Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
File: hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft (raw, json)
Hash identifier: GLqQqLfbbApsq2tsl1nAZbiHER0FdKaFUzRhzALAONc=
Subject key identifier: D3:56:56:01:81:1C:6B:DF:CC:3D:86:4D:24:91:AE:D1:B3:99:3D:23
Authority key identifier: 84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C
Certificate issuer: /CN=84926c47a3607f51a39e1c91e7897f85f47e347c
Certificate serial: 019838DF43B80EAD295AE03EC49B65C4F4EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
Manifest number: 0956
Signing time: Wed 23 Jul 2025 20:00:12 +0000
Manifest this update: Wed 23 Jul 2025 20:00:12 +0000
Manifest next update: Thu 24 Jul 2025 20:00:12 +0000
Files and hashes: 1: hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl (hash: H313nOANDftQT5HzW72sTS4UYc4w9Z8a5jRjFkSn87U=)
2: nkA7CUcmlzAJuGx_3HjuUPjmAbc.roa (hash: FtjNcs/Ikv5rVNiwdDeOxS0oJdHrtBYVifsyHe4+WbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 14:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:38:df:43:b8:0e:ad:29:5a:e0:3e:c4:9b:65:c4:f4:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84926c47a3607f51a39e1c91e7897f85f47e347c
Validity
Not Before: Jul 23 20:00:12 2025 GMT
Not After : Jul 24 20:00:12 2025 GMT
Subject: CN=d3565601811c6bdfcc3d864d2491aed1b3993d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f1:c7:6f:14:de:9a:a9:ed:48:43:6e:2e:1c:
ff:2e:5c:4b:b1:0d:2c:e1:27:e2:0a:d9:7b:ed:8c:
95:a8:22:98:20:da:c1:e6:60:9d:ea:c4:ee:9c:22:
11:c9:17:cc:9b:0b:b5:67:13:74:dd:17:50:17:58:
c2:8b:8b:7b:fa:bd:72:59:28:95:2d:21:e3:ea:53:
86:31:9c:f7:22:f8:26:e2:5b:70:58:d1:c2:65:ae:
06:3e:5b:cf:9b:bb:d1:6c:82:a0:32:58:c0:d3:9e:
86:17:ce:18:d2:62:c9:fe:4a:0c:7a:78:0e:0f:2d:
db:61:66:39:0b:ac:21:a1:1e:9c:a8:50:d3:88:64:
1e:8b:86:73:48:f8:ad:5d:26:cc:47:83:3a:68:21:
73:87:45:30:e4:77:4a:f0:6c:5f:06:05:48:6d:46:
a6:5f:93:cb:6f:62:34:78:36:10:b8:d4:ff:91:ce:
f2:39:4c:d4:f0:59:ca:c4:10:98:94:d8:d4:a0:4f:
f2:00:4e:db:9d:73:a9:70:20:84:65:23:b1:fd:f7:
92:3e:1c:07:f6:82:ed:97:f5:9d:ae:39:74:23:82:
a6:3a:2b:3a:88:ae:f9:79:5a:00:0f:9f:89:b5:4a:
cd:5f:15:d5:75:f7:3a:db:d3:b2:67:18:f6:da:e3:
9a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:56:56:01:81:1C:6B:DF:CC:3D:86:4D:24:91:AE:D1:B3:99:3D:23
X509v3 Authority Key Identifier:
keyid:84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:d3:a7:a7:a3:5f:34:99:ed:31:d4:38:3c:51:ba:5f:23:d2:
7d:66:c8:08:59:73:8b:c5:8d:27:a4:52:e9:5a:ab:c0:a4:52:
b4:ec:26:10:1f:88:8a:27:ca:15:ae:bf:47:ff:cd:a9:ba:a8:
0e:9c:6d:e5:8c:21:d3:ab:72:c8:10:c6:e4:88:56:5d:95:4a:
21:8f:a6:93:7c:8c:0e:1c:4e:f0:d0:6c:dd:4f:24:d6:cd:dd:
56:18:82:aa:32:d7:70:2a:35:0b:17:c2:2e:ec:a4:18:82:29:
d5:d8:c9:b2:97:90:df:22:6d:80:0f:81:b8:38:1e:0f:88:f9:
5a:93:39:46:1e:e6:6c:0f:88:67:4e:f2:25:dd:5a:cb:54:76:
0f:85:38:ff:b3:6e:9f:65:63:4d:d4:14:7b:f7:eb:46:d3:d6:
83:36:2d:1b:f2:59:7b:0d:6c:b4:04:66:c9:ec:3e:8c:05:89:
e6:d7:66:8b:d9:74:b5:09:4b:cb:39:a4:00:b4:4c:2a:ee:30:
de:36:fd:53:a0:cc:52:3b:af:14:8a:e3:a0:19:83:ef:5d:15:
9d:8f:f5:95:46:23:16:93:74:a0:d7:e2:9c:ec:3a:7d:73:17:
b5:86:3e:e9:91:c6:da:ae:0b:72:84:0e:76:21:a1:13:c1:3b:
2d:2c:15:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 23:10:19 2025 by rpki-client