Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
File: hDz1u4drdyt63kMpBctpbxNMqjk.mft (raw, json)
Hash identifier: T5oYN/1vBRb9Uswpu8ks0VMBT2h0jg/ACF0JuE0U0io=
Subject key identifier: 78:7E:9C:4A:B8:95:83:C5:FA:0F:CA:EB:2C:C0:84:16:DD:A5:45:D6
Authority key identifier: 84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
Certificate issuer: /CN=843cf5bb876b772b7ade432905cb696f134caa39
Certificate serial: 01989ECCE35132679A8E9A77394AB77F53E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
Manifest number: 1631
Signing time: Tue 12 Aug 2025 15:01:24 +0000
Manifest this update: Tue 12 Aug 2025 15:01:24 +0000
Manifest next update: Wed 13 Aug 2025 15:01:24 +0000
Files and hashes: 1: 8SOVzbdZRi1TiXuPdQBPQag2b1I.roa (hash: 4UxgH1Bm5rLISlPUt1abtwizcDNcCBaAAK4mH1Wxzxk=)
2: hDz1u4drdyt63kMpBctpbxNMqjk.crl (hash: 7kIN8dUEjUc5LO/4TqNUZJnnEamvnv7brtMYcOJi2u0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 15:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:cc:e3:51:32:67:9a:8e:9a:77:39:4a:b7:7f:53:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843cf5bb876b772b7ade432905cb696f134caa39
Validity
Not Before: Aug 12 15:01:24 2025 GMT
Not After : Aug 13 15:01:24 2025 GMT
Subject: CN=787e9c4ab89583c5fa0fcaeb2cc08416dda545d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:95:d6:9c:49:38:f8:88:b5:f1:f5:1e:46:aa:
b3:a4:b6:1b:96:c0:5d:9f:de:9b:d4:9d:da:15:90:
73:2f:23:af:9e:82:5d:7c:3b:d4:79:1d:f7:b5:0a:
cb:57:15:b9:ca:b5:95:f1:7e:df:af:89:4d:54:70:
40:e1:9b:e2:a4:62:db:db:f1:29:1e:07:4a:30:2e:
37:f6:a6:ab:c1:78:4f:71:6c:c4:bc:67:83:b8:d3:
7f:4c:a1:25:86:6d:f7:1a:89:4b:a5:cd:76:79:79:
a6:0e:3b:3d:f4:be:99:e5:e4:75:53:7d:17:0b:63:
29:60:44:e4:f9:07:24:c8:91:c5:cb:df:ac:c8:79:
1e:ad:da:32:e4:95:62:c5:14:5f:17:fa:0b:f0:fb:
c1:4f:e7:db:6e:cd:b9:c0:13:b1:17:6c:61:ce:34:
1e:1f:21:aa:55:ae:bd:f1:f9:a8:3d:5d:87:a6:08:
db:1d:60:0c:10:da:cb:3c:97:08:8e:78:13:f3:1a:
15:20:31:f7:fc:20:cc:1e:0e:89:6f:fe:80:89:21:
e5:0a:44:e5:9c:1d:37:22:ae:f1:ee:c8:16:a2:76:
26:23:20:2a:b8:8e:41:1c:14:61:6d:d7:f3:bf:6a:
08:65:25:84:d8:6c:41:17:33:b2:f6:96:c1:fd:0d:
c8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:7E:9C:4A:B8:95:83:C5:FA:0F:CA:EB:2C:C0:84:16:DD:A5:45:D6
X509v3 Authority Key Identifier:
keyid:84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:c6:52:f6:2d:af:cf:33:78:7c:b5:09:bb:6f:40:cd:35:c1:
1c:55:9c:5d:ba:4c:9f:d0:90:ed:27:d2:e8:9f:d3:09:78:77:
b7:aa:2e:9a:10:5d:47:e3:b5:16:b3:a4:a4:be:4f:e1:96:4d:
62:0c:e3:3a:ac:c5:62:7b:48:ec:33:ac:3a:d1:5b:4d:5d:d0:
1e:ac:0b:26:d8:a8:f5:45:70:2a:7b:bc:36:dd:5c:55:97:6e:
9c:77:ab:ff:ac:04:88:96:b2:97:bf:e1:c2:07:8c:df:a2:20:
b5:bd:e3:57:09:2f:d4:fe:d0:f7:4f:34:e2:c8:61:0e:d3:0f:
0a:3b:50:da:a6:33:19:5e:f6:a9:c1:2d:c2:66:79:42:6b:62:
85:2b:bf:cc:98:d2:5f:1d:dc:bc:4c:77:3e:d3:c6:1e:67:a6:
75:38:91:01:fa:e6:55:05:73:80:74:63:42:77:b4:86:7a:5c:
8d:ad:e1:dc:dd:db:37:2f:12:11:6e:3b:91:d9:35:30:b3:d2:
50:33:d8:20:87:be:f3:ce:56:49:ff:4e:22:20:1e:04:b1:7d:
db:40:28:ca:ea:02:1f:78:c5:ff:b8:e5:45:8f:ba:50:31:7f:
39:ec:94:c6:4d:42:0e:dc:1b:af:e1:8c:7d:c9:89:32:d3:5f:
0a:f0:2e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:32:36 2025 by rpki-client