Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
File: H2fPHKLeoy_NlwLdJRDra_K2hhA.mft (raw, json)
Hash identifier: oOJ+X3C9fwEZfgnN0hMs/wRhm/aC76gDOuJqjzUYLgA=
Subject key identifier: BB:2C:60:9B:4F:B5:E6:A4:5E:DB:12:42:66:7D:8B:D4:EE:25:DB:94
Authority key identifier: 1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
Certificate issuer: /CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Certificate serial: 01987BD2CCE9E150734388ED83EE5DA09CAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
Manifest number: 05BD
Signing time: Tue 05 Aug 2025 20:01:09 +0000
Manifest this update: Tue 05 Aug 2025 20:01:09 +0000
Manifest next update: Wed 06 Aug 2025 20:01:09 +0000
Files and hashes: 1: 39yFNcs_aiMECPSY8yer3c7rqfs.roa (hash: kt8DxoHHJV7b65racNqYI0+ZGEt7nNXcd8uoIQ2X++s=)
2: H2fPHKLeoy_NlwLdJRDra_K2hhA.crl (hash: i7UcfSf2cQWcCEQ1CgnYyRBlteMj1km+xjpdxmZkQsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:d2:cc:e9:e1:50:73:43:88:ed:83:ee:5d:a0:9c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Validity
Not Before: Aug 5 20:01:09 2025 GMT
Not After : Aug 6 20:01:09 2025 GMT
Subject: CN=bb2c609b4fb5e6a45edb1242667d8bd4ee25db94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d4:32:c6:b7:11:71:7b:05:d2:cf:9a:26:c0:
10:1d:48:84:62:1c:db:cd:ea:3f:65:b5:8c:68:f3:
26:4f:14:b6:09:68:3f:cf:b8:20:a2:dd:84:58:06:
8e:22:e3:9c:4f:a4:4c:4e:f5:53:83:a2:c4:e9:26:
08:04:6f:e2:8d:d2:a9:48:ec:ca:4a:9c:ea:79:3a:
4d:e7:42:56:77:99:0c:33:85:0c:71:3c:e9:f1:c6:
f3:4c:15:e0:31:97:04:f8:51:a3:87:5b:bd:f8:47:
07:b1:74:b9:19:b5:d2:b9:eb:e0:4c:e7:cc:a2:83:
04:9e:96:ab:6c:84:94:cb:69:d6:83:1b:8a:db:a9:
19:cc:1a:c4:53:48:27:01:e0:ae:b4:a3:52:f8:90:
a8:61:5b:fe:c1:b5:b3:cd:0e:09:99:59:e0:e5:e3:
b2:49:66:e7:f8:3c:a1:47:e0:43:47:a3:04:06:2f:
06:b8:8d:ce:ce:88:6a:97:3d:3c:cf:6d:89:c0:95:
a7:95:1e:f5:d3:d8:dc:16:74:0a:2d:5c:a2:62:62:
15:21:cf:4a:3a:f0:b4:cb:c0:30:5a:4a:60:03:b1:
0d:20:a3:8e:96:58:01:97:c1:66:1f:4a:ae:16:12:
0c:fc:dd:2a:d5:f9:85:bc:5a:ec:41:f8:c4:0e:c2:
8b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2C:60:9B:4F:B5:E6:A4:5E:DB:12:42:66:7D:8B:D4:EE:25:DB:94
X509v3 Authority Key Identifier:
keyid:1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:3a:06:be:c4:ae:82:55:41:c2:c7:00:0a:9b:ce:46:87:e7:
3b:4b:c7:db:ff:35:5c:48:50:4c:21:c2:f2:02:00:60:3f:9e:
1f:2c:f5:b9:52:23:d2:fa:fb:e3:64:a7:02:90:8e:b2:de:64:
29:6b:77:88:cc:73:74:74:55:3a:30:f2:b4:f3:71:e5:f6:1b:
2c:9e:d5:7e:3e:93:ae:70:63:1e:bb:b8:fa:f8:19:11:05:29:
ed:62:7d:9c:47:06:4e:ed:bf:f9:c4:bf:8f:78:59:71:4b:93:
c8:a9:53:7f:74:67:c8:8a:20:58:bf:06:ce:bf:27:27:1e:9b:
4e:f4:81:46:28:29:38:61:e9:2a:a4:21:5a:a7:d0:6d:d9:57:
c2:3e:ed:35:4e:ec:4f:96:d2:00:16:2c:ca:1c:c0:2e:29:97:
9d:88:1e:06:ac:6f:70:8f:49:06:df:1a:9c:3d:b6:d9:46:d5:
ac:63:f6:b7:eb:0d:ac:63:48:57:17:fa:72:48:9f:57:4c:99:
46:b1:59:4a:90:30:b0:80:31:9d:28:f7:3a:91:88:2b:76:82:
06:3c:59:38:5b:d3:75:b9:0e:a0:fe:02:00:d8:e1:aa:e4:48:
07:70:5e:1b:ad:93:e5:44:a5:e7:63:bd:2b:45:e0:26:33:c4:
28:1b:76:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:36:58 2025 by rpki-client