Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File: hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier: TIbJzuHvr6h7Qc7XGlTqpH4At9HR28fCvj60TbpkOGg=
Subject key identifier: 71:A1:88:AA:09:52:75:2C:79:2F:D0:D3:85:7B:11:47:21:A0:EB:27
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer: /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial: 01989592100C2FF563303EFFBD6F2559DADE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number: 10C3
Signing time: Sun 10 Aug 2025 20:00:34 +0000
Manifest this update: Sun 10 Aug 2025 20:00:34 +0000
Manifest next update: Mon 11 Aug 2025 20:00:34 +0000
Files and hashes: 1: XLQfftOCYwZhCKWBFvPgcWtM3ng.roa (hash: e5IwRRubP2iih1RAenDvyf84x82YlIWC8mC3l2YoKV8=)
2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: xIL+Z19Rco/Sn4rjLUHiTmFW08zOQJebgeCz/eLGB3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 20:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:92:10:0c:2f:f5:63:30:3e:ff:bd:6f:25:59:da:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Validity
Not Before: Aug 10 20:00:34 2025 GMT
Not After : Aug 11 20:00:34 2025 GMT
Subject: CN=71a188aa0952752c792fd0d3857b114721a0eb27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ac:e0:16:ef:01:2e:68:60:84:5e:9a:76:9e:
88:fd:69:4f:74:9c:4e:cc:b4:a2:e7:e4:8d:31:50:
4d:fe:6d:95:17:1e:07:78:65:76:a7:20:79:03:37:
da:57:bf:eb:ae:38:f6:9d:75:87:e1:35:54:5d:64:
c2:d1:2a:6c:27:cd:29:65:c4:d5:00:78:ab:78:de:
e2:db:6b:43:43:13:9f:20:b5:39:02:1f:6d:bc:3e:
80:09:12:38:1d:85:65:dc:30:49:f9:17:33:ff:0d:
fb:87:d0:14:41:25:88:a2:03:03:2d:67:ff:03:05:
b6:4d:ae:8e:e5:38:46:12:ec:8a:c5:81:2a:45:39:
c1:4e:f0:83:62:19:60:78:e6:7e:b4:e2:d2:60:92:
de:4e:9c:a2:1b:bc:fc:d1:f5:0e:68:76:83:d0:5a:
fc:fc:0f:5b:e3:e4:30:42:81:25:4f:49:d7:c8:d9:
b5:8e:e4:8d:f8:f9:cb:e3:be:4f:74:83:cf:65:7c:
04:d8:1b:a7:c4:c6:9e:14:a6:2a:64:0b:99:2c:2f:
82:0e:21:39:e3:53:50:4c:a3:1d:d7:ab:07:d5:c8:
9f:1c:38:d3:84:80:28:01:5a:1e:e4:b9:39:da:0b:
1e:20:eb:f4:43:0f:ec:01:81:77:9b:dc:52:7f:5e:
f8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A1:88:AA:09:52:75:2C:79:2F:D0:D3:85:7B:11:47:21:A0:EB:27
X509v3 Authority Key Identifier:
keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:db:9d:08:1e:0a:61:47:99:a4:f0:0e:e2:db:3a:9e:28:33:
ea:e4:73:b2:19:52:9c:ba:f2:2c:23:5c:a3:21:70:3d:b0:11:
e1:36:3f:fb:ee:ea:94:d5:19:ac:73:75:e1:d4:2c:a8:11:9c:
3f:3b:97:18:9f:8f:91:b7:98:f7:3f:c7:4c:3f:71:63:eb:24:
29:d6:fe:2d:4b:c1:4f:b3:22:43:bf:99:50:ce:4f:ee:e4:31:
63:8e:06:84:31:49:09:2d:66:7c:93:29:60:5f:d1:e7:c2:24:
27:49:f0:92:7f:34:80:9b:65:d8:7f:1b:85:58:55:8b:9d:ab:
a1:05:82:5a:01:7b:50:f4:4a:63:a3:88:ad:23:06:31:47:e7:
67:2d:1c:73:3a:73:cc:46:1b:c1:1c:9f:2a:e0:75:3f:84:fe:
db:aa:5e:f6:74:c8:6f:bd:3c:07:9a:0e:19:bd:44:97:37:b8:
7f:d0:f7:e5:89:18:47:77:06:3c:d3:57:56:ff:02:1a:40:a7:
cf:c5:0c:ec:89:8a:b7:11:52:b6:86:da:73:85:ed:0d:9c:ed:
ab:8b:b8:41:55:7a:09:79:74:e5:31:c0:e0:a5:c7:0a:8e:7b:
9d:66:52:bb:31:c5:90:b2:61:09:1c:d5:65:58:12:65:26:9d:
cb:18:46:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:08:53 2025 by rpki-client