Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
File: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft (raw, json)
Hash identifier: pSa9gkiC3eqdeeEIA3J41Be3qccdDsdsh/0cmHej3ok=
Subject key identifier: EC:CC:D6:FB:47:ED:7D:A2:BB:5D:F9:AF:85:B3:D9:78:31:CB:A5:A1
Authority key identifier: D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC
Certificate issuer: /CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc
Certificate serial: 0199168847AD6BF1E1886544F9D66079CCBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
Manifest number: 0826
Signing time: Thu 04 Sep 2025 21:00:53 +0000
Manifest this update: Thu 04 Sep 2025 21:00:53 +0000
Manifest next update: Fri 05 Sep 2025 21:00:53 +0000
Files and hashes: 1: 0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl (hash: T4loFC6xN4S7foQeeswxsATgGDoNTwyJVHpAlIcwZnQ=)
2: 50bo-j7HR95aUFz7is7MBLLkMsc.roa (hash: aYgErZR0B+wLx1tDGd7DRHlBnCECIPjEQvva1IOrhbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:88:47:ad:6b:f1:e1:88:65:44:f9:d6:60:79:cc:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d21a5940722b207b29d95a6c81be0d2bf4d410cc
Validity
Not Before: Sep 4 21:00:53 2025 GMT
Not After : Sep 5 21:00:53 2025 GMT
Subject: CN=ecccd6fb47ed7da2bb5df9af85b3d97831cba5a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a3:88:bc:40:e0:fe:c0:79:ea:f9:bb:4a:e2:
a4:55:3b:11:d8:17:57:e5:0c:0b:a8:7d:33:6d:59:
e2:29:2e:f1:6b:95:2c:cb:7b:4e:6b:63:85:fe:ed:
51:b5:2c:69:b3:13:bb:97:d8:d2:13:08:a0:59:1d:
80:65:5b:c0:4b:29:12:42:e2:6a:b3:2e:c2:1d:c8:
af:f1:32:10:ac:12:9d:f3:f9:ae:1b:d5:36:58:61:
62:d4:90:39:6d:bc:23:d3:f0:34:65:ef:01:08:59:
cb:ca:c9:29:0e:53:fc:53:c2:9c:11:03:02:47:48:
9a:06:a8:0a:38:4a:e4:b2:3c:39:b9:e9:c8:a7:8d:
2a:7a:2f:17:13:58:3f:03:12:05:12:c8:07:8f:27:
17:3a:d5:4c:a6:98:76:22:3f:3d:a6:3e:d4:4c:3d:
57:aa:71:78:2b:f7:ab:37:72:87:b0:0b:7b:a3:f8:
4f:69:85:bb:6b:fe:f4:e8:a9:92:4e:2f:6c:42:8c:
16:7c:dc:e0:65:ce:48:73:c1:70:4d:d7:ec:71:f0:
a5:69:0d:10:82:b1:6b:c0:80:a4:22:ec:f5:81:9c:
70:0c:60:11:65:8e:1a:e9:04:e8:37:9f:ae:3d:fc:
50:23:69:3d:6b:38:62:5a:80:4a:38:ae:b1:07:8e:
92:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:CC:D6:FB:47:ED:7D:A2:BB:5D:F9:AF:85:B3:D9:78:31:CB:A5:A1
X509v3 Authority Key Identifier:
keyid:D2:1A:59:40:72:2B:20:7B:29:D9:5A:6C:81:BE:0D:2B:F4:D4:10:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/56433a-0a70-4eae-9f9d-8cfbdb799284/1/0hpZQHIrIHsp2Vpsgb4NK_TUEMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:2f:ff:12:06:19:dc:42:9a:8f:92:5c:a6:f8:25:37:fd:e5:
8c:eb:36:58:87:61:bb:62:4f:ac:f5:e9:6f:57:93:c9:77:a0:
9f:5f:3e:38:5d:e3:18:cd:93:98:fd:66:d1:7f:58:98:f7:45:
b8:db:58:47:56:b3:d1:0c:71:af:bb:e4:dd:30:32:f9:f8:f7:
27:d4:a7:2d:d8:d4:be:38:95:d6:55:d9:ff:a2:40:9d:9a:7a:
79:5f:ab:39:0c:31:b1:e7:90:1e:3d:b8:48:18:e8:4f:ae:de:
22:86:9e:b8:09:d0:44:9a:08:d5:ec:5d:5d:cc:09:4f:a6:8e:
18:a2:14:7f:45:3d:78:3e:d8:44:3a:ef:02:7c:c8:20:de:0e:
c6:99:55:67:01:dc:00:ce:d1:1d:4f:5e:6c:78:26:d8:29:2c:
0e:f8:93:b7:83:31:5c:a1:3f:42:e8:25:29:31:12:ce:14:3d:
68:f6:a5:81:98:53:e2:d7:9d:a4:c7:ed:5c:a5:5b:ec:02:60:
2f:88:d0:f0:9b:5d:ba:51:bc:0f:a2:89:99:ad:82:9d:fd:d6:
72:e5:ae:36:bc:74:bd:60:b1:e3:d8:46:46:28:69:30:01:9e:
ef:cd:95:71:72:e1:54:78:c4:32:d8:36:39:c4:9a:5e:ba:be:
e1:6f:ef:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:30:15 2025 by rpki-client