Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
File: hTodtQq3cdy1KTZ92VGmfKzEhSc.mft (raw, json)
Hash identifier: 2QgjeTItq56nnVmSnqxqy6AGFoG4CRGkWQlU10Xz168=
Subject key identifier: 5D:9E:56:FE:82:4E:94:99:4D:D5:8B:32:EA:26:82:9B:5F:F9:44:21
Authority key identifier: 85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
Certificate issuer: /CN=853a1db50ab771dcb529367dd951a67cacc48527
Certificate serial: 01977D8CED050DFFA1684F8EE8E497939A71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
Manifest number: 1596
Signing time: Tue 17 Jun 2025 11:01:17 +0000
Manifest this update: Tue 17 Jun 2025 11:01:17 +0000
Manifest next update: Wed 18 Jun 2025 11:01:17 +0000
Files and hashes: 1: KFxs769oKYSlN9E-IJj7uVI5-Jk.roa (hash: oeJ8lNpcZ8slOJ+v6lew9m45/w6Rj6vHO1zS6reB6dA=)
2: hTodtQq3cdy1KTZ92VGmfKzEhSc.crl (hash: CzvT8n2bpuyNgxd26oGvXylMuTiMOsTBcjIjCPos3sU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:8c:ed:05:0d:ff:a1:68:4f:8e:e8:e4:97:93:9a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853a1db50ab771dcb529367dd951a67cacc48527
Validity
Not Before: Jun 17 11:01:17 2025 GMT
Not After : Jun 18 11:01:17 2025 GMT
Subject: CN=5d9e56fe824e94994dd58b32ea26829b5ff94421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:56:50:a6:8a:07:aa:13:d8:57:bf:27:09:c5:
5f:91:76:c1:4a:34:72:a2:67:a3:d9:94:82:c3:4c:
df:f7:0b:cd:50:51:a2:cd:b6:2d:40:56:7f:5d:69:
83:7b:25:5d:31:4c:ae:e4:a0:67:2a:54:11:a9:f7:
90:ec:9c:e3:c7:1f:94:28:cf:9a:9f:5e:10:7c:80:
3a:ed:15:86:2b:7b:bb:30:56:18:c6:4b:a7:b6:80:
4f:b5:9e:93:17:e9:aa:e3:96:54:bf:57:1f:63:cd:
ee:db:78:df:09:26:da:ca:20:8d:98:71:ce:c9:f6:
31:9a:7e:4d:31:12:66:11:74:b8:92:c3:0a:35:85:
b6:bf:a8:bf:e0:bf:9d:74:b1:23:ef:6a:52:06:83:
c8:9c:53:69:a5:9c:7a:08:ec:16:26:42:c9:93:48:
f1:84:25:af:71:b3:87:a5:39:1a:5e:13:31:54:eb:
4c:32:35:1f:48:b0:e1:d0:6e:56:12:d0:18:3e:a7:
75:11:45:88:81:0d:5c:d2:b6:b0:98:dc:09:e6:e3:
c5:48:a2:85:28:87:99:7e:96:cf:55:ba:97:7b:d0:
c9:7b:88:dd:5b:05:cd:ba:b6:57:5b:8e:09:29:e0:
ed:1c:f8:9c:23:51:f7:ba:62:07:49:e0:fe:08:36:
77:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:9E:56:FE:82:4E:94:99:4D:D5:8B:32:EA:26:82:9B:5F:F9:44:21
X509v3 Authority Key Identifier:
keyid:85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e7:01:c4:12:e2:07:81:05:cf:35:17:06:e3:96:bc:97:a7:d3:
70:e5:82:aa:b3:11:ef:0f:1c:f8:6d:c6:1b:ca:43:ba:7e:6f:
90:2a:e1:8d:d2:04:9d:dc:52:c5:95:9b:94:58:3d:2b:26:9c:
3d:ac:aa:44:af:5e:8a:be:e9:8b:3f:db:c2:0e:f8:4b:cc:62:
0f:63:d9:1f:0e:ae:fe:c4:0c:9f:76:b8:df:e0:1a:2e:73:73:
fb:23:1d:38:c7:ed:20:46:13:a3:34:84:a5:ca:94:6f:5e:9a:
07:f2:15:9d:3d:4c:ff:36:00:d9:fc:85:a5:0d:c5:03:3e:0b:
46:f1:77:24:7f:b4:02:30:f2:fa:ee:2f:3a:d4:a7:8d:bb:d7:
64:15:dc:d1:22:47:99:8a:b2:ff:fe:50:c0:52:8f:3e:9b:ef:
5b:be:9e:da:40:0e:31:84:17:ac:fe:08:28:42:11:ab:05:3a:
2c:d6:cc:84:14:d8:c4:23:25:fb:68:ae:d1:13:2c:23:f3:22:
dc:ab:96:81:55:d4:87:22:5a:80:80:70:ed:7d:41:6d:15:d6:
b2:14:49:16:f7:97:89:64:f2:73:36:35:e1:a9:d2:f9:4e:ce:
03:3c:20:cd:4e:5f:4f:3c:d1:f8:bd:c7:0a:3e:6e:ba:71:d0:
0a:7e:d0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 12:53:17 2025 by rpki-client