Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: jZBn7RN6yRiEkI1r1MhI8q5Wf+DYgqDccqEzQEn1wYA=
Subject key identifier: 3F:16:4A:45:AC:EC:84:B5:A1:47:9B:3B:F7:BB:EB:1B:C4:D9:A9:6F
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019895251F0D734FC361757E136287508FEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 014E
Signing time: Sun 10 Aug 2025 18:01:34 +0000
Manifest this update: Sun 10 Aug 2025 18:01:34 +0000
Manifest next update: Mon 11 Aug 2025 18:01:34 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: Gp10PKO/nNanzbD/yuEpFO4shviaSNtO5GC9NxKjn1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 17:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:25:1f:0d:73:4f:c3:61:75:7e:13:62:87:50:8f:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Aug 10 18:01:34 2025 GMT
Not After : Aug 11 18:01:34 2025 GMT
Subject: CN=3f164a45acec84b5a1479b3bf7bbeb1bc4d9a96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:b7:84:6c:bb:6b:3f:75:f4:01:c8:b4:65:
c2:08:86:c9:ec:0a:3a:c5:54:47:7c:e3:ff:1c:1a:
b1:4b:8f:c5:cb:6f:21:7d:ee:89:5b:ab:3e:c8:bc:
94:98:54:43:24:9a:67:6e:2a:91:f7:31:21:bf:fa:
57:7e:ab:c8:1d:7d:c3:b3:94:5d:4f:6d:c2:30:78:
62:55:51:7b:db:c0:4d:44:06:47:73:92:0c:fb:c2:
80:f0:dc:2c:44:26:90:6a:ee:c7:34:af:c5:a3:6d:
0e:94:be:e3:81:78:f1:43:62:31:f3:8a:e0:64:11:
4b:8c:5e:07:10:00:98:0e:31:0f:48:ed:a5:e6:b2:
05:0a:1f:a1:2f:a4:9d:78:04:24:e3:07:d0:07:d8:
0f:9f:e4:c8:ee:3d:10:ad:a6:2e:e6:8c:74:fe:1b:
c6:ae:f7:49:9b:d8:01:c7:0d:fe:95:65:93:35:d3:
c5:8e:61:83:f0:c8:f0:05:97:fa:17:d1:35:2e:0d:
7d:c7:2c:4a:0a:8e:04:32:29:40:93:4f:e5:3a:32:
fb:be:04:e4:83:30:a5:87:5f:23:d8:28:08:13:85:
d7:a5:4b:56:24:11:9d:a6:dd:6b:ae:55:85:79:16:
78:62:92:8a:2b:a8:98:55:9a:e7:e7:1e:56:6e:e2:
2e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:16:4A:45:AC:EC:84:B5:A1:47:9B:3B:F7:BB:EB:1B:C4:D9:A9:6F
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:0d:4b:cf:bd:ba:b3:c6:34:4d:b7:fc:4c:75:5d:a3:24:1e:
ee:78:cf:11:4d:d1:74:05:49:94:82:bc:e7:07:fc:3a:5f:e7:
11:2e:39:92:43:10:a6:f1:0c:78:b1:7d:ed:56:2d:2d:b7:62:
79:de:50:e7:48:3d:36:05:d0:69:d8:19:de:69:cd:30:17:e6:
0d:b7:ef:14:22:48:1a:34:86:39:0c:ea:c5:39:f9:1f:fd:63:
1c:39:8c:cf:08:bb:cd:eb:37:c0:48:b1:8c:4d:c3:ea:18:dd:
47:bc:43:37:03:89:74:fc:e1:f7:ab:9a:d4:f0:cd:e9:42:b0:
a8:9b:95:37:32:88:ba:70:6d:9f:3e:9c:a2:af:8c:6a:e3:f9:
44:28:f1:9d:1b:05:4e:7c:4e:f9:f8:6d:d1:f4:89:69:26:28:
dc:e2:dc:50:20:03:e8:09:6f:5b:f1:8b:6e:94:d4:09:0b:e5:
66:91:ad:15:cd:0b:fd:7e:b1:21:5b:b6:73:a5:bc:6f:e1:6c:
2b:8a:40:a9:6b:b8:ce:23:c9:a4:dd:a8:b1:3a:b9:2b:3e:47:
e6:60:0a:57:c9:40:a7:fa:c6:24:a8:c6:98:1b:ac:5d:0b:37:
74:63:8f:ba:22:6b:ad:58:9f:d0:fd:06:3a:c4:2b:29:9e:9f:
10:48:99:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 01:46:29 2025 by rpki-client