Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
File: HzkK-DPX1CaQQsJJvPSWSFcglbY.mft (raw, json)
Hash identifier: 5OMf/rjWt3uf/zqOn+Kr41PqETFPCXoMeEurZ1ynTN0=
Subject key identifier: 4D:BC:1C:F4:EF:58:21:AF:39:A0:02:80:3F:44:E5:CD:57:6F:02:F7
Authority key identifier: 1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
Certificate issuer: /CN=1f390af833d7d4269042c249bcf49648572095b6
Certificate serial: 019921B297137B8D00756A39E8A643903573
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
Manifest number: 1110
Signing time: Sun 07 Sep 2025 01:02:56 +0000
Manifest this update: Sun 07 Sep 2025 01:02:56 +0000
Manifest next update: Mon 08 Sep 2025 01:02:56 +0000
Files and hashes: 1: HzkK-DPX1CaQQsJJvPSWSFcglbY.crl (hash: aq0AAE6+ZidIg4vdmO25OAAisNzL9wGe8fD23Lbq4Xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:97:13:7b:8d:00:75:6a:39:e8:a6:43:90:35:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f390af833d7d4269042c249bcf49648572095b6
Validity
Not Before: Sep 7 01:02:56 2025 GMT
Not After : Sep 8 01:02:56 2025 GMT
Subject: CN=4dbc1cf4ef5821af39a002803f44e5cd576f02f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b7:24:cd:15:98:b9:66:aa:9f:1f:38:b6:ee:
bd:54:62:bb:ce:8b:14:0a:df:59:a0:c5:d4:70:67:
31:0c:e5:9c:e9:57:c0:e5:b5:ee:85:3e:86:b0:80:
bd:ed:ee:67:b1:55:da:bd:fc:c3:39:e8:55:96:00:
2d:58:01:10:09:f0:79:0e:bb:5e:fd:c8:82:8b:72:
cb:c5:18:12:4c:c6:a1:39:41:7d:3d:af:66:65:20:
b9:53:e5:b3:d7:1e:b1:c8:a0:87:50:c0:00:06:62:
29:15:c6:c8:0b:f6:09:c4:a5:be:59:22:ec:c5:89:
c7:df:96:8e:64:c9:e7:00:ef:0e:af:83:db:1f:3f:
51:98:da:05:dd:13:c6:36:8a:43:55:ef:39:de:24:
af:26:f3:b1:dc:51:c0:8c:0e:61:a9:4a:6f:b6:06:
d8:d0:9b:af:6b:f5:3e:98:a2:e2:b7:0c:a0:a0:69:
5d:61:77:95:b0:04:2a:36:1f:5a:ff:06:cb:f2:6e:
de:95:7e:94:d6:a3:fa:03:78:dd:0f:b3:02:bb:20:
b2:6b:be:5e:1d:ab:a6:d5:25:57:80:c4:03:eb:7d:
11:48:d2:53:7c:62:ad:d8:36:4c:06:52:b3:1a:ca:
b5:69:f7:05:df:2f:db:a1:ce:27:b1:00:a9:1e:31:
e7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BC:1C:F4:EF:58:21:AF:39:A0:02:80:3F:44:E5:CD:57:6F:02:F7
X509v3 Authority Key Identifier:
keyid:1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:b9:ef:fe:08:8f:a8:52:9a:7f:37:07:38:2c:ff:24:fc:bf:
15:9d:17:2f:08:4d:4b:a8:e4:38:d0:9c:c9:c9:ce:30:42:c1:
d4:3b:28:2b:36:87:36:6b:8a:55:0d:b2:44:27:c8:30:13:33:
9e:49:a1:65:1c:f7:0a:16:16:b3:73:e5:6a:23:a4:5a:68:76:
20:36:59:20:3e:84:eb:ad:cc:06:c8:90:e1:3b:3d:6a:24:20:
d7:47:d6:4a:d5:f5:51:3f:24:0a:a8:5f:3f:ed:8c:0b:ba:a8:
53:8f:61:3d:fa:65:fe:b6:79:42:53:03:72:b6:9e:de:65:18:
18:31:8b:50:c6:d1:e3:bb:d8:7f:b0:6a:4d:ef:08:50:30:a3:
04:79:e1:4d:15:96:cb:de:95:da:2b:8d:d6:aa:c3:d1:96:66:
96:fc:76:62:22:2b:ef:17:3a:22:65:d0:91:6e:96:0e:a6:57:
00:60:8f:d8:4f:1c:10:75:db:5e:ae:5b:28:af:48:3d:bf:71:
22:a2:77:8c:3e:61:5d:c3:cf:28:3b:85:5e:ec:e1:c8:b2:f8:
31:c2:4f:32:19:6b:a8:a4:9f:9d:98:47:84:04:8c:ec:f8:de:
27:b6:75:33:2f:f3:68:e9:4f:57:d3:23:31:36:f5:d3:38:a8:
da:52:51:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:46:12 2025 by rpki-client