:FB:E8:8B:B0:34:E0:8E
Authority key identifier: 6F:48:5D:A1:EA:66:D1:F6:61:6A:69:B0:D0:2B:9A:2B:C1:A4:FF:D3
Certificate issuer: /CN=6f485da1ea66d1f6616a69b0d02b9a2bc1a4ffd3
Certificate serial: 019A72CA7BEC83A2F5AC6D2F76A3293E91BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b0hdoepm0fZhammw0CuaK8Gk_9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/566ddb-db89-467d-b225-fa8601b3b0ad/1/b0hdoepm0fZhammw0CuaK8Gk_9M.mft
Manifest number: 0154
Signing time: Tue 11 Nov 2025 12:01:03 +0000
Manifest this update: Tue 11 Nov 2025 12:01:03 +0000
Manifest next update: Wed 12 Nov 2025 12:01:03 +0000
Files and hashes: 1: b0hdoepm0fZhammw0CuaK8Gk_9M.crl (hash: JMufoF+VStzK/HROFUJCI64w7rtXa5oKAJhyOs4L3/M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/566ddb-db89-467d-b225-fa8601b3b0ad/1/b0hdoepm0fZhammw0CuaK8Gk_9M.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/566ddb-db89-467d-b225-fa8601b3b0ad/1/b0hdoepm0fZhammw0CuaK8Gk_9M.mft
rsync://rpki.ripe.net/repository/DEFAULT/b0hdoepm0fZhammw0CuaK8Gk_9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:7b:ec:83:a2:f5:ac:6d:2f:76:a3:29:3e:91:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f485da1ea66d1f6616a69b0d02b9a2bc1a4ffd3
Validity
Not Before: Nov 11 12:01:03 2025 GMT
Not After : Nov 12 12:01:03 2025 GMT
Subject: CN=2f1a8e7f9c170e8ecb7c8aa359fbe88bb034e08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0b:bd:c2:42:8f:12:cc:57:f7:5f:60:b7:1c:
71:9e:7e:48:31:e2:31:26:9a:6c:e5:9f:5e:14:57:
75:c0:2b:95:1f:20:a9:a0:59:20:54:9e:d6:70:db:
8b:d6:3c:6d:3c:03:dd:61:3b:69:b2:75:ed:24:93:
3b:57:42:c8:1b:e2:5f:e6:db:c7:fb:fe:a8:50:d1:
03:02:0e:a1:90:a4:e3:d0:8f:27:31:a6:d2:f2:56:
1e:2d:73:f4:7c:29:43:a5:b4:c4:9a:8f:fd:2b:a0:
19:3d:04:89:92:5b:60:d2:66:f9:9e:36:e6:57:f0:
14:8a:c6:8d:9e:19:37:ca:6d:01:9b:5f:d9:45:16:
6f:95:4f:0e:0b:db:7c:4d:d7:5a:1e:67:b4:cf:af:
3e:16:96:19:d0:8e:25:eb:be:a5:8b:73:27:e7:2d:
82:b6:15:a9:e7:3f:1c:41:9e:ed:af:c7:d2:db:c4:
9e:d7:66:32:49:de:bc:41:a6:82:bc:7b:70:0d:2a:
12:c8:e0:f9:af:e8:1e:0a:42:cc:e3:c7:b9:6a:73:
05:63:76:37:d8:6e:cc:b2:cc:e5:e7:32:9a:37:b0:
6d:5f:bf:ee:93:a9:eb:57:39:ea:9e:a6:0f:c7:6b:
07:96:2f:11:85:42:d2:32:88:2f:9a:b9:dc:13:b7:
c5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:1A:8E:7F:9C:17:0E:8E:CB:7C:8A:A3:59:FB:E8:8B:B0:34:E0:8E
X509v3 Authority Key Identifier:
keyid:6F:48:5D:A1:EA:66:D1:F6:61:6A:69:B0:D0:2B:9A:2B:C1:A4:FF:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0hdoepm0fZhammw0CuaK8Gk_9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/566ddb-db89-467d-b225-fa8601b3b0ad/1/b0hdoepm0fZhammw0CuaK8Gk_9M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/566ddb-db89-467d-b225-fa8601b3b0ad/1/b0hdoepm0fZhammw0CuaK8Gk_9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:5f:35:20:f3:b9:96:e9:18:9a:f9:78:50:61:74:b5:ad:90:
75:63:fe:0f:23:14:7f:bf:3d:51:41:35:2a:e1:9d:d6:b6:1c:
db:02:ca:d7:ed:51:b3:cc:4b:a7:01:5e:6d:d3:ff:42:1e:a6:
a5:6c:20:32:75:27:3d:97:ae:e1:75:65:eb:97:73:35:6c:5d:
26:06:d6:39:a8:6e:85:9b:02:7e:64:cd:21:ab:19:7c:90:70:
c7:39:99:f4:f1:46:06:af:0a:11:06:26:10:30:7b:36:69:8a:
bd:6f:59:25:5e:42:79:59:e8:79:4b:e1:0b:c4:59:0f:90:0b:
34:57:56:75:f7:33:a7:84:2e:98:64:26:a2:85:9b:32:3f:be:
e7:af:6c:a8:8d:79:9b:a1:4a:79:69:9e:f3:ea:05:2e:3c:cf:
8a:fe:d5:49:fb:89:38:73:ed:de:a0:e9:56:b8:ee:1c:dd:e8:
3e:ab:aa:2c:79:ea:3a:dc:dc:17:62:76:20:71:57:41:9c:9c:
53:77:aa:96:96:13:90:d1:53:16:2c:68:fd:c6:dc:16:16:2d:
d3:c7:6b:32:b8:02:d6:65:1b:db:dc:b9:7b:ce:c7:a9:db:ca:
3f:60:ef:0b:c4:6b:55:70:50:9a:0c:c3:e7:99:22:4a:13:e6:
5f:46:ee:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:08:42 2025 by rpki-client