Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
File: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft (raw, json)
Hash identifier: UjseJRZ1iZSnUbw5/c1P5qEDp+ZoNw1eJipCeZ1ctRg=
Subject key identifier: 8F:94:82:6C:05:25:B1:FE:A7:AE:94:72:FA:8A:03:EB:26:1C:8B:BA
Authority key identifier: 86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
Certificate issuer: /CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Certificate serial: 019896A6A2F3ADF7F668BF43C636AC8750BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
Manifest number: 06EE
Signing time: Mon 11 Aug 2025 01:02:39 +0000
Manifest this update: Mon 11 Aug 2025 01:02:39 +0000
Manifest next update: Tue 12 Aug 2025 01:02:39 +0000
Files and hashes: 1: 6rszyN8yZZcIFadBDy7iWBsKHqI.roa (hash: dWt4x4jxo9KCoGxn2Sm9VBzQBMC43sDUxeYLn9feg7U=)
2: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl (hash: DqXYNdTEywp7kN655TU5jh746w/uVPmz0PO1vWgEQdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:a2:f3:ad:f7:f6:68:bf:43:c6:36:ac:87:50:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Validity
Not Before: Aug 11 01:02:39 2025 GMT
Not After : Aug 12 01:02:39 2025 GMT
Subject: CN=8f94826c0525b1fea7ae9472fa8a03eb261c8bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:24:17:49:45:a5:1c:ab:1f:19:8f:a5:84:
8b:44:a2:b7:ce:50:58:4c:62:a7:8f:16:18:54:ad:
20:40:2d:6a:ff:1d:5c:5a:32:1e:06:78:8b:be:08:
c4:d2:42:d0:b1:b3:f3:89:bc:1c:a7:39:7b:09:a7:
0e:a4:df:68:99:6f:fd:d3:74:f3:ad:94:0d:d3:c0:
be:33:5f:b5:fe:e5:e8:e6:30:df:0b:17:6b:02:88:
f3:17:84:f3:ad:ae:7c:e7:27:1f:23:ae:d0:1e:aa:
6b:31:3c:23:c7:7b:55:bc:50:f1:9e:f2:a6:ce:11:
74:ed:a7:4a:d9:31:78:89:48:ee:f5:7f:e8:31:92:
bb:7a:d0:b7:cc:2d:10:5b:e4:bd:f9:68:dd:f6:86:
bc:e9:56:b7:1b:90:b0:68:6c:c6:a5:53:0e:51:31:
e8:d4:97:d8:12:f8:48:ed:7c:b3:3a:a3:8d:a8:27:
51:5c:eb:79:a2:60:a1:20:d3:fa:43:ad:b1:36:70:
f9:ff:cb:81:45:63:31:f5:98:ef:e0:32:48:da:20:
a7:c7:5a:e4:46:cc:e1:7c:37:53:a0:a9:3c:4e:18:
e1:4e:8d:86:dd:03:79:19:05:05:9f:37:ab:91:ec:
f0:c9:3e:4c:14:9e:09:4f:3c:9e:6c:23:51:84:46:
be:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:94:82:6C:05:25:B1:FE:A7:AE:94:72:FA:8A:03:EB:26:1C:8B:BA
X509v3 Authority Key Identifier:
keyid:86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:bc:4b:04:0e:e8:00:d5:a2:21:b8:26:95:20:a8:d6:0c:f2:
82:60:7c:6e:ba:ae:69:a4:54:c8:6d:e7:1d:00:c8:df:0e:36:
0d:08:43:8a:a3:c6:6e:b1:1e:3f:e8:b4:f0:14:7e:91:4a:dd:
0c:41:86:bf:d3:5b:0d:b0:4e:c7:81:3e:45:3c:f5:77:d4:9b:
48:63:c1:2a:0d:ea:57:73:5b:18:4e:a8:9b:59:2b:d4:b2:05:
38:4f:c9:88:b5:4a:05:36:dc:c3:eb:10:ce:af:ff:2b:16:e1:
08:77:b1:bf:a0:7a:09:0f:8d:ab:fe:8c:cd:63:e9:2f:48:a0:
33:48:75:11:5b:17:c7:2a:95:56:89:e0:f5:e3:b4:17:4f:62:
08:f1:03:69:1b:50:27:71:f0:68:6a:9f:8a:f6:dc:3c:86:6c:
c9:e3:87:da:d5:9f:cb:19:47:ed:0f:38:4b:64:66:49:72:35:
c5:c8:26:01:8d:13:e7:fb:48:14:c5:32:ec:f6:31:c7:35:65:
49:e5:dd:de:62:44:fb:29:90:11:04:fc:f0:1e:2b:e2:31:4b:
3a:6f:cd:a4:ec:5b:b7:63:f3:29:1a:0d:bc:96:5f:77:7a:02:
2f:1f:0a:c0:19:eb:d7:5b:04:6e:84:f2:b9:4f:c6:b4:1c:de:
f5:3e:01:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:12:46 2025 by rpki-client