Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: j5Ry9kEWJ6EqTgWwWMFm+lHaLcB15qZveVFfAyaQYFY=
Subject key identifier: DF:CB:2B:49:10:A4:45:A6:F7:60:C0:83:6B:34:11:B5:7C:E2:CF:5F
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 0199239F861BBF5A9F961BE238A7B36DCA39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 098A
Signing time: Sun 07 Sep 2025 10:01:21 +0000
Manifest this update: Sun 07 Sep 2025 10:01:21 +0000
Manifest next update: Mon 08 Sep 2025 10:01:21 +0000
Files and hashes: 1: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: IIc+AdOON0tdGzq3saGOPRRHxDG9xQ7qnxC43WZAx34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:86:1b:bf:5a:9f:96:1b:e2:38:a7:b3:6d:ca:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Sep 7 10:01:21 2025 GMT
Not After : Sep 8 10:01:21 2025 GMT
Subject: CN=dfcb2b4910a445a6f760c0836b3411b57ce2cf5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a5:cb:60:71:8d:18:06:4b:c6:df:a1:4a:b0:
e9:34:87:bb:a2:85:33:e2:ba:37:ef:17:90:c4:fa:
7a:1a:14:60:f2:28:97:de:92:41:bf:36:05:3d:4a:
01:52:92:90:6d:24:b9:a6:13:c8:8e:a1:45:0c:07:
3a:93:1f:60:48:71:b0:2b:35:da:fb:df:60:2d:cd:
47:95:c0:a6:72:e3:7c:d7:be:ca:0a:84:4c:7e:52:
3c:9f:84:ce:f6:0e:66:62:44:12:81:7e:62:df:46:
ea:fa:6c:e2:db:ec:09:dc:ae:2e:e0:95:1b:2d:d4:
83:ca:e7:a7:2f:16:ec:94:f9:b9:4d:6c:41:3f:52:
0e:cc:29:ff:0d:24:51:60:13:76:ca:b1:39:10:d5:
e6:44:28:f0:62:2c:3b:fa:2c:46:0c:c4:26:6c:bb:
d7:6f:2e:a2:26:b8:62:16:05:0f:c7:e2:5b:d0:d3:
97:5c:f6:6d:e6:13:1d:ef:2a:3e:8a:25:7b:b4:c8:
19:3b:1d:21:ce:ac:50:e1:24:88:b3:c8:f1:65:63:
52:99:4b:d9:c6:b9:a6:07:64:c7:a7:65:64:69:73:
8f:db:ee:78:7f:79:24:9a:ac:91:10:63:e6:fd:88:
f9:16:fe:a7:71:33:fc:32:19:22:3c:c8:f7:5b:8b:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CB:2B:49:10:A4:45:A6:F7:60:C0:83:6B:34:11:B5:7C:E2:CF:5F
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:93:08:65:04:d8:29:a2:d7:c0:cf:7d:89:ad:f9:b6:4c:d1:
5d:b9:0a:ec:8a:7f:5d:38:f0:ca:48:2f:5b:f6:57:68:e9:32:
9d:1b:a6:f2:6c:c0:25:bd:89:86:08:c7:79:b2:be:3b:1b:03:
98:2c:f1:01:b4:39:94:03:ee:7a:17:c0:01:9c:9c:82:bc:b0:
4d:01:45:55:07:70:62:d3:79:2f:3d:22:b8:be:b8:b7:7b:f0:
81:b8:47:0e:27:88:74:17:3c:08:0b:86:a9:ed:de:12:82:40:
89:84:bd:aa:62:f1:2c:c7:11:5b:16:07:fe:48:b3:73:78:57:
86:80:a4:71:22:f3:9b:d0:2b:2f:82:8c:82:20:af:92:8b:a8:
49:11:e3:2a:e1:b5:66:f3:46:32:3b:9d:48:01:ae:48:c8:0f:
14:94:32:b5:7e:6c:ee:91:98:e9:18:7a:3a:82:81:9d:dc:a8:
f4:75:46:3e:63:33:0f:d9:96:f0:ae:75:00:40:a2:70:fb:fa:
a2:09:f0:67:9d:7b:22:f2:2e:0a:6e:8a:d3:f6:93:be:2f:84:
e1:ce:e7:92:9e:cc:89:d2:65:c0:f6:f8:76:4e:55:97:13:a2:
16:75:cb:f1:4d:2d:a2:90:02:00:d7:c9:69:7c:e6:45:19:09:
59:9f:9e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:25:00 2025 by rpki-client