Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
File: _RHEZUr3AuWW61DRP6SG202bzgo.mft (raw, json)
Hash identifier: nfP+gDqNNzxT5Hmajxjx/x+/nOMpBj4BkRbEVgUI2g4=
Subject key identifier: 70:77:FA:C9:EB:45:27:80:8C:9D:61:5D:88:39:FC:3B:44:63:9C:67
Authority key identifier: FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
Certificate issuer: /CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Certificate serial: 0198819DCB11F4800C8A0FEEC1E23CD5E4F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
Manifest number: 161E
Signing time: Wed 06 Aug 2025 23:00:58 +0000
Manifest this update: Wed 06 Aug 2025 23:00:58 +0000
Manifest next update: Thu 07 Aug 2025 23:00:58 +0000
Files and hashes: 1: W3jKuxB_RcgliKc6SOrb-E9lQW4.roa (hash: flRFJj0cuA1GRJx+AJmEhdqQRbsG/XKga+ETKIMZCEI=)
2: _RHEZUr3AuWW61DRP6SG202bzgo.crl (hash: 2NlRBEcEPxYTHPmQNbYRJGWOkwNnIpZjYvlQBfhixEQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:cb:11:f4:80:0c:8a:0f:ee:c1:e2:3c:d5:e4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd11c4654af702e596eb50d13fa486db4d9bce0a
Validity
Not Before: Aug 6 23:00:58 2025 GMT
Not After : Aug 7 23:00:58 2025 GMT
Subject: CN=7077fac9eb4527808c9d615d8839fc3b44639c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ad:88:50:02:b9:8d:ca:6a:2f:e0:ab:8a:8a:
b6:9e:99:11:50:3e:00:28:3a:19:00:9a:c1:9d:d1:
f3:15:ee:8e:ea:45:19:70:ab:8a:a3:41:65:7d:02:
e2:0f:27:a2:17:29:f2:21:55:01:94:21:b4:01:5a:
99:cb:28:23:4d:85:24:f9:7c:3b:10:70:e9:24:a7:
d8:50:b1:de:7a:9b:57:a6:bb:7b:61:a4:81:a4:14:
61:22:45:b6:5a:62:cd:56:1a:0d:c0:20:38:a0:30:
31:49:9a:db:e5:18:17:72:f1:88:3a:c1:dd:69:31:
42:1c:d7:07:37:bd:4d:2e:a6:d5:5a:5a:cd:8f:26:
d8:4c:6a:26:f6:bb:de:f9:0e:1c:78:30:c1:b7:e7:
1b:45:0a:8b:82:26:91:eb:68:bf:e8:02:1d:d4:31:
2d:92:53:20:ab:ed:d9:a9:4d:39:8a:55:6f:16:b2:
1b:33:20:d8:48:1e:e3:f8:87:6c:eb:35:f4:10:8c:
41:2a:66:93:91:7b:b1:3b:c6:ff:de:af:cd:8f:5d:
04:9a:16:25:af:c0:f0:b3:5b:5f:9c:c3:8b:c7:4c:
bc:36:22:da:d5:fe:b8:b4:b7:91:7e:9c:ef:88:08:
0e:a3:60:7c:e7:37:52:4c:e7:88:95:3b:b0:c2:12:
d6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:77:FA:C9:EB:45:27:80:8C:9D:61:5D:88:39:FC:3B:44:63:9C:67
X509v3 Authority Key Identifier:
keyid:FD:11:C4:65:4A:F7:02:E5:96:EB:50:D1:3F:A4:86:DB:4D:9B:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_RHEZUr3AuWW61DRP6SG202bzgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/5e3185-38c5-4a5b-bf24-c953e3398c63/1/_RHEZUr3AuWW61DRP6SG202bzgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ed:3d:ea:9e:91:b0:fa:e6:03:70:c3:e0:cc:9e:29:b7:e9:
86:f1:03:5e:fc:38:96:ee:01:55:93:fa:3b:b7:6c:b0:d0:bc:
ca:5c:97:e1:6e:8d:6d:ee:6a:7f:44:19:71:98:50:65:69:86:
2a:63:e7:46:20:67:02:cf:b5:5e:d3:e1:1b:43:69:c1:54:f8:
56:b3:42:20:1e:a5:a0:4d:28:bc:9b:2c:4b:6a:1c:2d:09:f0:
4a:48:24:e8:46:61:45:77:61:cf:cf:9c:c9:ad:db:09:46:80:
21:9b:23:64:1a:0e:9f:75:3c:e5:bf:b3:9c:da:8b:69:94:50:
51:fb:eb:f8:ab:29:60:af:5b:e0:60:57:54:50:9f:55:23:12:
4f:a1:7d:62:36:47:d3:4b:fd:45:9f:9b:ee:a1:63:0c:52:a9:
2d:d1:9c:29:04:8b:f1:98:b7:0e:77:48:a0:3d:fe:4f:b6:ef:
41:8e:79:7e:c2:6d:30:5e:0c:2d:47:8c:34:9d:10:ee:f3:49:
1b:cd:91:c1:22:0e:b6:b5:aa:85:e4:fa:1f:ba:29:6b:06:b3:
6b:71:54:53:33:e5:91:fe:54:64:f2:40:42:eb:26:61:fe:6e:
d8:77:fb:b1:27:ea:36:a6:2b:89:48:a4:4e:7e:e5:ae:c5:14:
6b:f4:ad:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 01:11:17 2025 by rpki-client