Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
File: h4R32LYtCfmui_29gSpT-X7UxXY.mft (raw, json)
Hash identifier: bjQCBciXdDmzrLs6Mi/416tYZu9fpcTUfSX71JwffbU=
Subject key identifier: 8F:9F:FB:CB:37:2B:2C:6E:FE:5F:F8:1D:EB:A7:88:E1:D1:AA:20:5A
Authority key identifier: 87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
Certificate issuer: /CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Certificate serial: 019893365E659F309C265BF55766EB033964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
Manifest number: 044F
Signing time: Sun 10 Aug 2025 09:01:10 +0000
Manifest this update: Sun 10 Aug 2025 09:01:10 +0000
Manifest next update: Mon 11 Aug 2025 09:01:10 +0000
Files and hashes: 1: 1-chTvEPLKpclBFunFsZudwhteCw.roa (hash: Mk7QbJ14tNyeCXu9wD1n7MpPtkSCXANni+lDYxJDiAk=)
2: h4R32LYtCfmui_29gSpT-X7UxXY.crl (hash: oVLNLBPWLXJlRwHolw0+v2q/g2o4zABJFFUK85R+G20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:5e:65:9f:30:9c:26:5b:f5:57:66:eb:03:39:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878477d8b62d09f9ae8bfdbd812a53f97ed4c576
Validity
Not Before: Aug 10 09:01:10 2025 GMT
Not After : Aug 11 09:01:10 2025 GMT
Subject: CN=8f9ffbcb372b2c6efe5ff81deba788e1d1aa205a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:74:b0:99:c3:e4:66:32:30:bf:1a:f4:59:3e:
4c:29:03:52:4a:9b:5e:c2:98:9f:e1:b8:f1:27:db:
cf:45:cd:8c:ee:41:70:d2:d6:b8:e9:b4:f6:e2:3a:
9e:ef:c6:63:db:a3:5c:c5:ec:70:bb:5a:11:82:76:
64:ac:10:8c:e6:3a:3c:e8:ba:23:2a:4e:0c:27:c5:
13:16:f9:97:f7:16:1e:bd:2b:d1:ea:04:f8:4c:1d:
77:21:f1:ad:70:70:84:da:cc:97:93:a3:43:65:c1:
c2:b7:67:3e:29:ec:7f:cd:33:6b:dc:b3:bf:4e:37:
ab:4a:3d:19:c0:70:5b:70:43:2f:39:85:89:b2:ce:
b5:31:18:70:9e:7b:7d:04:97:91:0b:07:e9:45:04:
10:03:6e:2c:43:1d:7c:a5:fc:05:f9:21:31:b2:cc:
88:86:7d:d9:f7:9a:5f:ca:49:ee:09:9d:2f:72:64:
ad:8a:ec:03:69:78:0b:a7:f3:f1:40:9d:d7:98:6c:
0b:df:97:fd:b3:17:88:e0:30:8d:f6:55:99:80:90:
6b:ea:7c:e9:c2:e3:f1:41:59:6e:9f:98:59:24:63:
e3:64:07:53:58:8e:37:0b:2f:bb:70:c6:cc:82:58:
a8:90:d6:1a:84:86:79:43:d1:cd:ff:26:ff:3b:38:
51:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9F:FB:CB:37:2B:2C:6E:FE:5F:F8:1D:EB:A7:88:E1:D1:AA:20:5A
X509v3 Authority Key Identifier:
keyid:87:84:77:D8:B6:2D:09:F9:AE:8B:FD:BD:81:2A:53:F9:7E:D4:C5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4R32LYtCfmui_29gSpT-X7UxXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e83ac5-448b-4e49-8ebf-8842e5edce02/1/h4R32LYtCfmui_29gSpT-X7UxXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c8:e7:68:42:9d:58:36:a3:fb:b5:bb:1f:56:14:fe:b4:74:
62:4c:ff:a9:93:96:ba:50:75:da:cd:7f:a0:b1:9e:ef:23:94:
ff:11:0d:3a:6d:02:9b:76:76:e0:fa:9a:fe:7c:d9:87:a1:29:
ee:2e:1c:86:c6:45:b4:c9:a6:57:02:ee:8b:c9:f0:b6:50:57:
58:42:6a:60:ec:46:63:01:d4:58:e3:6f:dd:ee:d8:bf:35:6e:
99:92:a3:6f:18:b7:54:20:82:68:64:53:ce:7f:78:fc:24:24:
31:30:7c:c5:75:2c:88:04:ed:73:d7:38:45:f8:13:6b:b0:64:
b1:41:88:30:54:1d:ab:9b:94:b1:17:a3:72:4b:bf:a7:dd:fb:
6a:77:a2:40:56:08:c7:fb:4c:11:b2:f4:8d:06:b0:32:31:27:
8f:10:6e:38:e4:20:01:09:5c:13:2a:32:24:f5:6f:90:94:a4:
59:a3:f2:3e:43:d6:67:85:11:10:7d:fa:d2:76:ee:2b:9e:6f:
ed:e7:7a:41:72:02:33:77:9a:18:4a:20:00:0b:87:91:d6:99:
9c:75:58:24:fa:6d:50:74:60:3d:aa:ae:85:d4:ed:69:d9:47:
7b:90:37:b2:97:df:1d:aa:66:61:46:c3:fb:1b:ad:34:f1:05:
c4:1f:23:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:59:23 2025 by rpki-client