Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
File: mHyvDLazMBzAhKJdXCFBCpLKfjY.mft (raw, json)
Hash identifier: iLoiasVfpk6qWkuh5BzgR4tjLgwLKO8c8U4Rnk73Ma4=
Subject key identifier: D9:25:92:CF:D8:0E:27:B6:0C:E9:D4:8A:34:D4:F2:45:38:1D:5E:47
Authority key identifier: 98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
Certificate issuer: /CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Certificate serial: 019934253636E0945F7F69CE96B64392390A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
Manifest number: 07ED
Signing time: Wed 10 Sep 2025 15:01:17 +0000
Manifest this update: Wed 10 Sep 2025 15:01:17 +0000
Manifest next update: Thu 11 Sep 2025 15:01:17 +0000
Files and hashes: 1: mANtdvjrwJb7CPzwvDq9bTI0qtY.roa (hash: bxccQm8ZlD2A8QhBkFeAoasQeWmGc7036H8m3hd3seo=)
2: mHyvDLazMBzAhKJdXCFBCpLKfjY.crl (hash: YP0Sp/LGnn/7aieitG8hWlHXDTkgzLB87T/mVMEsbIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 15:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:25:36:36:e0:94:5f:7f:69:ce:96:b6:43:92:39:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Validity
Not Before: Sep 10 15:01:17 2025 GMT
Not After : Sep 11 15:01:17 2025 GMT
Subject: CN=d92592cfd80e27b60ce9d48a34d4f245381d5e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cc:22:82:ca:89:17:2f:c1:7a:14:d1:45:05:
a6:5e:95:df:6c:51:0c:2a:33:ab:6d:56:2e:d0:20:
fb:b3:bc:b7:ac:1d:0c:26:f7:4f:b4:e1:9a:0e:43:
e1:8e:44:ff:52:9e:5a:0e:1b:b2:4e:24:3f:aa:6d:
a7:d1:7a:40:b8:c5:f2:53:ec:2b:d7:0c:c5:3d:9a:
2c:a1:a2:8c:54:fe:0a:2c:ff:ca:f4:c0:bd:00:bc:
cb:9c:e1:0d:38:83:44:36:82:36:a7:ad:57:c3:7f:
5a:f4:6a:ac:fa:0d:27:ff:a3:bb:22:9a:d6:39:3e:
06:87:d5:7d:b4:ff:9b:20:4f:ca:ff:f0:8f:ac:f3:
b2:11:ed:ba:23:d5:41:a4:34:55:25:29:36:9d:9c:
fc:40:c4:84:89:6c:dd:1d:a8:f8:18:63:bd:8c:06:
6c:21:91:b1:e7:8b:bc:48:24:a9:06:26:e5:0d:51:
a3:8b:53:65:7f:08:13:40:d6:39:80:c2:a3:ce:db:
65:0e:7b:6f:3e:a4:ce:fd:a3:bf:53:76:22:f6:fa:
9c:3c:93:56:99:c9:d5:81:73:05:1e:d8:f0:10:55:
ba:f3:46:f7:92:f1:7b:59:8c:8f:a0:58:67:5d:f4:
79:e4:06:fc:cf:e4:a9:14:bc:bb:e7:37:f6:df:ed:
5a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:25:92:CF:D8:0E:27:B6:0C:E9:D4:8A:34:D4:F2:45:38:1D:5E:47
X509v3 Authority Key Identifier:
keyid:98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:d1:77:11:36:34:97:2a:fe:87:72:d2:9d:fd:05:2c:f1:14:
ba:df:de:42:4d:f6:72:31:e4:aa:5b:d9:81:dc:73:c7:15:a3:
04:a8:12:09:72:69:76:e4:fc:21:17:3b:db:ed:16:63:6e:ef:
7b:ec:21:54:e0:52:2d:ec:ab:f3:8f:4c:f6:55:49:dd:8a:86:
4c:b7:83:7a:db:6f:a5:12:99:c0:87:89:e3:86:1b:eb:2d:15:
88:6f:e6:7a:b1:6b:cd:9f:2c:75:57:61:83:df:da:51:04:87:
56:d8:48:d7:1a:c6:d2:fc:21:26:38:09:ca:07:49:8f:2f:d6:
cc:cb:1e:8a:30:72:2d:da:95:67:91:0f:26:ae:a7:f8:23:2e:
66:08:4c:a4:a6:8d:23:74:e3:01:4c:68:f2:d6:80:5b:14:ca:
a0:6e:5e:ae:e3:fc:2c:ea:61:cf:e9:fb:b8:5d:71:39:aa:be:
76:b0:45:5a:c8:28:f5:a7:04:dd:b2:a2:7b:26:de:16:d2:2c:
00:c0:0b:64:fa:37:87:39:d8:e9:60:b7:ed:df:21:7b:4d:cd:
f9:a4:90:a1:a4:70:3b:d4:2a:86:96:11:4a:78:1e:0c:aa:b0:
63:b9:ee:9c:3d:13:86:d2:01:26:27:fc:d7:fe:3c:fe:bb:46:
f7:a3:25:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 23:21:24 2025 by rpki-client