Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
File: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft (raw, json)
Hash identifier: 099ogG6VpcmTCvGFBrPoS500G3SQ/N8bFLe7Icia+m4=
Subject key identifier: 51:5A:86:78:F7:79:87:42:53:EB:C7:38:0E:CD:4D:1A:BD:5C:A4:0D
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 0198922334E1FDF4BACF1F953E001A96EAF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
Manifest number: 0B2B
Signing time: Sun 10 Aug 2025 04:00:37 +0000
Manifest this update: Sun 10 Aug 2025 04:00:37 +0000
Manifest next update: Mon 11 Aug 2025 04:00:37 +0000
Files and hashes: 1: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl (hash: ZoFNFr2lEI97Ez7hAS2rTqii/szpEUBE8/CvRFJMWXU=)
2: ntEteGeDZu85wNJOAqgjTrUSx54.roa (hash: Q0TMKcR9tSI7oBt+FGXWaqYBj7j3GPsfDK87Fv5h+YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 04:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:23:34:e1:fd:f4:ba:cf:1f:95:3e:00:1a:96:ea:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: Aug 10 04:00:37 2025 GMT
Not After : Aug 11 04:00:37 2025 GMT
Subject: CN=515a8678f779874253ebc7380ecd4d1abd5ca40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0a:ee:08:5d:e4:5f:c7:39:30:67:52:f3:d1:
fa:32:6c:7d:da:39:b6:6f:87:73:21:ab:3b:f5:d9:
6a:7f:98:b5:3b:0a:5a:39:0f:bc:92:c1:f8:9b:9c:
92:2a:ae:ce:5d:33:4f:2e:f8:61:03:70:b1:3e:c4:
ab:f3:e5:de:f0:74:f5:94:87:ca:1c:7e:b5:1e:8c:
02:7e:5d:e7:1a:5a:22:bc:79:03:01:23:7d:8a:ef:
92:79:c3:3c:f8:c4:c7:85:73:10:46:f8:6b:9b:9c:
bd:e1:f8:7d:db:1d:21:52:c8:77:4f:f1:1b:d4:f7:
e4:5a:48:95:56:44:60:a4:16:0c:35:d9:ac:b2:09:
7f:47:60:2f:6a:ec:88:2c:38:f4:e9:ab:2b:df:a0:
78:19:46:38:f0:02:22:4e:ae:59:1c:43:95:b5:90:
9d:f2:a1:a8:80:1e:74:a2:2f:48:c3:71:1e:3b:4e:
33:12:ac:c6:b0:21:96:0c:41:71:dd:ec:06:0b:43:
e8:33:0d:13:21:46:e2:f9:bd:3d:55:5f:4e:5c:ab:
60:4a:c3:2a:25:54:96:77:a5:ed:82:90:05:2b:d1:
05:ae:cd:99:5d:1e:40:b7:98:bb:93:64:22:9f:2d:
f2:a7:de:6b:28:89:00:44:f3:49:79:2d:5c:fa:c8:
0c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5A:86:78:F7:79:87:42:53:EB:C7:38:0E:CD:4D:1A:BD:5C:A4:0D
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:e0:45:e1:e3:b4:d3:01:e8:ff:08:2f:44:52:67:dd:86:7a:
94:79:56:f7:f2:8c:92:d2:bf:9f:4d:fb:cb:72:21:86:2c:a9:
fa:8b:b1:7e:10:a1:a4:46:61:92:9b:17:47:b9:6e:ff:f7:13:
96:31:0f:f7:9a:2a:04:8e:dc:fc:21:e3:c5:95:ba:65:b8:a4:
8c:75:e8:33:8f:24:63:2a:6c:2f:c6:70:d9:37:1f:3a:70:a5:
9a:4f:fa:14:40:41:4f:fb:e0:bd:fc:f2:ad:f0:60:63:bd:e3:
65:89:c2:69:0a:3d:cb:78:a1:78:95:e1:9a:d7:b3:cd:09:fe:
e1:ea:69:63:33:1f:41:49:3a:31:42:f0:83:4b:a2:b2:38:5f:
95:f3:8f:d4:5b:5c:54:ba:8b:4d:30:ec:06:0e:ee:4c:b5:e2:
56:0d:8a:b5:2f:a6:97:54:1c:42:54:7e:ce:b7:48:96:43:3b:
00:84:52:41:1d:08:f2:27:74:dc:db:4b:1f:cd:91:c8:d0:8f:
39:b2:7f:5a:21:dd:9a:fc:55:2b:a2:34:6b:61:0f:e5:be:c5:
95:de:42:0a:8b:cb:40:6b:11:0e:6b:cd:8b:59:91:1c:93:9f:
50:b5:4c:55:cb:bd:bb:5c:77:e3:ce:d6:c1:25:f9:c0:23:f4:
b6:1f:81:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 10:44:10 2025 by rpki-client