Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: yUX6EcjbCzrxGGsMg/EF+gLJFJ1ShuHEMUeM5fQuYi4=
Subject key identifier: 9B:3D:7D:90:22:EA:14:E5:32:A0:0C:8E:53:E8:46:41:1F:02:41:9C
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 019872D016A1BCFA5343C9744B8DCBA4D57E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 156F
Signing time: Mon 04 Aug 2025 02:01:36 +0000
Manifest this update: Mon 04 Aug 2025 02:01:36 +0000
Manifest next update: Tue 05 Aug 2025 02:01:36 +0000
Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: 9t8vpKaoaOk5AuLk7TOn7+ILLpDpTKAbmu+5MmD97yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:d0:16:a1:bc:fa:53:43:c9:74:4b:8d:cb:a4:d5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Aug 4 02:01:36 2025 GMT
Not After : Aug 5 02:01:36 2025 GMT
Subject: CN=9b3d7d9022ea14e532a00c8e53e846411f02419c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ab:ab:2f:36:7e:3f:cc:55:b0:a1:89:6a:a5:
25:ee:12:a9:e5:e0:be:e2:17:46:d5:f6:df:1f:2b:
3c:5a:fa:f7:02:b0:e5:48:e6:8b:21:f8:b9:8e:91:
12:83:a2:c1:bd:fe:f2:62:16:4a:46:03:3c:53:8b:
6c:59:58:d9:47:98:92:d4:2c:dc:2f:e7:dc:cd:ca:
a8:d0:32:fb:50:08:8e:8b:cd:08:cd:27:f6:a5:95:
b3:de:df:ad:ed:2a:2b:1f:06:f0:0f:21:f3:2b:52:
93:97:93:ff:c8:7e:65:71:6c:46:55:d6:6b:ae:5f:
35:52:84:1b:f8:0b:52:ca:96:14:c6:3d:36:79:21:
e8:0b:ad:13:d0:98:67:4b:7a:5b:5d:9e:e3:d9:fc:
05:56:8c:99:78:53:c9:5f:a3:4e:47:62:10:36:b6:
05:d7:fe:21:89:cd:1f:92:99:d7:f6:02:a1:37:45:
3e:b9:b5:f6:8a:ad:f2:3b:fa:85:ea:2c:93:36:e1:
be:cb:7a:97:c0:74:ad:f6:c3:55:f8:4d:0a:c4:96:
dc:91:ba:25:7f:3a:34:29:87:20:cf:de:d7:e7:6a:
b7:c4:93:cf:a8:a9:c9:14:45:ac:df:ae:ff:a0:f9:
46:f5:33:bb:dd:0f:dc:1f:18:cd:04:dc:75:aa:e4:
dd:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:3D:7D:90:22:EA:14:E5:32:A0:0C:8E:53:E8:46:41:1F:02:41:9C
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:ba:89:08:8c:b7:db:8e:4c:28:c2:14:a1:13:77:1c:05:6e:
16:72:55:26:e5:31:1d:8e:9f:3b:c8:d4:3a:a8:e6:ac:79:39:
3d:98:06:df:b1:ec:43:1a:6a:5d:be:f3:4f:95:bd:c1:d1:7f:
68:b1:f8:ab:e0:43:fe:08:49:84:b1:4f:e4:29:a6:29:ba:64:
85:f9:6b:e2:71:da:49:3e:18:e1:49:ee:76:85:0f:25:bc:3c:
7e:c3:59:4f:a6:83:e2:cc:cd:e8:bd:c6:37:5b:68:bc:63:78:
1f:19:fd:36:0c:d0:14:ab:5d:6c:3c:b5:41:a4:d1:d3:b1:87:
9b:d2:4c:e5:9d:9f:3d:34:b0:99:ca:60:b3:82:ba:41:89:d1:
88:bc:70:7f:59:be:ec:99:80:a0:c1:34:ba:eb:ba:a9:73:95:
a1:2c:5b:0d:e9:62:5c:61:ce:db:83:02:57:48:27:c6:4e:aa:
4b:27:7b:c9:57:8a:3d:ec:70:7e:a3:b0:a2:7b:3f:e1:b9:ef:
92:e2:bb:55:ad:da:32:b4:0f:f0:63:3c:0d:14:00:2a:60:9d:
54:7e:71:48:50:2d:2a:e7:90:48:1b:2b:5b:6c:bf:0a:5c:58:
3b:67:e9:ff:8c:de:83:cc:c1:42:52:cd:58:03:ed:aa:43:29:
57:de:5b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:08:02 2025 by rpki-client