Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: 5SbtPbplYiNhSSgc35F7GWzRfLxjMgcNKF1hRPCOibo=
Subject key identifier: 87:CD:64:A9:B1:1F:DF:67:74:C4:00:52:B4:3A:26:80:3A:38:97:51
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 01987A51C0C945ABD57909871B3B8DCCB211
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 08AA
Signing time: Tue 05 Aug 2025 13:00:34 +0000
Manifest this update: Tue 05 Aug 2025 13:00:34 +0000
Manifest next update: Wed 06 Aug 2025 13:00:34 +0000
Files and hashes: 1: 5iC1C_l2xnIVtV_ynL6awoKgYMQ.roa (hash: c0Zm1e9RjgR5PBfasK6Q1TzGKpfYhKyszQz9aW+gUGA=)
2: K2099PO4iAtvBzGlnwl1axWP2hE.roa (hash: 6aTZlr/sfRYyJqs+vE8kRpR5W2QDPbSiPNBoLmmWJlA=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: QlaXfkkgP8DsrTtxsYiq7l3vzFNjAc1qUUvLV9COPi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 13:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:51:c0:c9:45:ab:d5:79:09:87:1b:3b:8d:cc:b2:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: Aug 5 13:00:34 2025 GMT
Not After : Aug 6 13:00:34 2025 GMT
Subject: CN=87cd64a9b11fdf6774c40052b43a26803a389751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9a:60:5f:f4:d8:45:2f:ed:4d:52:ab:f4:5f:
9a:c4:ce:5b:3e:b5:41:2b:1e:bd:b7:05:c4:e5:33:
f3:28:e5:e7:2d:ae:3f:4c:87:0c:54:5c:3d:30:13:
01:b3:b0:68:2f:f0:ff:b4:3f:6a:f1:01:50:ec:ce:
6f:f7:68:cd:0f:3b:32:d2:54:95:35:c5:c5:58:1f:
b0:ba:f4:e9:0c:c0:5d:30:8c:63:44:d2:61:b0:ec:
2f:41:18:ba:55:8e:90:03:0d:1a:4d:4e:31:0e:7f:
fb:97:eb:d3:da:92:1a:6a:35:60:c0:3d:f7:6e:90:
58:f6:e4:65:41:08:a3:fa:af:35:a1:f2:23:59:cc:
d1:ef:a2:36:65:55:92:fe:20:32:f0:38:81:86:b5:
bc:0f:b4:05:90:cc:38:9e:07:01:f5:ea:bb:84:1f:
fd:48:5a:d5:a5:67:cc:63:39:4e:e0:2e:78:79:c9:
fb:a0:52:84:fe:df:41:ed:7b:53:a1:20:7d:aa:ee:
28:6e:af:27:d9:c7:83:ec:06:1e:13:56:a0:f7:fb:
21:55:82:a5:95:a3:bb:6f:5a:22:9a:03:dc:82:fa:
4c:8d:5a:ae:c9:17:12:d0:9a:3a:04:ec:e8:e7:05:
8d:97:c7:01:27:2c:f7:7a:9c:76:4d:bc:4b:62:cf:
ab:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CD:64:A9:B1:1F:DF:67:74:C4:00:52:B4:3A:26:80:3A:38:97:51
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:dd:fa:81:f8:59:28:65:b9:a5:e8:8b:c3:71:51:a0:2a:09:
85:61:1e:0e:0c:2d:f6:de:fd:44:6c:d3:a0:e0:86:53:9f:ba:
19:8c:84:6d:66:3b:2d:22:a1:a3:6d:87:16:72:97:bc:ef:7e:
4e:49:14:ee:ed:74:c5:06:28:04:a2:9a:1b:66:ab:48:16:43:
8e:0d:64:f7:31:10:e1:75:b7:57:fc:94:fa:c7:51:1c:23:ca:
cc:1c:dc:21:c4:bd:43:e0:00:ff:a5:c9:98:56:da:eb:ad:98:
44:2f:6a:e5:b2:b0:c4:dc:fa:1e:00:6d:93:2b:c8:95:79:a3:
af:de:12:af:a0:43:72:e8:3b:f1:e4:0d:dc:53:d5:85:56:8f:
75:23:8a:5c:dd:8a:82:f2:7d:36:e1:da:0d:8f:e1:03:4b:cf:
c7:29:5f:af:45:bc:ad:a2:fe:ee:80:f2:a5:e8:3a:75:44:8a:
7d:b8:36:cd:3a:5f:6e:83:23:02:d6:90:76:4a:4a:a5:c8:e6:
04:70:6b:24:6f:8f:70:5d:81:71:f0:ba:13:c3:40:7f:c6:c8:
78:40:50:07:82:c7:92:f7:35:6f:ef:c3:43:96:81:0c:75:f2:
1d:41:01:6b:31:fb:89:5a:db:a5:51:39:27:5f:d4:de:67:5b:
1b:0b:4b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:24:26 2025 by rpki-client