Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
File: hTodtQq3cdy1KTZ92VGmfKzEhSc.mft (raw, json)
Hash identifier: nie4MxoF/UwHeJY2od9UlQpSNT1POlh28MeFpdNUKII=
Subject key identifier: D2:F8:48:61:06:7A:0B:E0:8A:23:88:F4:5E:D0:63:2F:95:C6:F1:CC
Authority key identifier: 85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
Certificate issuer: /CN=853a1db50ab771dcb529367dd951a67cacc48527
Certificate serial: 019872CFF27FCDCBD223D3DE054AD6BA5FFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 02:01:27 +0000
Manifest this update: Mon 04 Aug 2025 02:01:27 +0000
Manifest next update: Tue 05 Aug 2025 02:01:27 +0000
Files and hashes: 1: KFxs769oKYSlN9E-IJj7uVI5-Jk.roa (hash: oeJ8lNpcZ8slOJ+v6lew9m45/w6Rj6vHO1zS6reB6dA=)
2: hTodtQq3cdy1KTZ92VGmfKzEhSc.crl (hash: le/S/JV0ubc4FuOXpp3fUqzdzLUiDjKlNvPLB8b3xt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:f2:7f:cd:cb:d2:23:d3:de:05:4a:d6:ba:5f:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853a1db50ab771dcb529367dd951a67cacc48527
Validity
Not Before: Aug 4 02:01:27 2025 GMT
Not After : Aug 5 02:01:27 2025 GMT
Subject: CN=d2f84861067a0be08a2388f45ed0632f95c6f1cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:41:b9:f8:d3:c9:32:84:3c:68:8a:60:5b:7d:
28:00:cd:e2:bf:f4:41:c8:0b:c8:54:96:c7:b1:aa:
f0:9e:76:8e:23:fe:ef:71:c2:cb:42:8c:f0:57:68:
96:12:4e:58:bc:32:08:5c:55:6e:f5:8e:8d:36:65:
6f:c1:0d:3e:e8:15:29:1b:e7:f9:57:29:a2:72:50:
b0:24:26:4b:2a:3d:19:c5:22:5d:04:df:12:f1:0e:
34:89:b8:c3:81:8c:f1:4c:b8:13:18:19:18:74:61:
ef:6c:ea:29:d0:21:0a:df:8c:5b:57:6c:f5:3e:ca:
32:6c:4d:96:c7:79:2c:78:24:e2:1c:37:18:e3:9e:
c2:c1:0c:51:b0:f7:97:0d:85:e7:14:f0:7c:c4:6a:
d3:c2:40:f2:7d:d3:34:c8:a1:d5:d3:1f:09:4e:59:
9f:b7:b3:89:e5:3f:c5:53:68:bd:d1:14:1c:9c:85:
d1:85:60:35:49:a3:d7:30:34:ed:5b:a0:18:30:bc:
94:82:ad:60:7c:e1:d6:92:4b:2e:b2:5f:cf:ef:2b:
28:82:d4:dc:11:b1:2c:f9:d9:35:2a:21:e2:2e:a1:
08:0f:c3:10:ad:cb:17:66:13:6d:57:74:be:33:49:
11:09:69:d3:9a:10:24:e3:a6:2b:e7:30:b6:0a:b0:
ee:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F8:48:61:06:7A:0B:E0:8A:23:88:F4:5E:D0:63:2F:95:C6:F1:CC
X509v3 Authority Key Identifier:
keyid:85:3A:1D:B5:0A:B7:71:DC:B5:29:36:7D:D9:51:A6:7C:AC:C4:85:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTodtQq3cdy1KTZ92VGmfKzEhSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/dc66f3-8ac9-41b9-8eb8-77295c9ce866/1/hTodtQq3cdy1KTZ92VGmfKzEhSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e8:d3:f8:28:79:55:04:20:ef:83:47:fc:dc:3e:32:ee:41:6b:
5e:5c:91:31:71:e1:6b:99:8e:27:bc:52:ed:ea:31:0b:1c:7c:
2b:0e:06:a0:d9:28:10:c6:ef:51:53:8e:12:c4:76:42:2b:e0:
12:25:4f:4c:e8:7a:c7:d8:2b:75:0c:b2:2c:dc:c2:d7:c0:aa:
34:b0:01:2e:e7:50:41:20:19:5e:aa:71:d6:23:39:1c:f7:09:
79:16:27:d4:2a:a9:2a:69:5e:26:50:e2:14:42:c8:e3:9d:08:
d5:2b:37:59:30:bf:60:1f:98:7b:18:32:3f:55:b7:2c:90:b9:
55:67:61:68:31:85:82:fb:83:a2:e9:0d:0f:1e:1e:54:c5:93:
b4:76:6a:c7:76:7f:8d:5b:10:2e:f6:fa:50:8b:8d:51:8e:24:
2d:88:5f:5d:f9:6c:a3:0b:5d:5a:0b:8b:96:8e:05:3c:7d:5b:
91:d0:ec:40:c5:d8:65:a9:ee:17:35:e7:76:1a:27:68:56:21:
54:f1:15:af:58:2a:89:a5:3d:8f:27:d3:c1:ed:67:fa:f4:7d:
70:c3:37:4f:6d:83:d4:67:48:cf:bd:fc:eb:73:7a:86:be:17:
20:3d:1d:56:6b:f6:b2:3e:79:7e:75:3e:83:48:d3:a4:d7:36:
f7:4f:55:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:25:16 2025 by rpki-client