Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
File: hto1bCqGENEdNM24pH0rkFGfvTU.mft (raw, json)
Hash identifier: /5iRMbdUpCwp8WO4+3OI40UE/j7bVHIJezy2uKGSrDs=
Subject key identifier: 8B:91:A1:76:59:A4:54:66:6B:6B:FE:8D:1C:C8:27:20:23:8A:66:07
Authority key identifier: 86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
Certificate issuer: /CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Certificate serial: 019874503170EA1A0185F867EEA3A8E1DE06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
Manifest number: 131E
Signing time: Mon 04 Aug 2025 09:01:09 +0000
Manifest this update: Mon 04 Aug 2025 09:01:09 +0000
Manifest next update: Tue 05 Aug 2025 09:01:09 +0000
Files and hashes: 1: e2SQSmJ5Uij4VeGzNgyMcf8tHqM.roa (hash: /jn7jwBSYHJhjR+sZRgi9zex0zsrMd1Ejp9Gj9O6Ons=)
2: hto1bCqGENEdNM24pH0rkFGfvTU.crl (hash: sUD0ofF/JOV2VuZj4UCVvJjdR4r7CSjBISvWy1k116g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:31:70:ea:1a:01:85:f8:67:ee:a3:a8:e1:de:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86da356c2a8610d11d34cdb8a47d2b90519fbd35
Validity
Not Before: Aug 4 09:01:09 2025 GMT
Not After : Aug 5 09:01:09 2025 GMT
Subject: CN=8b91a17659a454666b6bfe8d1cc82720238a6607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:19:dc:fe:96:cb:13:66:28:c3:c2:7e:30:59:
e5:70:f4:64:49:da:11:ea:f9:bb:ca:1a:2d:5f:55:
e3:12:3d:b0:e6:cc:d6:f9:fd:ac:e3:01:dd:67:80:
97:d8:f0:7c:01:b0:d4:94:c7:39:50:68:5a:49:26:
46:d7:9f:01:a1:05:f4:7c:b6:ff:ba:d4:c5:f9:f4:
21:4d:7c:d9:e9:cb:ec:cb:aa:60:e6:b4:48:63:98:
8a:25:cc:41:59:40:fd:49:b7:a4:15:d3:a2:64:91:
9b:4e:b7:d2:1a:74:8d:36:92:3d:97:63:05:5b:5b:
38:5c:d6:f9:18:24:c0:ee:21:a8:0c:26:6b:7e:0d:
4b:80:bc:f7:c8:9b:d1:d3:42:47:19:82:44:1d:66:
2c:a9:eb:59:d4:cc:60:23:71:a2:3e:10:84:18:d2:
00:45:1c:98:05:59:d7:a4:dc:2b:1f:2e:f6:b8:fa:
e5:5c:0e:85:92:b7:c4:ae:d9:ed:99:44:43:ca:84:
d3:71:86:62:ed:52:bd:d1:4b:b7:d2:8c:9d:f5:37:
59:a2:9b:7c:5f:2d:3d:2a:a5:49:43:7c:5f:dc:8d:
50:f7:7c:77:6c:d0:4a:c7:c5:1b:99:16:9f:3a:16:
31:84:2e:c2:f2:92:a0:e8:2a:32:82:e8:4c:49:fe:
24:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:91:A1:76:59:A4:54:66:6B:6B:FE:8D:1C:C8:27:20:23:8A:66:07
X509v3 Authority Key Identifier:
keyid:86:DA:35:6C:2A:86:10:D1:1D:34:CD:B8:A4:7D:2B:90:51:9F:BD:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hto1bCqGENEdNM24pH0rkFGfvTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cffdb2-de8c-4c78-8132-8a96604c826d/1/hto1bCqGENEdNM24pH0rkFGfvTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:96:38:7a:b8:e4:29:1b:a2:37:46:b6:c2:43:8c:d1:4a:73:
fc:10:c4:47:ca:a0:09:cd:4d:0c:e6:cc:bb:80:b8:2e:26:12:
86:10:4c:9d:53:e2:d2:08:69:41:3f:51:eb:cd:28:44:03:e5:
d4:c9:2c:c0:37:b2:c1:32:8b:06:8a:f1:e6:f1:40:66:1d:ee:
9d:ea:3f:93:51:17:c1:c4:72:7c:26:db:94:1f:c6:69:d9:b0:
ea:94:5d:12:7e:71:2a:7d:b0:b5:12:4e:f0:ff:4b:f7:da:5e:
06:7f:8d:3e:b2:83:e8:79:36:03:29:f5:cc:55:7d:f8:91:8b:
36:28:9e:51:5a:c2:be:75:12:09:ff:fe:40:40:f3:c9:50:be:
e3:16:00:50:ec:ad:61:30:f6:a8:df:8b:48:27:46:4d:5b:8d:
80:f3:68:68:29:a3:f2:d8:2b:a7:5f:98:11:98:2f:4f:8a:8c:
73:c6:f2:9e:bd:48:46:b8:96:92:97:08:30:ff:ba:60:ef:ab:
6b:70:10:53:13:5e:31:48:19:0d:02:f2:58:a1:0b:5b:31:ff:
fa:8e:3e:1c:5b:00:d2:b9:9b:e0:81:29:1f:4f:6f:9e:62:c8:
1a:26:eb:27:d3:27:77:c7:79:d5:ce:1e:25:58:89:91:63:9c:
c5:fc:94:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:00:52 2025 by rpki-client