Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
File: h1bSd2jhHZSgu837P7zXQNRaAPQ.mft (raw, json)
Hash identifier: cktCXRCNEczeUBhK0U1efj+XfB549KpA/Lmxkl4sMxg=
Subject key identifier: 16:B8:D2:A8:5C:B4:D8:6D:3F:0E:CD:F5:A7:34:9C:7B:92:0D:4F:07
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 019873E201F1826823C3B2D4C56682F88DC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
Manifest number: 10F9
Signing time: Mon 04 Aug 2025 07:00:48 +0000
Manifest this update: Mon 04 Aug 2025 07:00:48 +0000
Manifest next update: Tue 05 Aug 2025 07:00:48 +0000
Files and hashes: 1: b2XsYiMu1xHQndcNQ0ucXkzeN7E.roa (hash: uYxfaCmhcw362gqaEMF6PdCZbjIYOfXpyFCpshaBqpM=)
2: h1bSd2jhHZSgu837P7zXQNRaAPQ.crl (hash: wEghciuBmuITr46grW1pDW/sk8Ey5oU170vcBXJimPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:01:f1:82:68:23:c3:b2:d4:c5:66:82:f8:8d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Aug 4 07:00:48 2025 GMT
Not After : Aug 5 07:00:48 2025 GMT
Subject: CN=16b8d2a85cb4d86d3f0ecdf5a7349c7b920d4f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:04:a6:98:09:5f:5c:2a:fc:81:06:90:f6:6e:
82:19:ae:a8:d2:63:64:71:d0:a6:d8:f2:2e:4d:a4:
08:7c:8b:92:9b:39:f6:15:b5:b9:16:ee:e2:9d:e4:
68:20:46:22:36:ee:d1:85:9a:22:3e:4d:7d:d9:d4:
1d:87:4c:d3:9e:86:3c:98:9a:d5:0c:e8:12:26:d7:
e7:93:ec:d4:7e:28:83:5b:4c:3d:c6:6c:f3:86:41:
d8:c0:d4:8f:a9:74:07:30:1d:f2:e7:8c:a9:24:63:
f9:92:c9:e1:6e:fc:1c:47:60:bf:30:95:85:2c:45:
28:8e:f9:8e:24:e8:89:51:22:95:ba:31:1c:5a:4e:
b9:03:a4:df:7f:af:88:7c:58:10:39:c9:51:21:bf:
30:f0:4f:87:0a:73:7c:10:8a:a0:06:96:98:39:c3:
bd:4f:41:9d:a6:44:55:0b:9b:d8:d7:25:6a:f7:4b:
ce:71:a5:ff:09:a5:89:02:5c:1a:f7:9f:d5:59:61:
32:62:10:45:0a:62:9e:be:4b:d2:5c:eb:55:52:21:
63:2c:7b:60:cf:3b:66:19:70:21:86:df:f9:c7:d7:
86:08:7f:2c:4e:6d:3e:b7:ae:e6:07:39:c6:a8:ab:
0f:0e:37:78:56:cc:03:39:9f:25:14:35:58:5a:f9:
3a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B8:D2:A8:5C:B4:D8:6D:3F:0E:CD:F5:A7:34:9C:7B:92:0D:4F:07
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:c7:5f:6c:69:d6:0e:e0:15:bb:73:f1:17:5e:9e:6f:23:b3:
f8:77:d5:a1:bc:4d:f5:26:8a:d3:3c:ea:f9:a1:bc:36:dc:19:
5d:db:32:93:eb:f2:60:f7:45:c3:3e:ee:fd:c4:c8:e1:71:8b:
e9:e2:c8:82:cb:9d:36:98:ba:b4:cd:5e:b6:ba:f2:7e:a0:e8:
b2:a5:8c:50:c9:93:3e:1c:05:4d:7c:04:85:2c:91:9f:86:8a:
1e:18:42:11:3b:27:d1:b4:96:d2:b2:05:b7:3b:f0:29:0b:2e:
3d:b0:86:c5:78:58:a4:9c:2e:25:2a:97:6b:84:3b:6d:7e:cd:
35:8a:a5:01:bb:ba:7b:c3:49:c4:44:56:84:c0:84:8f:45:8c:
2c:53:b2:4b:e1:6a:b8:eb:48:87:90:a3:8c:7f:2e:77:ec:6e:
94:e6:90:ab:fc:ec:d5:91:99:3b:b5:a3:6b:d2:ab:3a:13:b4:
4b:59:f1:ad:25:67:8f:b5:e6:51:aa:93:d0:95:31:39:ce:ac:
55:7e:bb:c7:d0:99:8a:b1:cc:39:e6:4e:d2:ac:e0:f1:1a:b2:
e6:d2:da:ed:c4:f0:93:89:46:ee:80:21:95:d2:ac:89:58:b5:
05:da:54:1c:39:79:9b:8f:0d:b8:73:fd:aa:ab:31:18:a8:49:
50:33:e1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:05 2025 by rpki-client