Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json)
Hash identifier: vjK0Ws1LFY3KEBeF6MO+eqFv/syM25aGKdfxCnLYGBE=
Subject key identifier: C4:D2:27:33:0B:E5:44:B5:84:B8:D2:4F:4C:95:72:0B:C2:96:E2:88
Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77
Certificate serial: 019873E2AFF383CC966574EAC01B3004DEF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
Manifest number: 1624
Signing time: Mon 04 Aug 2025 07:01:32 +0000
Manifest this update: Mon 04 Aug 2025 07:01:32 +0000
Manifest next update: Tue 05 Aug 2025 07:01:32 +0000
Files and hashes: 1: IZeoqEY95eSVV0eYYLX8T3tHlCs.roa (hash: LO4oh4VYMguVhAQpzzJsbYN82/uMVEn2vgRLSpasT1s=)
2: LJnxaD0i6KMHQc1A1Myl7JzH7gk.roa (hash: BOqHp3/8Lrk2VNXTgZj56poMzxkbv3v/wNmy6/SirSw=)
3: NewZ8pp4liRlRqK_bUM9ux7lUdY.roa (hash: e2V20fh5Bna/npvAqL/4q48RnUBDa1PMa1ud3KkuSzU=)
4: OMAWMgjFkntxY9hjh7x9HjopsUQ.roa (hash: fC4Wynjh9RIf9v3k1CSQsuZtxFupNj1veyw3ZlhI/Jw=)
5: QHrhoLDtZR3zPElOqqmMq3qzkao.roa (hash: NXLg9El+SZKbOxc9Fad+2P9R3XvjaMUu4aKcgfvxLco=)
6: VTgIeAjnu6QDITPutn3ZYiX28hw.roa (hash: 1qNSFP6+K7IEMjkOk6A/QLlgZfO6RHOCGRUYacl+A9I=)
7: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: tbrxjFCWQiCPiMPuU+aB/ibn4/HQCu9kdLIiwEG/DeM=)
8: kYOzNphxQuuMN-KEH5LcxfVfKho.roa (hash: ZqTwzdBEFFNTdg6mPtQfwSsq0u9CJRd378DWfNVX+no=)
9: wYF_ylL7pnBo9OaIzACNhn9RjFU.roa (hash: RTPtjL/eZ7d6GsDAAsmLFavUlJqeMCconuqgqwEBbU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:af:f3:83:cc:96:65:74:ea:c0:1b:30:04:de:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77
Validity
Not Before: Aug 4 07:01:32 2025 GMT
Not After : Aug 5 07:01:32 2025 GMT
Subject: CN=c4d227330be544b584b8d24f4c95720bc296e288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:49:3c:3f:28:30:85:05:f9:67:c7:b5:17:29:
0e:84:2f:c1:73:8b:46:c3:35:24:6c:70:91:c8:6d:
56:1a:6d:83:9b:6b:fc:7c:1c:e9:36:11:fc:38:55:
cd:55:f1:a4:f2:ae:51:29:dc:b4:a1:64:47:c1:69:
d0:d4:57:f7:6a:5f:51:56:3d:c8:56:40:b0:da:cf:
e1:9c:09:ae:36:e4:f4:e2:7c:c6:f3:cd:22:50:0c:
90:38:7c:59:44:28:b5:3b:f0:d5:cc:27:cc:72:f2:
e6:6d:4e:0b:40:b1:a5:fb:21:ae:4e:35:ab:7c:5b:
dd:8c:2d:01:d2:9f:42:01:cc:1b:21:cd:fb:27:5f:
79:31:02:f2:f4:69:0f:da:21:0a:e2:3a:c9:56:48:
58:2a:be:ae:45:f3:0e:ea:42:58:f3:88:a9:af:0a:
cc:eb:8f:da:21:64:a4:ab:eb:a2:b3:aa:2c:71:c9:
33:39:4b:dd:45:af:f6:9b:50:d8:33:d5:34:cd:32:
6f:92:c9:44:7a:f2:93:2a:75:89:43:db:54:b4:fe:
89:c5:b5:4b:2c:79:22:e7:86:1d:35:f2:16:01:37:
85:3a:8b:b5:64:c4:0e:62:f3:54:18:eb:9e:fa:f7:
b5:9a:90:7d:67:44:d0:f0:07:08:7c:db:9f:11:02:
b0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D2:27:33:0B:E5:44:B5:84:B8:D2:4F:4C:95:72:0B:C2:96:E2:88
X509v3 Authority Key Identifier:
keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:6c:4f:48:f2:a5:ab:a2:af:58:7f:d3:4d:43:07:b8:e7:bb:
ac:00:08:77:8d:8a:a6:e3:5e:99:4e:cd:b3:47:43:ce:60:8a:
64:e5:a1:64:9e:92:ae:08:09:db:4e:34:18:19:2a:0b:3d:a8:
d9:af:14:3c:e3:35:05:5c:53:fb:1b:c8:9b:c4:53:ad:c1:dd:
88:ea:cb:a5:4a:34:c9:01:a9:dd:51:2e:f0:85:52:1d:45:e8:
6f:1d:c5:04:e9:7c:2f:61:79:12:e2:6d:25:dc:89:10:0b:d7:
75:c0:3a:b9:7b:cd:62:22:83:2f:44:ea:66:3e:0f:04:1c:52:
33:a3:48:b4:78:52:df:85:33:40:25:68:02:ea:76:39:0b:1d:
87:fc:d3:0e:23:11:1c:d5:01:77:18:3e:60:67:6a:b4:25:e1:
56:0b:bd:a0:97:f1:c6:e9:1d:cd:42:e0:59:ba:0e:c0:5e:b9:
aa:6f:92:ff:21:37:7e:89:58:ec:62:93:3c:ec:55:95:67:44:
bf:70:9d:a7:dc:d0:72:02:20:cd:80:b6:0d:d5:9b:fd:3f:1d:
dc:95:a8:c2:09:e5:c3:12:ae:c0:03:9a:3a:aa:65:b6:75:0f:
06:cf:a9:6e:36:6a:2f:9c:71:46:59:14:ec:f2:56:32:68:6c:
43:83:8f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:21:15 2025 by rpki-client