Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: KlLLVx5Ii5cIL8s0tCfW3yrDhHXFfrBaE4C5BSyvfZI=
Subject key identifier: 99:48:D8:5E:A5:3C:A1:F1:AC:6B:EE:30:32:ED:2A:0A:CF:B0:D6:E1
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 019873E26D04DFD078922B1A7596C81986AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 161B
Signing time: Mon 04 Aug 2025 07:01:15 +0000
Manifest this update: Mon 04 Aug 2025 07:01:15 +0000
Manifest next update: Tue 05 Aug 2025 07:01:15 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: QkrgkqJRIirDu4laai/3UFQcvN2+UGm3KUUUauwQ9HE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:6d:04:df:d0:78:92:2b:1a:75:96:c8:19:86:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Aug 4 07:01:15 2025 GMT
Not After : Aug 5 07:01:15 2025 GMT
Subject: CN=9948d85ea53ca1f1ac6bee3032ed2a0acfb0d6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:76:04:c8:5f:00:e0:3a:f2:83:66:7c:c4:83:
ed:59:a3:b1:4b:3e:9f:c8:df:cd:cc:b5:1a:90:6f:
fd:8c:f9:2e:fc:56:68:30:a6:42:c4:93:52:9e:c1:
ff:13:b7:d1:ad:94:b8:70:f6:9b:b0:6f:24:9f:b7:
c3:2c:06:6e:28:12:70:0d:30:9a:41:4e:44:8c:9f:
77:60:b3:fd:ad:2c:79:ad:1b:2c:2e:d3:8e:f6:fc:
2d:1f:a1:74:12:53:61:45:9c:62:9c:81:13:2a:dc:
28:e2:bf:8b:4e:eb:c1:f4:ff:70:bd:cb:cd:b5:1c:
6f:56:24:b2:d4:db:29:3a:f5:cb:90:b7:06:04:19:
0c:79:d2:46:43:c5:77:89:02:3f:e5:c1:35:b9:98:
69:dd:68:37:2c:63:3c:a9:d0:68:cf:85:9d:4f:a2:
1b:a2:59:7b:44:fb:c9:83:74:47:19:a8:95:60:13:
4d:f0:52:d2:1d:1f:e5:cb:93:27:6b:3b:33:4b:44:
46:6e:e6:c5:46:98:a6:22:7d:67:d6:26:06:a1:b7:
6d:a0:c2:51:bf:30:59:83:02:f0:2e:43:39:f8:72:
22:1d:04:17:b8:d5:98:a2:72:bb:03:97:e7:08:24:
95:53:3f:cc:23:ca:e7:e6:d5:f8:12:98:18:cb:23:
80:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:48:D8:5E:A5:3C:A1:F1:AC:6B:EE:30:32:ED:2A:0A:CF:B0:D6:E1
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:c5:95:4d:1c:55:0b:44:21:93:1a:65:ac:fb:e6:f7:5f:be:
a9:b1:bb:e5:82:3c:2a:5d:47:9f:0d:61:4e:e8:45:ea:49:28:
8c:21:c8:67:e1:28:d0:31:78:a7:a3:61:69:d9:19:08:da:d4:
cd:87:3f:13:70:de:5d:4f:c8:05:f4:3c:79:1d:fa:f9:f7:cf:
5a:a1:49:3c:aa:9e:03:9d:c1:c1:c6:e8:93:41:1a:00:a7:2a:
44:c5:0e:60:ae:25:8a:bb:82:17:4e:cd:86:3c:a1:fc:b7:4d:
f8:88:cc:63:a5:09:3b:8b:91:c2:e3:02:37:ff:b3:9f:47:21:
8a:d0:18:94:56:1f:3f:7b:5b:3d:fd:a8:8e:4b:69:21:cb:86:
86:61:97:0b:a3:fb:34:e2:c0:e0:3d:cb:7d:d3:81:e7:18:84:
94:b8:a6:ac:12:87:93:68:f2:95:41:06:b0:5c:55:62:9f:4e:
78:76:e1:1b:d1:ea:19:0c:9f:fd:2c:78:3b:8e:06:41:7c:62:
01:a8:d6:fc:fb:4c:dc:cf:9b:40:98:b4:76:7f:47:e2:4d:fe:
0e:18:62:c8:a0:20:fe:ed:63:66:8c:6a:39:32:13:f0:7f:c6:
44:89:6a:3a:cb:a7:d4:7b:6a:6c:d0:79:c6:09:c7:4d:43:0a:
89:a3:18:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:01:13 2025 by rpki-client