Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/4c2734-1139-4a3f-8f84-974488bcb723/1/H_Umh1LLtSS8_ktaSXb_D4XTia8.mft
File: H_Umh1LLtSS8_ktaSXb_D4XTia8.mft (raw, json)
Hash identifier: CkeHYz0FhkyEDORgGLrsrRJdM7xem3aTtFm2Et0V7Uc=
Subject key identifier: 02:DA:D2:EC:09:4B:3A:39:CF:3F:72:02:E5:1B:B5:84:DD:B1:E3:0D
Authority key identifier: 1F:F5:26:87:52:CB:B5:24:BC:FE:4B:5A:49:76:FF:0F:85:D3:89:AF
Certificate issuer: /CN=1ff5268752cbb524bcfe4b5a4976ff0f85d389af
Certificate serial: 0198873381A3B1FF63B646FEBA1D69824B53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H_Umh1LLtSS8_ktaSXb_D4XTia8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/4c2734-1139-4a3f-8f84-974488bcb723/1/H_Umh1LLtSS8_ktaSXb_D4XTia8.mft
Manifest number: 0A0F
Signing time: Fri 08 Aug 2025 01:02:36 +0000
Manifest this update: Fri 08 Aug 2025 01:02:36 +0000
Manifest next update: Sat 09 Aug 2025 01:02:36 +0000
Files and hashes: 1: 9pQi_NMMFUj3irIeg0-DmdkDCbk.roa (hash: PFd36o1XR8n7Qanm5GG5TpwQ2+VBH8Rn7+qS0Um/8ws=)
2: H_Umh1LLtSS8_ktaSXb_D4XTia8.crl (hash: awC9oo+n6iapwrinlJdRLumVHDOio1CjjLVsZc/Xwaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/4c2734-1139-4a3f-8f84-974488bcb723/1/H_Umh1LLtSS8_ktaSXb_D4XTia8.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/4c2734-1139-4a3f-8f84-974488bcb723/1/H_Umh1LLtSS8_ktaSXb_D4XTia8.mft
rsync://rpki.ripe.net/repository/DEFAULT/H_Umh1LLtSS8_ktaSXb_D4XTia8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 01:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:33:81:a3:b1:ff:63:b6:46:fe:ba:1d:69:82:4b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ff5268752cbb524bcfe4b5a4976ff0f85d389af
Validity
Not Before: Aug 8 01:02:36 2025 GMT
Not After : Aug 9 01:02:36 2025 GMT
Subject: CN=02dad2ec094b3a39cf3f7202e51bb584ddb1e30d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:c2:e3:2f:79:4e:3f:ea:d6:dd:85:de:2c:
59:4f:03:88:f4:2b:21:1e:d1:d4:3c:e4:f2:8d:da:
2a:47:8b:a8:77:1c:e4:57:8d:9b:2f:1d:cc:33:81:
95:e5:f9:67:85:84:50:35:14:6c:a9:44:40:d2:f3:
b8:c5:e6:b8:a2:a6:57:8c:3f:9c:2f:51:b6:f8:fa:
01:f4:ab:8e:08:f0:c8:f3:36:1c:42:59:db:50:37:
a7:2b:00:27:b3:ae:8f:aa:f3:07:34:0e:11:f1:8d:
46:19:88:8d:ec:54:76:29:2d:3c:ba:b3:e5:ae:ed:
4b:d4:77:8b:c4:47:d0:0f:6a:a7:5b:c4:f5:f2:cd:
23:ec:70:46:4a:33:9d:70:1e:99:d5:82:2d:be:f6:
9f:92:f1:3c:0a:aa:18:4a:e4:a5:3f:09:d3:7c:75:
ed:8b:83:e2:6e:4f:88:a1:9b:39:d8:88:19:4e:c3:
7c:9f:84:73:7e:a6:01:00:4d:fe:90:5c:da:c6:3a:
d1:46:aa:a4:77:56:c0:79:73:35:84:ab:0b:a1:f8:
0a:5c:d0:d2:c7:89:97:da:c0:10:e1:47:e5:6e:5c:
30:04:c5:13:e9:c1:eb:fd:b5:1f:35:a2:a9:c6:08:
35:0f:96:e0:b9:20:4b:de:b7:ec:33:ec:95:d2:ec:
28:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DA:D2:EC:09:4B:3A:39:CF:3F:72:02:E5:1B:B5:84:DD:B1:E3:0D
X509v3 Authority Key Identifier:
keyid:1F:F5:26:87:52:CB:B5:24:BC:FE:4B:5A:49:76:FF:0F:85:D3:89:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H_Umh1LLtSS8_ktaSXb_D4XTia8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/4c2734-1139-4a3f-8f84-974488bcb723/1/H_Umh1LLtSS8_ktaSXb_D4XTia8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/4c2734-1139-4a3f-8f84-974488bcb723/1/H_Umh1LLtSS8_ktaSXb_D4XTia8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:bb:6f:9b:63:42:fa:1f:28:97:9d:b5:7e:9b:49:c4:e3:70:
d8:d1:37:5e:b4:1e:2b:c6:b7:56:bd:7e:0b:91:60:61:69:d6:
99:77:a1:39:a5:d2:5f:81:69:7d:4b:c9:70:60:7a:f9:52:0b:
fb:da:71:3e:1b:5e:0e:99:b1:8a:33:f7:0a:78:be:cc:36:ce:
eb:d9:5a:04:27:21:10:6f:46:d6:64:7c:b6:b7:f9:e5:e8:35:
45:85:24:47:50:c5:b8:f1:e7:07:03:3d:69:58:a7:2e:a0:fb:
6f:de:03:c8:ef:41:9c:48:49:58:af:79:99:f5:df:a7:df:d4:
4a:db:46:b9:6e:38:bd:50:57:bf:09:5f:ca:4e:3d:54:96:b3:
40:95:0d:cd:3d:d3:a2:3e:f8:ca:03:2e:cf:9f:fe:4e:c1:bc:
71:57:ed:42:38:54:87:13:b4:84:ce:c1:31:2b:fc:08:e7:9f:
81:0a:7a:dc:ea:ad:1c:e2:0f:7d:8b:d1:59:95:f1:d1:dc:35:
1d:7c:66:fe:a7:58:a3:d2:01:28:4e:7e:91:33:0a:a4:7b:e5:
46:22:e3:0b:77:37:1b:a4:32:5a:25:3a:77:97:a3:28:67:25:
f3:49:89:7e:ab:fe:a3:70:90:6d:14:c0:9f:18:02:71:5c:ed:
d0:63:74:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 10:13:24 2025 by rpki-client