Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json)
Hash identifier: X6mAToTfkrCFyk7fTNIg96jYmS8V5i5XSMWyTBmHqwA=
Subject key identifier: 50:12:8F:ED:33:64:5E:4B:78:A0:2D:F4:F3:F3:10:CF:31:51:77:AC
Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Certificate serial: 01989F03B5F3313E2838764C15DDBDB63FD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
Manifest number: 0C70
Signing time: Tue 12 Aug 2025 16:01:17 +0000
Manifest this update: Tue 12 Aug 2025 16:01:17 +0000
Manifest next update: Wed 13 Aug 2025 16:01:17 +0000
Files and hashes: 1: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=)
2: NLcJ1zHiWemoNGCQqxBLJZM1epY.roa (hash: sN7g+z3kFVXgkKd1egNCxj+JRztRoGDD2QPyWEFToRI=)
3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: 3kW6YAN+qNR3g+4B0gng81h9f6G6IOYZwsr/VHV+iH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:03:b5:f3:31:3e:28:38:76:4c:15:dd:bd:b6:3f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e
Validity
Not Before: Aug 12 16:01:17 2025 GMT
Not After : Aug 13 16:01:17 2025 GMT
Subject: CN=50128fed33645e4b78a02df4f3f310cf315177ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:32:da:ef:e0:b3:ee:97:af:41:4f:31:b1:59:
d3:c3:13:4d:d9:f5:64:30:1e:c7:3c:25:ba:37:c4:
db:5e:2a:9d:9c:89:7f:93:2b:27:35:7f:d7:08:2a:
8b:0e:84:39:65:0b:21:e4:35:ca:c2:f3:90:c9:00:
95:cd:a0:60:f5:2d:f1:1a:43:32:1d:89:a6:6a:97:
88:f4:8a:2d:da:86:7b:b8:23:86:ae:8e:61:51:e3:
38:8f:0b:71:bb:09:c9:7b:d8:78:1b:14:52:ce:c2:
d2:86:19:b6:7f:80:db:53:f7:53:22:a1:3d:bd:bb:
3c:a3:74:be:07:43:f8:c5:ce:10:e6:17:0b:2d:2a:
a3:b9:5c:bb:c2:35:58:06:ff:e2:38:24:89:a5:59:
d2:96:12:26:52:69:08:8e:b4:13:7f:6e:00:f6:3a:
1c:29:b0:a2:4e:ed:77:38:90:c1:00:57:57:39:2f:
d0:28:67:9d:28:9c:f2:94:d1:7f:a3:22:09:ad:91:
e4:e0:51:6f:e4:5b:ac:17:ee:a7:4b:98:2a:a1:98:
79:f5:5e:fc:43:98:70:fd:43:8a:d4:64:93:8b:a3:
5a:b9:41:33:15:83:a4:9e:03:01:49:60:9e:5d:c6:
80:ed:70:f7:3d:27:70:17:cd:10:4f:d1:05:1a:fe:
6f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:12:8F:ED:33:64:5E:4B:78:A0:2D:F4:F3:F3:10:CF:31:51:77:AC
X509v3 Authority Key Identifier:
keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:86:33:96:66:aa:d5:b8:da:09:bf:dc:62:bc:fd:dc:84:19:
7d:4e:89:e4:20:d8:13:a7:49:bd:41:4a:63:92:12:9b:5f:92:
e8:24:16:47:70:e3:af:89:c9:0f:59:39:6d:00:08:49:a6:9e:
c6:ba:0b:11:40:8c:75:88:63:72:e8:44:44:5f:23:aa:82:cb:
8a:e1:62:83:91:12:a7:8a:28:f2:c0:89:ea:03:ad:1f:01:b4:
f2:ab:09:72:c5:70:c5:10:87:13:08:59:c3:a3:62:e9:1c:be:
a2:01:28:cf:a9:de:6f:69:7c:cd:1d:f1:b1:34:10:93:7c:97:
ed:3e:dc:6d:af:ce:37:85:a4:53:14:94:85:7d:8d:9b:8a:96:
a5:b1:ae:31:86:4b:a0:5e:2f:a6:76:2d:db:be:e5:51:71:b6:
50:0b:6a:4a:b6:bc:42:c5:e3:de:15:33:46:7b:09:f9:3f:69:
2a:3f:cb:d0:92:28:4c:d1:9c:bf:0d:06:f0:30:ad:5e:1d:28:
49:d9:e3:4e:ba:73:60:13:f1:8f:a5:d9:c8:46:d5:aa:75:92:
db:06:6e:fd:ab:54:a5:2d:b2:d1:dd:da:15:36:f2:eb:6d:6f:
87:34:15:63:50:fd:70:4f:87:7e:8f:19:99:49:16:d0:61:f0:
b8:a7:71:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:16:39 2025 by rpki-client