Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: mqoZQZnRX1UIkpww/EGqZQmsDO4D2NOEmP16yicjCyw=
Subject key identifier: AD:23:98:A9:33:DB:7F:38:1A:FB:1D:3B:B7:4C:0A:DC:18:0E:1F:60
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 019921B20F2A87E84B3ACF7B144C48562AB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 0252
Signing time: Sun 07 Sep 2025 01:02:21 +0000
Manifest this update: Sun 07 Sep 2025 01:02:21 +0000
Manifest next update: Mon 08 Sep 2025 01:02:21 +0000
Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: +BNfS4iP2WhR8VZ9C4boA0+P6o0W4+3YZjPNJ+ae/yg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:0f:2a:87:e8:4b:3a:cf:7b:14:4c:48:56:2a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: Sep 7 01:02:21 2025 GMT
Not After : Sep 8 01:02:21 2025 GMT
Subject: CN=ad2398a933db7f381afb1d3bb74c0adc180e1f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:bf:3a:dc:dc:02:f2:07:d0:ff:79:ce:05:
1b:2d:f8:5b:88:63:fa:36:17:23:e2:08:14:d9:f7:
30:88:e4:c4:26:b8:f7:fb:b2:6c:6e:68:71:7b:8e:
1e:fc:7e:c4:e6:75:c1:fa:a1:a1:e2:f9:83:3f:ee:
70:85:bb:69:cf:5b:f9:5b:f9:d5:ec:bb:ee:bb:85:
e0:00:78:36:59:dc:6d:45:ba:b6:49:2c:0f:f8:77:
ac:65:2a:4d:e5:a5:df:44:0a:38:5c:e3:2a:28:15:
66:5a:47:dd:f6:38:92:5f:53:84:61:21:18:f4:eb:
fd:e9:b0:32:4e:f4:54:5e:70:d4:5b:28:db:72:c0:
ff:e5:a4:e9:5a:e2:37:f8:20:f7:75:11:3a:4b:60:
2a:1f:92:e5:2f:7f:a5:eb:f2:20:d2:ce:66:69:7e:
a4:6d:3a:f8:24:e7:e5:b1:4e:26:dc:97:c9:31:3d:
e3:a1:11:df:fc:00:10:c6:40:87:9c:ac:1d:a2:be:
e9:bc:2f:31:fa:69:82:5e:67:77:93:c3:3d:36:ef:
b0:66:10:32:5c:8c:80:4a:c6:8b:63:81:cf:e3:59:
c8:05:ff:d3:5a:8d:75:10:d0:f5:c0:59:ef:85:5a:
c4:16:21:9f:1b:ca:82:ef:cd:ef:03:97:86:4f:9a:
5e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:23:98:A9:33:DB:7F:38:1A:FB:1D:3B:B7:4C:0A:DC:18:0E:1F:60
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:71:e0:45:39:dd:79:73:ed:16:98:52:b5:50:26:e5:37:d2:
88:46:d6:0e:96:84:30:60:9c:18:48:d1:ca:a1:33:22:90:27:
13:47:65:64:f6:fd:cd:2d:4c:a3:19:cb:e6:7b:78:7d:1f:95:
7c:7f:17:9f:82:72:d5:a6:62:a0:40:a7:b5:64:7d:a2:9f:cd:
43:7b:13:ea:e5:87:7a:cf:82:b8:fe:03:08:95:2f:7d:34:3d:
fb:c2:7d:df:46:6f:61:81:c7:99:4e:b3:ea:be:a7:4f:1f:5f:
04:62:86:1d:60:03:1e:c3:0b:9c:d9:e6:89:82:c7:19:58:e8:
fd:d4:55:45:72:0f:fe:78:63:55:3b:50:6a:8d:4c:bc:90:f1:
58:e4:a2:89:65:49:8e:63:a5:f0:ea:f2:f8:30:2a:24:38:1c:
e2:e6:cc:07:c8:6d:44:3a:28:d8:83:1a:ee:0d:2a:ad:35:4b:
56:be:f7:04:4a:af:87:a8:cf:31:e9:8d:4b:e3:d6:25:9e:b7:
a4:a1:fc:c5:85:fc:26:a8:40:f2:a6:bf:e2:21:d2:b6:47:ae:
6c:da:ae:0d:fe:5f:5f:d4:02:d4:e3:4e:b2:2c:80:04:f6:2c:
78:1c:cb:be:a8:0a:bf:25:ce:90:5c:50:87:5f:0d:e7:35:70:
cf:5d:3c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:37 2025 by rpki-client