Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
File: ihzh0TW_LPjowT8z7BHIUjcD3HU.mft (raw, json)
Hash identifier: IvMv+1h7ygMOhxIF1KRKVY6rpHuQ5yJRP4h5GmrqxLo=
Subject key identifier: 14:40:C6:11:C6:3A:31:E9:00:D4:44:FC:3F:F4:46:69:92:96:C7:12
Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Certificate serial: 01993380CF03196DF9746CA46BF23224635E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
Manifest number: 156D
Signing time: Wed 10 Sep 2025 12:01:43 +0000
Manifest this update: Wed 10 Sep 2025 12:01:43 +0000
Manifest next update: Thu 11 Sep 2025 12:01:43 +0000
Files and hashes: 1: 0bVvhAd6bRTtpMiMWU5m6m_mX6s.roa (hash: k+FefGaNlibbtGtr5Aq6DThKW8SPKZcgwMtTZ3i/xpM=)
2: 2L9tST2xxsB46ZV-Wm7-7d0Z8Yc.roa (hash: 2H+U81Sea1KvCbnxcSszHg71YCfhD1GEm2cdKStIW6w=)
3: ihzh0TW_LPjowT8z7BHIUjcD3HU.crl (hash: zsrQWfyzKR/X4FhtmTxiMAsFJ1L0ec+Wis+eFmB/RG0=)
4: tAGqHWpkQw0giajHMwWi-gQSCPY.roa (hash: dkPgoKFrLMzVm5FMtr3H3ipENsq7fpzYhSx+TXox0zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:80:cf:03:19:6d:f9:74:6c:a4:6b:f2:32:24:63:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75
Validity
Not Before: Sep 10 12:01:43 2025 GMT
Not After : Sep 11 12:01:43 2025 GMT
Subject: CN=1440c611c63a31e900d444fc3ff446699296c712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:7b:84:cc:1c:0b:3d:e4:53:0c:22:87:28:41:
03:de:e4:95:87:ec:e5:4b:c0:19:b6:f9:d7:79:5d:
04:70:ff:b6:31:9e:db:45:cd:c7:14:47:ca:c4:94:
f1:14:2b:84:b2:b8:ce:5d:df:83:ef:d2:bc:d8:0d:
f5:d7:e1:4d:94:37:27:00:9f:43:96:b4:a9:d8:9b:
9b:1e:68:bb:1a:35:fb:51:4e:3d:92:56:ab:62:8a:
a2:9b:59:1b:0e:6a:b7:12:57:2e:0f:9f:73:06:7c:
a1:4a:98:6d:5b:c1:b2:e8:c4:09:3b:62:51:c7:83:
e2:a7:3e:60:13:ed:22:56:09:94:a9:be:d1:91:cf:
22:a0:b9:5a:18:13:b8:74:d4:c1:6a:62:80:50:3c:
49:55:69:1a:f8:51:50:06:c8:88:32:44:d3:ee:2c:
09:bd:14:fd:b9:7e:03:6c:02:e9:cb:c5:09:03:cc:
78:d1:d3:5f:87:78:b0:e9:f7:34:20:ee:df:fd:c8:
e6:f5:4b:6f:e9:e9:aa:7e:fc:49:ea:13:1a:54:c7:
85:4d:b8:a0:7a:64:d1:db:de:7f:61:c7:72:92:b3:
11:7f:09:f0:1a:28:86:ba:74:02:6e:55:5a:ee:51:
91:d0:1e:46:dd:a7:f0:d7:a3:af:4b:40:2f:0c:b2:
30:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:40:C6:11:C6:3A:31:E9:00:D4:44:FC:3F:F4:46:69:92:96:C7:12
X509v3 Authority Key Identifier:
keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:67:c9:82:5a:83:75:34:bb:81:8c:a2:f9:4a:f2:12:2e:fb:
02:93:ac:9b:4b:d3:d4:b0:54:97:7e:a1:ea:e9:fd:b2:15:95:
bf:f0:9a:a3:9d:85:69:fd:23:4a:af:d5:63:4e:0b:6f:89:7e:
2d:f0:2e:e6:b3:1e:fc:26:73:7d:1c:92:f6:bd:cd:49:f7:bf:
22:08:df:cf:ff:d1:d0:4b:2d:37:53:94:34:0f:41:b3:38:b2:
cb:f8:2e:09:74:95:c1:1c:5b:f7:06:b1:08:ae:49:c8:e3:1c:
a4:9b:0f:e1:f5:05:0f:64:1a:cc:16:10:39:e5:2b:50:c8:99:
ae:73:10:fc:37:35:a0:9c:26:78:c6:b8:e7:24:4b:cd:13:43:
cf:e2:e3:63:c9:fc:69:ed:2b:2b:ad:58:c0:ce:9e:4b:33:15:
4a:11:86:58:6f:99:a4:9d:54:c0:15:76:48:83:81:e4:d6:e7:
fd:93:bf:3e:ac:81:1f:78:ef:69:1f:da:42:01:fe:95:67:b4:
13:79:6a:4f:c7:0b:a1:7c:50:bf:3d:79:1d:16:be:7d:75:13:
7f:ad:93:95:63:c2:31:d2:29:0e:69:13:97:50:8f:0d:b0:c3:
03:6c:63:81:b0:07:ae:26:8e:a7:b3:30:55:d6:7c:ab:6e:31:
18:82:f3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 14:33:42 2025 by rpki-client