Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json)
Hash identifier: bTgTjHZ6NpPNpG4Y44kqTNW7rEBuLursaXkjbkLQg7s=
Subject key identifier: 8E:4D:13:05:64:08:81:3C:8D:47:03:24:2E:F9:84:A0:8D:F4:EB:D5
Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d
Certificate serial: 01989E5E31C84ADADECDF7215EBEFF30DA15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
Manifest number: 1629
Signing time: Tue 12 Aug 2025 13:00:29 +0000
Manifest this update: Tue 12 Aug 2025 13:00:29 +0000
Manifest next update: Wed 13 Aug 2025 13:00:29 +0000
Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: mli4xE9M6cmTFZAWao5FRGe1QvF+zpvgHXSzdE05s7s=)
2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9e:5e:31:c8:4a:da:de:cd:f7:21:5e:be:ff:30:da:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d
Validity
Not Before: Aug 12 13:00:29 2025 GMT
Not After : Aug 13 13:00:29 2025 GMT
Subject: CN=8e4d13056408813c8d4703242ef984a08df4ebd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:08:5f:7f:94:a3:d9:4c:25:04:a8:70:df:c2:
0a:f5:68:51:b6:55:35:5c:79:df:8b:8a:ed:5d:d2:
18:dd:1d:35:2b:8d:23:db:3e:44:69:a3:c7:5f:37:
cb:7c:0e:84:71:c3:ec:81:7b:27:4a:28:22:1e:7e:
c3:c9:80:48:e0:5c:00:00:b3:59:e4:d3:e9:09:c7:
e3:2e:9e:93:6f:b4:87:f5:2e:38:57:59:1b:0f:73:
d5:04:3d:3f:21:ec:4f:20:6e:a1:36:85:2d:84:09:
65:93:fa:8d:4a:46:4a:63:e4:51:23:3c:91:9a:9d:
05:78:0c:aa:e4:4a:a4:1a:75:5e:f9:a6:64:19:57:
bd:ba:c2:c3:66:bd:78:cf:46:92:7e:c1:77:8d:18:
41:df:35:a5:d5:41:72:42:7c:4f:2a:3d:85:e0:5d:
06:91:f6:e1:d8:01:6e:0d:b8:bd:22:6f:f9:7e:cb:
eb:92:1f:15:ee:24:9d:ed:72:5f:b3:70:01:f8:58:
ab:97:93:07:6c:04:77:dd:57:fe:ee:43:21:cf:0d:
34:4c:2b:22:6b:7c:6a:aa:6e:12:17:d2:0e:73:2f:
c2:b1:38:a0:e4:28:b4:92:8d:35:75:bc:ab:f3:5a:
05:2d:83:a7:d7:41:37:f2:1a:99:09:72:95:71:7a:
cd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:4D:13:05:64:08:81:3C:8D:47:03:24:2E:F9:84:A0:8D:F4:EB:D5
X509v3 Authority Key Identifier:
keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:b7:f9:71:9a:e1:18:5c:e8:05:3f:ce:fb:b3:53:88:d5:52:
c5:43:56:cb:c0:a4:8c:45:bb:e5:e4:db:c3:62:b8:7d:7b:13:
16:71:14:e7:f6:f8:8c:55:57:20:9d:cb:b5:ec:44:c0:9e:72:
4e:32:78:28:de:6c:1f:1f:29:a6:56:8c:21:89:5c:14:a4:ff:
64:a3:15:3b:61:73:cd:ee:5b:f5:c2:a3:0b:bc:2b:ab:4c:45:
b5:93:c4:9e:7b:4f:99:18:bf:a3:be:89:64:f8:2e:be:46:05:
08:cf:66:a7:ec:99:7f:5e:2c:cd:0d:7c:0b:05:ab:d6:a0:6b:
56:f2:d1:c6:cc:83:16:ce:ac:17:d1:92:f7:e8:26:7d:f9:7d:
46:75:8c:b7:d5:68:e1:ff:4c:b4:db:9b:4a:06:22:eb:80:a3:
76:d5:71:d6:84:0e:be:29:68:a2:92:25:98:d0:3e:81:13:a2:
ff:92:09:2a:25:f6:d0:b0:66:16:97:35:69:75:5d:f8:09:9e:
15:07:39:77:86:53:ca:29:96:e5:5a:5c:c5:5a:55:96:09:4f:
ae:f2:97:e0:ab:5e:83:5c:b2:ac:50:98:46:b4:21:b8:47:6c:
b6:50:bb:f0:75:51:88:0c:cd:8f:61:88:98:6d:e4:9d:6a:f5:
35:5b:f1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 18:53:47 2025 by rpki-client