Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
File: tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft (raw, json)
Hash identifier: 39wbdzaS+Pj7TBtopGu55MoRDI00+p5efnJS3er3HkM=
Subject key identifier: 3A:8A:B5:33:18:A3:3E:88:93:27:1E:5F:BC:E3:22:3C:D2:BC:74:EB
Authority key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
Certificate issuer: /CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Certificate serial: 01989AB8C625DFD699E54179B4BD4D6EDB91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
Manifest number: 1352
Signing time: Mon 11 Aug 2025 20:00:57 +0000
Manifest this update: Mon 11 Aug 2025 20:00:57 +0000
Manifest next update: Tue 12 Aug 2025 20:00:57 +0000
Files and hashes: 1: j1BO9Furs7_Q3tvlbetVSRlAckY.roa (hash: tdoQUM0H+jW+enIWtoFRlfboER49yX/MAZeA5JaKIMs=)
2: tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl (hash: onbG6VWRbhBHKLe/ZmgUDqixNieoFA0xMyAptMko7YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 20:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9a:b8:c6:25:df:d6:99:e5:41:79:b4:bd:4d:6e:db:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Validity
Not Before: Aug 11 20:00:57 2025 GMT
Not After : Aug 12 20:00:57 2025 GMT
Subject: CN=3a8ab53318a33e8893271e5fbce3223cd2bc74eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:36:e0:13:11:73:6a:98:59:25:dd:d8:2a:ca:
5b:f4:a4:56:ea:52:45:dc:17:a2:cb:4e:e8:0a:c6:
8e:1e:9f:d9:55:4b:29:54:f7:cc:b2:f4:ee:cf:fb:
a4:73:9e:4b:e9:37:da:3b:f0:9d:41:67:40:67:7b:
95:07:b9:d6:49:3e:d0:d6:42:73:7a:ae:d3:ff:97:
23:ee:4c:2c:11:33:ee:1a:de:2a:1a:98:e5:d3:95:
ba:34:85:f5:ca:1a:eb:40:1c:d3:68:1c:79:b5:a7:
35:0d:32:d0:87:1d:bc:fe:b1:91:62:44:f1:e2:10:
ba:d6:86:9c:4a:31:cb:86:8f:be:2c:91:e2:04:46:
29:f9:92:ec:b3:d6:2a:93:3d:0a:0a:05:31:fa:ff:
1b:5c:d5:f9:fb:2b:00:62:81:91:3d:73:78:1f:37:
1e:9c:d1:2c:57:a2:88:16:10:f4:6f:8e:44:66:e6:
f2:c0:36:fc:84:a9:b2:d8:b9:22:b1:98:b8:9d:9a:
f7:07:f9:da:f8:dc:62:ca:00:46:b7:04:ca:9b:af:
8c:75:44:f3:d6:0d:c0:24:cd:06:11:a5:8c:a2:61:
21:da:61:b4:c1:2b:48:71:9a:84:7d:49:53:aa:4f:
03:7a:d9:61:31:f6:25:bb:20:cd:ff:32:9d:0a:e4:
40:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8A:B5:33:18:A3:3E:88:93:27:1E:5F:BC:E3:22:3C:D2:BC:74:EB
X509v3 Authority Key Identifier:
keyid:B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:0e:5c:32:a9:b3:94:40:e6:1c:9e:6e:85:89:17:73:1f:e3:
54:23:79:23:97:3a:c5:5b:00:2f:b8:a4:80:41:fc:a8:f3:2a:
af:c0:fb:78:27:35:de:d5:87:17:af:33:9f:d4:49:35:d7:f4:
86:16:33:0f:02:92:00:33:c9:6f:e5:0d:36:37:69:3a:88:dc:
81:da:6b:bd:a2:95:40:4e:22:33:9a:eb:07:84:7b:92:e3:56:
61:92:65:4d:ea:34:f2:4d:be:a5:6e:7a:7a:34:8b:b3:1a:66:
7a:1e:51:ed:c8:a9:9f:ba:dc:53:e2:13:b4:3e:ca:a4:de:7b:
7e:47:cd:d3:82:39:d3:04:7a:dd:57:a0:2b:78:20:25:5b:11:
23:a3:9f:a9:1d:a8:d1:ad:98:e0:1e:55:47:93:c4:31:2a:7f:
f4:49:4a:c1:52:a5:bc:db:ef:68:e3:18:c7:9a:6e:7b:19:6c:
0e:c0:ab:d9:88:02:12:ca:3b:92:a1:3a:3a:8b:c1:16:1f:81:
89:74:d3:fb:75:2c:a3:4e:52:45:09:76:13:18:b6:79:52:71:
c3:3e:12:08:27:73:b4:48:9f:fa:4f:42:ba:79:e1:ec:d9:b0:
30:f9:33:a0:79:c3:6d:24:14:9f:83:9b:d2:db:27:93:6c:f3:
79:e0:f0:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 04:14:30 2025 by rpki-client