Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
File: FHVOhj0RfOYhDylUYajGqgQ8bIA.mft (raw, json)
Hash identifier: YX8D81aR00XVQCclsRHMIZhP/8i9iNAqJHTtBPcV9vM=
Subject key identifier: 86:98:53:11:15:35:B6:56:66:56:60:45:8E:80:2A:A2:4D:B0:28:9A
Authority key identifier: 14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80
Certificate issuer: /CN=14754e863d117ce6210f295461a8c6aa043c6c80
Certificate serial: 0199221F4ED02559B9FD2B23D6AABDF17B31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
Manifest number: 166D
Signing time: Sun 07 Sep 2025 03:01:41 +0000
Manifest this update: Sun 07 Sep 2025 03:01:41 +0000
Manifest next update: Mon 08 Sep 2025 03:01:41 +0000
Files and hashes: 1: FHVOhj0RfOYhDylUYajGqgQ8bIA.crl (hash: fmAHK+hyLWaY0xZo6+ei3pajQf6Iak7fui8pgJwfCLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:4e:d0:25:59:b9:fd:2b:23:d6:aa:bd:f1:7b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14754e863d117ce6210f295461a8c6aa043c6c80
Validity
Not Before: Sep 7 03:01:41 2025 GMT
Not After : Sep 8 03:01:41 2025 GMT
Subject: CN=869853111535b656665660458e802aa24db0289a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:52:8b:e4:b8:c4:f7:ad:9b:32:32:92:87:f6:
67:de:00:b8:7a:40:2f:12:01:1b:4f:e7:cb:36:01:
67:8b:bd:97:78:07:4e:8b:37:a3:6f:4d:81:16:e6:
4a:7a:3e:6a:2f:71:64:6c:aa:48:5f:4f:1a:75:0f:
18:16:a5:c0:4e:f8:b8:37:29:66:64:45:62:5c:eb:
76:d0:a1:66:28:a2:ca:9a:1a:d3:a0:42:08:0d:4a:
da:f2:36:f7:de:1b:74:62:05:2d:3b:19:4a:04:4e:
fd:f0:1e:c5:cf:55:aa:40:60:78:72:14:47:11:4a:
8a:dd:34:85:7f:49:2d:01:6a:40:77:ef:d0:21:ed:
09:f6:d1:8a:43:0a:84:aa:0e:9d:be:b1:8f:ba:ba:
00:64:b2:0a:c1:26:d6:1e:07:21:4a:07:11:bc:5b:
7a:0d:12:a2:8b:30:33:e6:fd:46:41:7f:69:11:0f:
5c:5e:3c:91:b9:a3:e8:31:87:91:16:19:2e:f7:20:
1c:bf:45:06:af:c4:ca:e5:42:46:2f:2b:bd:58:c6:
1e:07:97:27:cb:c4:7e:74:c5:84:87:46:b1:05:05:
39:7f:3a:bc:4d:50:6c:76:a7:dd:81:03:68:4d:69:
2c:07:6b:f5:c6:da:ed:4f:44:e8:1f:b4:32:89:94:
70:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:98:53:11:15:35:B6:56:66:56:60:45:8E:80:2A:A2:4D:B0:28:9A
X509v3 Authority Key Identifier:
keyid:14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:13:21:e7:55:69:73:25:46:ec:63:2c:f7:6d:fb:29:2b:38:
92:e3:cf:51:67:fa:3b:65:59:1a:aa:af:b5:0e:83:5e:e0:5b:
a4:e1:ae:e0:ff:56:fb:4c:19:fa:d5:da:c7:30:50:40:88:5e:
c0:32:78:b8:5e:d2:f4:84:45:99:fe:02:1a:5b:bc:26:37:98:
c8:c6:57:4c:cb:2e:f7:f7:71:86:82:20:4d:62:e2:ad:48:1a:
38:f3:ab:b7:74:b1:b0:c7:a0:e6:65:8b:28:72:7e:b1:0c:e1:
de:0f:6a:1c:00:01:83:07:43:32:a0:4c:d7:75:6e:7e:17:79:
af:e7:3a:73:4d:7e:ac:22:62:19:46:2d:ad:94:e6:dd:63:3f:
ec:62:d1:0c:c0:81:d5:29:ea:77:37:16:01:68:9e:bb:d9:97:
0e:c3:50:6d:5e:af:18:5d:11:3c:95:5a:dd:7b:73:50:d5:2b:
0f:fe:26:10:88:82:51:e8:01:07:65:1d:22:76:75:43:8b:d7:
74:6b:97:f1:9d:98:12:42:e6:1f:43:cc:05:2e:aa:5c:4e:9a:
4f:46:e6:c4:fa:10:b3:db:49:aa:29:a9:e3:48:72:8a:08:fb:
26:09:7f:4a:df:36:1b:1f:2e:35:5d:4e:77:1a:a9:ad:89:92:
2e:7b:aa:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:48:41 2025 by rpki-client