Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
File: hUwNsAZYRNlZTf6N2O_XftHkk_g.mft (raw, json)
Hash identifier: SvKlC40XY1rmFNaBWLMEkT4NhG/T8ibdxyG/xLL9OJY=
Subject key identifier: A7:7C:C0:BC:D9:BD:5A:65:9C:82:97:1D:0B:88:82:52:F3:17:45:CE
Authority key identifier: 85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
Certificate issuer: /CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Certificate serial: 019882B034A173051BDAC16C7F5B50FD46D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
Manifest number: 1620
Signing time: Thu 07 Aug 2025 04:00:42 +0000
Manifest this update: Thu 07 Aug 2025 04:00:42 +0000
Manifest next update: Fri 08 Aug 2025 04:00:42 +0000
Files and hashes: 1: hUwNsAZYRNlZTf6N2O_XftHkk_g.crl (hash: tuM1D+1TsqIDGy6ZSNdbHp0hdgQevw3FAmchL0ZdyRM=)
2: iM7SCQycar1nudDnDJd9cpfWE14.roa (hash: 7fSKbbU/ayenSU9Vz0FeCegebZtfdQUaQXiUz4lT3zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:b0:34:a1:73:05:1b:da:c1:6c:7f:5b:50:fd:46:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Validity
Not Before: Aug 7 04:00:42 2025 GMT
Not After : Aug 8 04:00:42 2025 GMT
Subject: CN=a77cc0bcd9bd5a659c82971d0b888252f31745ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1b:b9:e8:38:f7:cd:48:d1:fe:9e:ee:e9:7e:
7c:f0:97:06:c0:ce:a3:91:0b:5d:34:44:aa:53:ff:
83:5b:a4:59:b6:6d:2e:39:6d:9e:52:45:e3:8c:46:
01:67:df:32:97:17:e3:4b:74:15:56:54:f0:b4:b5:
75:35:03:ee:ba:85:0b:88:fb:ac:c1:2b:3e:ae:4d:
88:82:85:9e:93:ab:0c:29:c0:55:04:43:cc:df:81:
d5:97:c1:a3:40:5c:95:9d:e2:3b:7a:22:bb:6d:e2:
57:c9:cf:7b:b1:ca:14:e4:9d:62:00:eb:29:aa:36:
06:ce:59:ec:46:e6:32:ac:64:6e:67:6b:7f:ca:f9:
2f:40:27:24:78:2f:20:d3:a1:f6:2e:9a:60:59:df:
f6:2e:bf:1d:4b:76:f8:78:0a:56:62:18:9d:e4:81:
cd:66:83:b8:08:30:a2:07:69:06:63:73:26:a5:8c:
7c:6e:2e:4a:ea:ab:72:a8:ea:36:7d:d5:ae:a1:e3:
b7:bc:2d:85:4c:d9:f7:27:4b:f3:a6:c5:5e:62:aa:
78:f7:a6:f3:e4:1a:d5:79:c8:79:b8:ab:a6:ff:24:
db:45:10:04:02:a3:8a:66:fa:fb:87:48:53:02:fa:
14:16:bb:d7:30:16:dc:6a:13:6a:9d:32:de:40:68:
ae:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:7C:C0:BC:D9:BD:5A:65:9C:82:97:1D:0B:88:82:52:F3:17:45:CE
X509v3 Authority Key Identifier:
keyid:85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4d:7a:79:f1:8a:70:1f:f4:26:b5:9e:1e:1a:5f:63:93:45:
bd:2d:0c:69:dc:b5:c7:65:83:99:9e:a8:a8:92:48:bd:7d:e8:
fb:3f:a5:88:51:53:51:92:4e:c8:c9:1d:a0:4c:64:73:d1:dc:
a5:01:72:56:d7:45:f6:20:ad:0f:55:ea:12:1e:bb:be:ca:0b:
a2:9c:bf:fb:3a:fe:f5:9a:81:b9:2d:67:dd:0f:f6:d4:33:34:
02:57:49:ea:e0:9a:cf:49:cd:eb:e2:92:74:ca:10:e4:66:a5:
26:c0:b0:54:60:77:68:06:47:1e:f5:c9:7a:f9:b8:7d:c6:f8:
e0:12:e0:98:eb:5a:05:59:e2:93:fd:0f:ce:6a:5c:66:3c:4c:
26:8c:fb:96:e2:17:ae:38:93:5e:12:96:da:15:45:87:b8:b2:
0e:07:02:f1:a4:54:7b:0d:ac:55:14:11:53:2d:fe:c3:64:a6:
6d:8b:71:ab:20:89:61:f1:b0:78:05:10:41:5b:2b:e9:2b:89:
79:e0:9f:31:35:7f:7e:49:da:09:c5:04:2a:40:71:77:3a:15:
9b:3f:05:d8:90:91:5c:30:66:47:47:9b:6c:c5:8d:0e:39:23:
c6:6a:b8:de:fb:cc:82:e5:29:32:db:4d:a9:df:dd:35:f8:c9:
b2:60:73:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 07:17:39 2025 by rpki-client