Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: yw+BS+t4ElKr3q1UPmAWCKyPzMN7UXu++5gfTE32iEg=
Subject key identifier: B2:A2:E2:FF:E8:D6:4F:F0:1F:88:54:B6:B6:1B:B0:6A:F6:BA:78:94
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 01993802391772D3961D0A05645B1CD62AEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 1610
Signing time: Thu 11 Sep 2025 09:01:33 +0000
Manifest this update: Thu 11 Sep 2025 09:01:33 +0000
Manifest next update: Fri 12 Sep 2025 09:01:33 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: aSR7Wsehpk15pwYJ+ctdlxhPf+VKGaQnSJMD6B0YLqw=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:38:02:39:17:72:d3:96:1d:0a:05:64:5b:1c:d6:2a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Sep 11 09:01:33 2025 GMT
Not After : Sep 12 09:01:33 2025 GMT
Subject: CN=b2a2e2ffe8d64ff01f8854b6b61bb06af6ba7894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:68:f3:c1:f9:42:4b:8a:08:e7:cd:50:96:c4:
cf:9e:83:64:0d:f0:a5:ca:bb:da:24:12:6f:b2:66:
f0:f9:4d:35:2e:97:21:92:e2:1a:a1:cf:18:f6:90:
87:4b:48:81:49:92:a9:48:3c:00:21:56:0a:15:37:
2d:a1:f9:fd:03:8e:9b:bb:7a:58:79:ff:fe:6e:c7:
fe:4b:15:22:76:ad:85:f1:55:f0:27:dc:e7:e5:d1:
b2:77:cd:73:bb:c1:b7:96:c7:fd:df:41:db:bf:55:
a9:87:1d:b2:85:01:7b:a8:f4:83:3d:82:fa:7f:7e:
8b:9d:d5:13:28:22:f5:92:e0:fb:aa:f9:3e:1f:83:
ce:6a:e7:ad:27:15:b7:73:9b:1b:1d:23:8e:4a:f2:
bf:21:83:5c:cd:9a:9c:f2:49:d3:bc:6b:d4:c2:86:
7a:b0:80:a6:ab:75:dc:78:d3:a1:cf:56:89:a0:4e:
aa:51:d0:e7:8d:a6:d8:9c:97:8d:e9:56:c5:00:6c:
2c:1e:4c:52:60:00:dc:7d:b7:06:1e:6f:15:be:99:
c3:01:5d:cd:30:f4:fc:41:59:e9:7b:4c:86:da:8e:
28:d0:f4:d0:0a:35:02:da:9c:6c:94:5c:29:a5:98:
ab:db:87:95:cb:ae:c9:8d:67:ef:af:c7:8c:58:84:
64:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A2:E2:FF:E8:D6:4F:F0:1F:88:54:B6:B6:1B:B0:6A:F6:BA:78:94
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a8:01:db:b9:ab:7c:3f:60:38:d7:32:d7:a3:2d:ba:e9:8a:
42:58:91:4b:f9:a9:4b:d6:4b:11:86:0c:9f:27:a9:16:72:27:
ae:f5:1c:43:f3:41:35:33:c7:58:4c:71:59:37:0c:3f:a2:45:
ee:39:bc:ac:88:e8:5d:c2:e2:91:58:b8:44:b0:41:b4:bd:75:
60:9f:02:05:67:c4:d8:e4:c5:12:2c:ba:17:95:62:ec:76:96:
b3:db:9d:ab:12:12:b0:4f:8a:87:78:53:a5:f8:38:c5:fc:17:
ed:61:81:1d:d1:5e:8c:ea:3f:dd:42:98:58:83:45:c8:5f:7a:
56:0e:41:ac:a4:da:e9:ac:9b:45:7b:12:59:23:35:25:ca:b8:
38:d3:aa:33:2a:4d:3f:22:0b:37:9b:b9:d9:ff:94:23:f1:29:
cf:e8:d4:02:5c:9b:64:76:76:ed:e6:82:f9:a8:53:a3:aa:35:
98:27:56:c8:e5:e0:df:1b:bc:25:9b:b9:1f:32:a1:46:a2:96:
ff:23:b0:62:ba:4e:eb:d8:30:a2:78:c8:bb:d0:ea:a6:63:ee:
86:79:90:26:ed:f7:1b:67:a5:c9:74:39:25:a1:19:4d:ec:90:
e3:2e:ff:87:38:c9:a9:a7:ab:c1:a6:f5:54:f4:d8:3f:2d:33:
b9:62:df:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 11:45:10 2025 by rpki-client