Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
File: H9e7sd5oCd9_blc_mrtk5gNhPKE.mft (raw, json)
Hash identifier: 999kDwioWQSiiWi9ENqX9Jq9tmWnl2k2DCdRyuTs17o=
Subject key identifier: 9B:BE:E9:CD:78:71:BD:2D:84:67:D1:C4:6F:62:6B:D6:E0:65:E3:7F
Authority key identifier: 1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
Certificate issuer: /CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Certificate serial: 019923D5EA257D33F6EF54F8B336866BA554
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
Manifest number: 1675
Signing time: Sun 07 Sep 2025 11:00:45 +0000
Manifest this update: Sun 07 Sep 2025 11:00:45 +0000
Manifest next update: Mon 08 Sep 2025 11:00:45 +0000
Files and hashes: 1: H9e7sd5oCd9_blc_mrtk5gNhPKE.crl (hash: uRSXG/NZw1UofPXTCHteBqLTCzFH0cvssa+osCxPQz4=)
2: hOjqFzmwDn3h8aF0jh7_FXo9ReI.roa (hash: CNoH2a1MzUmjFlMi/+aHXlooSM/YD9l7gB33O/u52sU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d5:ea:25:7d:33:f6:ef:54:f8:b3:36:86:6b:a5:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd7bbb1de6809df7f6e573f9abb64e603613ca1
Validity
Not Before: Sep 7 11:00:45 2025 GMT
Not After : Sep 8 11:00:45 2025 GMT
Subject: CN=9bbee9cd7871bd2d8467d1c46f626bd6e065e37f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:f8:1c:3c:a9:fe:7d:13:20:87:58:d4:de:
97:ff:f8:e4:21:d4:80:bf:2f:8e:12:e4:22:f9:e1:
a5:d0:73:d2:d7:29:99:38:cc:99:76:0a:d0:ab:cb:
b2:2a:c0:a7:90:d1:f9:d3:bc:d6:fe:18:38:68:03:
74:3b:5b:81:ab:06:11:36:1e:7f:ce:bf:36:b6:14:
12:09:33:c8:30:86:ea:e4:65:b9:f1:59:98:77:0a:
ad:0d:0e:4b:0e:1e:d1:af:78:2c:18:ea:1a:66:ed:
7c:c3:2d:dc:be:ab:48:b2:8d:a6:b7:be:30:82:c7:
a9:de:b0:00:de:58:26:45:5b:d2:bb:a4:38:3f:c6:
12:99:5e:88:c9:12:2d:50:76:21:4c:4e:56:9a:97:
9d:8e:e9:e3:38:79:3b:84:6d:6e:9c:f7:e7:b7:e7:
1e:ae:81:f2:2b:2a:ed:4e:30:eb:90:96:58:94:bf:
cf:e3:a7:e5:51:41:18:ce:9c:21:7f:53:1b:6c:1a:
c3:59:38:42:99:62:a1:42:1a:6d:6b:73:db:f4:c8:
2a:10:6d:4e:c8:71:52:ac:67:46:12:fb:79:e2:bd:
9f:5c:67:58:22:cf:e2:00:31:b6:bf:26:25:cb:ba:
1e:44:25:a3:34:f9:4f:06:84:a3:bb:97:0a:cf:f6:
52:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:BE:E9:CD:78:71:BD:2D:84:67:D1:C4:6F:62:6B:D6:E0:65:E3:7F
X509v3 Authority Key Identifier:
keyid:1F:D7:BB:B1:DE:68:09:DF:7F:6E:57:3F:9A:BB:64:E6:03:61:3C:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9e7sd5oCd9_blc_mrtk5gNhPKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/f8e803-41f5-4668-afa5-db13abbe4e9a/1/H9e7sd5oCd9_blc_mrtk5gNhPKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:28:62:ea:48:e4:ec:a7:60:1c:06:d9:5f:2b:6a:c5:94:14:
8b:05:50:49:1f:7e:08:ab:67:71:8a:b8:e1:6e:0a:85:ca:b0:
04:d1:bd:ec:30:11:c5:a7:32:9a:f5:1e:67:3a:54:aa:0a:22:
cf:f6:81:6d:1b:c4:06:1d:21:0e:ee:21:8d:98:39:6a:f9:78:
8b:03:2c:43:19:29:72:88:47:d3:10:f1:64:50:e9:36:1d:e8:
1f:77:93:47:e6:d2:85:06:ec:fe:ef:a1:1c:48:c1:96:bc:9d:
03:4e:10:6b:d5:92:9e:d1:b3:38:e4:87:8b:98:05:2b:ed:fa:
05:2c:38:ca:91:16:cf:f5:4f:7b:82:c3:89:89:ed:2c:13:48:
dd:df:8a:0d:89:29:c7:37:5d:1c:0f:34:f6:bb:3a:5a:1a:09:
44:d1:f2:74:ca:17:8a:f0:e9:5f:cd:4d:0c:b7:59:72:ad:4a:
72:54:64:78:ea:24:58:3a:26:81:f8:1b:a2:ea:cd:df:b3:88:
2f:af:92:2e:f0:b7:d6:80:15:69:d7:e9:c0:6a:1b:3d:4d:4e:
fb:cb:22:95:5d:a2:90:ca:bd:38:78:8a:8b:65:e5:75:40:46:
7b:cb:56:ae:45:ad:64:41:a0:ee:2f:00:6e:75:2e:13:18:7f:
80:6a:9d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:08:21 2025 by rpki-client