Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: 5kfZ3E1bRUnOvvxrKwiqYH3Nf16P0yef56Y7ZaERQx0=
Subject key identifier: 07:E4:39:B1:BB:D9:AB:C2:63:C0:1F:37:76:E1:BA:5D:14:B2:D6:6F
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 01987DF87AD23D5EE4857B46483B63AC7678
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 1627
Signing time: Wed 06 Aug 2025 06:01:32 +0000
Manifest this update: Wed 06 Aug 2025 06:01:32 +0000
Manifest next update: Thu 07 Aug 2025 06:01:32 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: Pdz0r+ZXFIWc5zns5xXZ1KJl6w+HlvsYpwm66Ynpglc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:7a:d2:3d:5e:e4:85:7b:46:48:3b:63:ac:76:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Aug 6 06:01:32 2025 GMT
Not After : Aug 7 06:01:32 2025 GMT
Subject: CN=07e439b1bbd9abc263c01f3776e1ba5d14b2d66f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c3:f4:80:ba:01:95:e1:19:26:bc:81:3e:e3:
ba:3e:7b:b4:83:21:18:d7:4f:e5:88:ae:c7:eb:0f:
4c:1a:98:ea:40:a1:62:44:ed:8b:2d:e7:e0:ee:e6:
71:1d:7e:a7:78:18:4f:9e:d5:18:41:36:5d:20:33:
7d:a3:d1:4b:ac:6c:df:85:82:27:57:1b:64:5f:78:
25:9b:a9:82:fb:db:a0:b8:f1:55:77:cc:a3:9d:fb:
69:f6:f0:f8:f2:ad:89:5d:dd:41:7b:64:03:5b:32:
3d:26:0a:60:40:3f:23:96:ea:eb:55:3d:85:a1:1c:
37:5a:04:7e:12:b4:7b:e0:d1:e6:95:c9:0b:84:e9:
56:52:27:b6:68:01:fa:77:b2:85:e9:19:1d:e0:81:
9d:1e:2b:8c:dc:04:93:89:05:23:93:3e:13:f6:5a:
c1:20:07:78:94:d1:cb:a2:36:9a:3c:8e:6c:c2:76:
f4:4d:c3:d2:5c:45:dc:d2:2c:41:e0:de:76:dc:cb:
86:29:bb:0b:d6:60:aa:4f:0a:f0:47:c5:03:f3:3d:
c0:72:51:e4:e4:73:5b:10:02:57:c7:12:f7:8a:e0:
cc:fc:6d:16:4d:64:74:c0:3f:0f:7c:e2:89:20:bd:
55:cf:4b:31:f1:1a:9b:32:15:2f:7d:89:cf:11:26:
d0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E4:39:B1:BB:D9:AB:C2:63:C0:1F:37:76:E1:BA:5D:14:B2:D6:6F
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:6c:a3:5c:6c:49:24:44:55:f5:69:81:71:3c:3d:e4:bc:ea:
63:df:3e:93:dc:37:de:5d:f2:23:60:ce:82:e5:15:4f:e2:03:
e3:26:b8:69:d1:e8:9a:d9:da:50:78:88:b5:29:a9:e1:79:13:
27:ee:3f:2b:1e:43:ad:99:b9:79:26:12:93:10:a7:57:32:fa:
f1:d3:a6:f7:2a:e7:b3:86:86:56:d7:84:ae:c9:a1:ea:a9:4b:
15:06:fb:da:47:c1:cb:cd:2c:1b:45:f6:1d:54:16:fa:df:47:
87:4c:2d:75:b0:bd:7e:60:9a:fd:61:3d:c2:48:0e:e4:39:b7:
2e:2f:b5:70:44:bd:5b:f2:69:b9:bf:03:d4:d8:21:cf:e9:20:
26:db:72:8a:57:b4:eb:d4:56:40:24:e0:e2:78:17:d1:e4:94:
fb:43:b4:b1:d3:cb:8f:08:0c:c5:7c:ae:0b:07:10:38:63:ad:
48:bd:5a:bc:c0:ed:88:7d:4c:92:47:3c:c3:b8:21:d7:19:c0:
cd:29:e8:6a:1b:f9:8a:1a:67:36:67:ca:0c:eb:40:89:28:73:
f4:19:a8:c9:f9:df:9d:b5:d8:71:76:8f:5f:9d:c9:08:5e:51:
43:52:ff:9f:54:2e:d8:c8:ad:16:db:69:7e:b9:bd:d3:fb:78:
1d:bb:65:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:23:51 2025 by rpki-client