Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
File: IHeZAnMp8iaCdkVzryEV2pWp9r8.mft (raw, json)
Hash identifier: gec+T/UtQRbvSWAAPhX79oh6se2CR83zSIRE/oY50pQ=
Subject key identifier: 82:FA:B7:A4:02:44:D5:90:B3:34:54:BB:91:93:5A:35:25:D5:47:E4
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 019923A02210A7AB93C8AD00195702F66105
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
Manifest number: 0F71
Signing time: Sun 07 Sep 2025 10:02:00 +0000
Manifest this update: Sun 07 Sep 2025 10:02:00 +0000
Manifest next update: Mon 08 Sep 2025 10:02:00 +0000
Files and hashes: 1: 8EaewYTyFly5jEaj4gZEqMNcVMk.roa (hash: gqxj+841N8d9uy4L59oEcZudU4ge+IzVBr1jzF4wgjc=)
2: IHeZAnMp8iaCdkVzryEV2pWp9r8.crl (hash: LIrJFixnR2gpC2BzJyjRey3Bu3yNl0PuMwjH8eMDYhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:22:10:a7:ab:93:c8:ad:00:19:57:02:f6:61:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Sep 7 10:02:00 2025 GMT
Not After : Sep 8 10:02:00 2025 GMT
Subject: CN=82fab7a40244d590b33454bb91935a3525d547e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:53:69:b5:94:69:23:74:32:4d:c6:7f:56:43:
d9:77:4f:18:7a:d2:78:d0:f4:01:d7:f2:9b:98:f5:
e4:34:62:24:92:e0:fe:0d:a7:20:79:30:e0:f4:21:
e7:cb:e9:7b:f6:02:05:1d:c7:98:e1:1b:3f:c3:0c:
56:49:77:61:32:2b:26:1d:6b:c5:85:ce:ac:5a:42:
b8:62:29:31:ef:34:58:ae:36:39:93:90:20:32:d0:
2e:6e:c5:45:59:f8:a6:49:e0:b0:a9:9b:d4:f6:46:
d6:3d:a4:6e:ea:50:da:4e:26:cd:aa:1c:73:42:42:
fc:6d:5c:9d:bb:62:2e:06:90:fb:13:64:38:20:20:
ef:b4:c2:99:54:ad:1b:34:ae:2f:3b:61:6e:fb:73:
c6:74:11:c4:01:c0:0e:f1:5e:4c:c2:54:fb:f2:9a:
31:d6:c1:a6:80:7d:1c:8c:72:d7:97:99:a3:54:e4:
f3:8c:dd:d8:03:c8:e3:68:8c:c8:c5:6f:2f:db:4b:
a0:17:5f:43:24:f2:55:57:fe:6b:92:1c:b4:ae:3f:
ab:c3:37:9e:36:80:9a:5f:59:7a:11:b5:b4:8f:8e:
a5:f6:b1:c1:ca:a2:3d:2d:d9:c0:13:6f:65:95:91:
1e:ea:88:13:d5:82:24:9b:5c:7d:c1:03:4a:67:41:
f5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FA:B7:A4:02:44:D5:90:B3:34:54:BB:91:93:5A:35:25:D5:47:E4
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:8e:84:63:87:5c:df:a2:fa:cd:c2:95:d8:8b:53:8e:62:6e:
11:b6:bd:c0:80:f6:a5:64:1d:ad:56:d2:64:00:3b:a1:2f:78:
39:1b:38:57:fb:6c:21:19:d4:ae:cb:a7:2f:83:cc:ec:02:f7:
1d:cd:ed:e6:b0:bc:06:92:d3:a2:12:fb:bd:11:af:fd:2b:14:
6f:a9:15:91:61:69:40:1a:31:af:4a:b0:4b:f1:d5:41:f9:11:
f5:7e:52:89:31:fe:4b:f1:0c:d8:93:b7:d0:dc:5b:af:1f:47:
fb:87:ff:e9:dc:a7:43:05:ad:ac:ee:d5:6f:17:02:cb:85:59:
da:7f:69:7d:11:89:e1:7d:94:45:b1:e1:46:eb:e3:eb:d6:da:
0f:03:46:0d:b7:d9:25:ad:69:7e:eb:74:8d:7f:a5:eb:9a:e4:
03:fb:44:29:d8:9f:40:ad:2d:4d:8a:1e:cc:f8:c6:67:d9:93:
f2:2f:2a:5b:11:9c:63:70:15:72:15:eb:c0:cd:e9:a3:ce:67:
07:c3:a8:27:e9:1d:1c:8f:a2:f6:7a:af:4c:6e:a2:e2:3d:f0:
26:27:cc:d3:f0:22:9e:03:52:0c:72:e6:9e:8a:5a:16:db:6a:
5c:5d:29:db:02:e5:e3:b4:9b:b4:9a:22:8d:b8:22:79:8d:c9:
79:57:03:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:41:09 2025 by rpki-client