Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: vPUQcyvecnvDUcJmK7ogUbZU66RWi7rp9bOlB6XClow=
Subject key identifier: 56:27:D4:72:9D:E5:AF:9A:E6:99:44:8A:09:61:52:69:79:AD:7B:A1
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 01987FE66ADC168D9C9D7D77E680ED602203
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 11C9
Signing time: Wed 06 Aug 2025 15:01:03 +0000
Manifest this update: Wed 06 Aug 2025 15:01:03 +0000
Manifest next update: Thu 07 Aug 2025 15:01:03 +0000
Files and hashes: 1: EgrdXaLN-vc8C2zZS8RN3DywvDo.roa (hash: hzm54PDUPW3onP/qtSLZRsQOvKv3wuQ4riGx7IRQcQA=)
2: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: ftSUrpa3mPoTYlaY8s1plA3zXW6RnVAIlV7otsPMpWA=)
3: rAaiXMvO9i5snovqluPbyo_QCN0.roa (hash: pt3vDzVbNzSpy4PSZ8+XX3gpZBn6uEG/ZRILx9TbDQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 15:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e6:6a:dc:16:8d:9c:9d:7d:77:e6:80:ed:60:22:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: Aug 6 15:01:03 2025 GMT
Not After : Aug 7 15:01:03 2025 GMT
Subject: CN=5627d4729de5af9ae699448a0961526979ad7ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9d:a7:d7:4d:b2:50:85:c8:5e:fa:6a:e9:cb:
12:92:40:b4:54:4b:73:be:74:21:ba:9d:58:52:d1:
4f:f1:99:0c:4e:a1:e7:40:7d:a3:01:fe:6a:bf:f8:
55:75:fb:15:bf:ef:c3:5b:e7:1f:82:e1:35:0e:bf:
88:89:3e:b0:a3:08:a8:60:4d:52:e6:40:c5:4a:e4:
d7:38:c1:02:4c:99:1d:62:64:eb:ce:ef:4d:b8:a7:
1f:0d:39:43:9e:4a:e5:e2:8c:c5:75:74:88:1f:45:
48:0e:cb:c3:48:3d:d1:12:d7:67:96:1d:f8:d5:dd:
4d:5e:b0:e9:bd:86:1c:1b:a6:ed:4e:3c:63:3b:58:
59:34:ef:9f:14:66:5a:f0:ca:a8:fe:70:17:39:dd:
89:eb:8b:54:63:af:1c:d0:04:17:39:09:1a:5d:cb:
5e:29:e1:7e:f7:91:50:37:7b:32:5f:79:90:ee:08:
f2:a4:d7:ef:6f:dc:4a:db:53:2d:58:60:4c:14:fe:
7a:df:6a:e3:a9:94:aa:34:be:10:69:3f:ea:56:0e:
92:8a:91:8a:cc:cf:9f:51:fb:8e:b7:b3:e7:9a:40:
7a:0b:11:1d:8d:f2:09:94:37:4e:9e:c7:d8:a4:b7:
c8:92:11:91:5e:35:00:6a:7b:f0:8f:57:45:e9:1e:
6c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:27:D4:72:9D:E5:AF:9A:E6:99:44:8A:09:61:52:69:79:AD:7B:A1
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e4:6d:8c:03:c1:c4:66:e3:28:89:c6:ff:2e:08:83:a3:8e:
3a:03:b4:60:f7:95:0c:d0:90:68:0d:99:d0:ee:62:cd:5c:e4:
c3:37:e7:4c:3f:a1:2a:35:25:9c:8c:6c:ad:6a:b3:79:c2:40:
b2:de:ca:7c:45:2e:9f:22:d0:17:f1:c8:68:54:b8:65:14:ca:
79:0d:a5:93:8f:86:e5:a7:0f:d0:21:95:23:17:ff:5c:ef:50:
7d:45:79:31:80:47:67:1f:f6:0d:d7:b2:9c:04:8d:c0:bb:b1:
cf:7f:7a:12:6e:52:40:54:fd:5e:24:d0:f0:bb:b6:35:70:5f:
9d:60:c8:86:b6:54:01:c0:77:11:0f:3e:a6:7f:b0:79:e1:a7:
b5:72:dc:57:a0:f8:bf:ce:65:c2:dd:f8:32:e0:e9:ff:52:87:
37:59:72:56:fa:93:aa:9f:de:50:39:5c:d3:13:e2:52:0e:48:
ea:e2:15:63:28:c5:33:68:1a:86:8c:6f:02:e7:55:40:d7:66:
bc:b2:8b:4f:b8:13:93:e5:b2:09:70:bd:a8:f9:1f:21:9a:55:
71:13:c2:bb:20:63:73:68:1c:72:42:fd:39:d3:82:54:64:46:
96:fc:a4:6f:9c:99:24:ed:84:05:4a:f2:1f:4a:95:38:7f:c1:
77:0f:bc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 00:44:57 2025 by rpki-client