Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
File: B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft (raw, json)
Hash identifier: c7Q3znZQNFsFh6lFI7gjBfiHsKCPU2IpvGzVl3JuLiE=
Subject key identifier: FA:77:7F:A6:73:46:09:B6:6B:F0:34:AA:95:EC:BB:D5:94:F1:3F:2E
Authority key identifier: 07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36
Certificate issuer: /CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36
Certificate serial: 0198963713C5EBF26CB57A733667FBD3DFC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
Manifest number: 1127
Signing time: Sun 10 Aug 2025 23:00:48 +0000
Manifest this update: Sun 10 Aug 2025 23:00:48 +0000
Manifest next update: Mon 11 Aug 2025 23:00:48 +0000
Files and hashes: 1: B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl (hash: 2mUCZcKprt1i4PflGzuquxb03WdClkA/KOxBV+nQ/Ag=)
2: jIFgf1lBNqu6NES_hhmJCRkx6WU.roa (hash: b4SkMZ2qfegq/aAVSnzcin5lHV5SoqB7AozMTZpTRfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:37:13:c5:eb:f2:6c:b5:7a:73:36:67:fb:d3:df:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36
Validity
Not Before: Aug 10 23:00:48 2025 GMT
Not After : Aug 11 23:00:48 2025 GMT
Subject: CN=fa777fa6734609b66bf034aa95ecbbd594f13f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:74:f7:cb:db:96:b6:7a:ba:6b:81:b0:2d:fe:
49:f9:75:83:83:a7:c5:ef:e0:e1:6f:22:20:ea:04:
fe:2c:f2:c2:87:ab:ea:ec:33:f2:ce:00:a1:95:5a:
30:7e:5e:b6:d0:b2:00:f1:a6:c1:83:bf:c7:2a:47:
2b:3c:46:aa:f2:b0:56:50:29:b1:54:61:44:26:9a:
fb:3e:0c:98:b6:83:00:9e:a8:6d:6c:1e:91:95:b2:
ce:68:f3:bb:a9:64:e7:5b:92:38:36:72:3f:1e:a5:
73:ab:4f:03:04:0a:67:f2:f5:a5:81:b6:33:cd:88:
1d:bc:9c:b1:d7:13:f5:46:98:10:c2:06:3c:49:bb:
81:a9:d5:ae:b4:4e:a2:3e:74:e1:de:dd:b8:49:30:
6e:c4:94:21:30:e2:f0:32:61:d8:78:41:ff:85:80:
f0:8c:bc:a9:bb:3c:6a:fb:6b:af:1b:22:29:4d:8a:
a8:92:71:6c:e1:fd:aa:fd:f9:17:06:8f:ec:97:b2:
b7:38:c8:ec:bb:73:ed:9f:d1:5e:32:bc:19:27:d7:
08:3c:de:29:24:c7:09:1d:47:da:da:5b:30:f3:9b:
bd:63:fd:bd:80:44:00:3d:a3:8d:0e:73:e9:7a:5a:
46:e5:c6:b8:d7:80:78:ce:e2:68:78:3a:da:f6:70:
0b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:77:7F:A6:73:46:09:B6:6B:F0:34:AA:95:EC:BB:D5:94:F1:3F:2E
X509v3 Authority Key Identifier:
keyid:07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:bd:52:3f:48:6c:6d:95:2b:d8:df:3b:fa:e0:60:98:26:32:
a2:bc:41:d4:dc:78:a6:70:58:86:94:ee:a3:38:4b:00:e5:b4:
e4:7c:6e:31:f6:20:38:00:b0:32:48:36:5e:4b:fc:77:bd:2e:
49:1f:a4:b5:ac:39:b1:f7:78:ae:a1:25:3f:b7:d5:e8:b4:df:
0e:8f:bb:3e:d4:ac:e9:46:16:10:a6:5b:d1:98:24:fe:5c:7a:
61:ce:ce:d1:b1:eb:71:98:d3:98:ab:9f:ab:35:14:6a:70:26:
e3:fb:5a:1b:11:43:7a:10:a3:2d:67:97:41:5b:76:46:7f:fd:
79:a0:e0:80:60:cd:06:c3:0b:b7:01:32:31:0d:9c:1a:b0:fc:
b3:0e:ba:bf:ba:80:8f:f5:f0:2c:d7:61:a5:36:15:9e:b3:7c:
11:92:21:07:9e:92:92:7c:b9:dc:6b:0f:a2:2e:b9:d1:8b:95:
60:8f:71:79:aa:a2:06:6f:b3:c7:c2:4b:a8:eb:4e:cd:8f:6a:
9d:d6:ff:18:52:f2:0f:6b:63:f4:4c:d2:56:9b:b5:1b:ee:7e:
05:9b:dd:23:af:bd:89:8b:5d:d8:6d:09:00:61:21:a0:5d:93:
1e:91:b2:1a:e4:c0:c1:ff:ba:84:5d:07:a3:76:ea:31:cb:fa:
11:ac:b7:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:20:46 2025 by rpki-client