Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json)
Hash identifier: 7lU3g7UyJ0ZCDRSViOk+i/MkDBtoIKlAvN5jk22J8aM=
Subject key identifier: AC:A1:BE:00:CD:D4:36:ED:4F:E5:11:ED:A8:35:E8:33:0A:F4:05:B2
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 0199413B23120253E21CFECAF0EBDE99D0BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
Manifest number: 04CC
Signing time: Sat 13 Sep 2025 04:00:18 +0000
Manifest this update: Sat 13 Sep 2025 04:00:18 +0000
Manifest next update: Sun 14 Sep 2025 04:00:18 +0000
Files and hashes: 1: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: aR51QVEx7riuSkc6Kx3M5A7RZWxg28is0exHau5YijA=)
2: StsIBWXPkUmDPSa1M3nyv0UDUR4.roa (hash: rqGYqeTGV9tyOvnudhslVeQEEchE0GwN6rysMNZqs1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Sep 2025 02:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:41:3b:23:12:02:53:e2:1c:fe:ca:f0:eb:de:99:d0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Sep 13 04:00:18 2025 GMT
Not After : Sep 14 04:00:18 2025 GMT
Subject: CN=aca1be00cdd436ed4fe511eda835e8330af405b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f5:02:bd:38:93:cb:3c:fd:2d:c1:21:5a:ea:
94:aa:d6:79:cb:dc:b6:43:88:78:12:f5:df:91:12:
75:b7:05:80:98:24:d8:cc:2b:f2:fe:bf:0e:0b:b6:
53:1e:0f:e2:53:b1:21:e9:c4:05:b2:1b:ad:f9:76:
3e:70:a6:98:ca:cb:8f:52:87:18:38:1a:ae:2e:8c:
01:51:ca:51:4c:90:97:db:4a:e7:3d:8f:59:99:19:
a2:39:83:5c:47:da:4f:21:1d:02:67:8c:66:9a:ec:
38:d3:3c:72:84:b3:41:0d:57:23:12:16:99:56:2c:
27:ac:62:70:d4:c5:ea:57:98:94:27:99:a6:d1:f9:
ec:96:cb:e8:9c:2d:0c:05:88:26:49:e4:db:87:64:
a3:d4:d3:bc:fa:a5:fe:c4:10:74:51:99:cc:27:6d:
72:12:3f:6e:df:8a:d2:a1:4d:f0:49:c9:bd:6b:e7:
0e:bb:bd:05:07:a2:78:db:47:a4:dd:88:0f:d0:cd:
20:fd:69:14:32:7e:28:5f:cc:0a:44:40:03:8f:5a:
9a:1d:f3:b9:fa:29:1c:a8:0a:01:14:24:5b:e3:f8:
c8:6f:4f:85:eb:cf:ec:d0:19:e0:20:0b:a6:4e:03:
3a:8b:42:4f:d7:68:47:cf:3c:54:68:ec:3c:c5:ee:
cb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A1:BE:00:CD:D4:36:ED:4F:E5:11:ED:A8:35:E8:33:0A:F4:05:B2
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:02:99:1f:00:69:32:24:36:ef:04:a1:c0:26:ce:0f:6d:5c:
bc:f7:d5:8f:f1:0c:33:96:3f:7a:fa:dc:28:be:94:1e:a4:9b:
44:60:76:c9:5f:df:d9:80:8c:8c:46:ee:70:3f:8e:51:49:57:
ce:67:3b:94:ff:9e:1b:d1:b9:e6:31:16:90:6b:6d:70:f0:02:
eb:db:7c:be:c5:a9:93:a1:86:c4:d4:82:8c:1c:af:c2:58:34:
c8:7a:49:27:42:94:1c:0c:77:d6:1d:8b:8f:e0:c0:c0:1e:cf:
a4:c6:5e:43:83:ba:28:fd:14:16:e3:7f:64:f0:41:a0:d4:93:
00:24:1e:a6:ec:d2:1b:63:7b:a6:df:08:f0:19:68:06:0b:cd:
ad:23:76:19:4e:73:cd:90:35:a3:2f:08:05:b6:9d:57:72:f5:
bb:83:59:0b:f3:34:6f:36:2e:7c:9d:06:30:ea:5f:6e:b7:60:
01:f7:63:0f:39:75:ed:68:53:01:f0:a4:29:28:0a:76:b7:60:
d0:6a:0a:a0:7e:1f:1c:ff:79:8b:e0:22:e0:a6:e0:ee:82:f6:
86:8b:7b:57:7f:b7:11:3b:ba:34:56:a1:b7:fb:dc:1a:7f:9c:
7d:35:63:58:a2:c8:f4:a0:14:95:f8:c3:76:b4:cc:18:ff:a5:
f5:ad:5c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 13 06:39:30 2025 by rpki-client