Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
File: hiuiH8_MNMnZtafGCBWF4KDucK4.mft (raw, json)
Hash identifier: BYeAZG76S9ejhARTPL0KAeccRDORL38e/icJQmwxl3k=
Subject key identifier: 0C:A7:8E:34:03:95:F2:2E:33:40:AD:DE:FB:74:FF:29:6E:38:B9:32
Authority key identifier: 86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE
Certificate issuer: /CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae
Certificate serial: 019922C3B2CC3699590FAF80788956AD37E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
Manifest number: 076B
Signing time: Sun 07 Sep 2025 06:01:14 +0000
Manifest this update: Sun 07 Sep 2025 06:01:14 +0000
Manifest next update: Mon 08 Sep 2025 06:01:14 +0000
Files and hashes: 1: hiuiH8_MNMnZtafGCBWF4KDucK4.crl (hash: xHs2z+bnWdeEUCMQ1oMFj4xk3CsdZxlpgKFeOzBCUKc=)
2: iVxulShReTYBVaVMHOSAPgJMX4w.roa (hash: K1U4ekJDUmOT/6sNVV1rdRQsFS3D9+kf/By0ijYc4Q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:b2:cc:36:99:59:0f:af:80:78:89:56:ad:37:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae
Validity
Not Before: Sep 7 06:01:14 2025 GMT
Not After : Sep 8 06:01:14 2025 GMT
Subject: CN=0ca78e340395f22e3340addefb74ff296e38b932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:4d:8a:98:20:80:7b:f7:3b:b7:01:c2:e3:cd:
f3:8c:25:fb:7d:b9:55:0e:51:98:dc:48:b2:f3:5f:
de:e2:6a:1f:92:db:2c:ef:7f:4f:b9:8b:fb:b4:2d:
5d:09:d4:a9:13:b0:a2:88:a2:28:75:e6:1e:85:5f:
30:fa:a3:07:23:08:27:7f:f2:05:e8:c8:25:21:7b:
95:2f:17:00:c6:a9:cf:1a:9e:eb:87:58:5c:54:b9:
c0:7e:ce:c5:42:d2:66:10:10:74:0c:e3:ac:e8:ee:
82:86:8f:8b:40:0f:80:2b:a2:02:9e:f0:76:33:09:
41:0d:ba:9a:4b:77:f5:cc:39:f8:e4:e6:6c:d3:3c:
72:20:51:96:68:44:dd:2b:cf:64:2d:7d:68:9b:43:
89:f3:32:b9:0d:15:0f:7c:f5:cc:0f:07:81:19:4c:
89:66:39:c8:ee:e1:47:20:c9:0c:96:4f:f6:4f:34:
2a:de:5a:e7:39:45:90:90:cc:03:d3:bb:66:3e:39:
94:c2:f0:16:46:ae:fa:d1:ad:47:3c:12:ef:77:bd:
43:4f:44:f5:15:78:57:da:00:d5:b2:3c:73:2d:f7:
5c:8e:4d:53:d5:ef:0a:72:90:ab:d9:c8:d1:23:b1:
7b:58:9c:cf:07:af:1a:b9:a9:f6:98:76:0a:83:b1:
91:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A7:8E:34:03:95:F2:2E:33:40:AD:DE:FB:74:FF:29:6E:38:B9:32
X509v3 Authority Key Identifier:
keyid:86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:51:60:0a:6b:02:e6:38:cd:25:f4:1c:cd:b2:3c:21:11:0f:
d6:82:22:51:9d:58:c3:08:49:5d:7d:d1:85:f2:57:e2:ab:14:
d4:08:7c:0c:ae:da:41:d7:f7:a6:cb:86:f7:a4:f0:5d:42:10:
d8:94:91:d9:66:f5:31:9a:16:cf:5e:23:ae:5b:37:42:1d:49:
6a:17:35:8b:35:a3:ad:31:ca:8d:e3:73:dd:50:cc:61:35:81:
dd:f9:04:3b:63:c8:d8:2d:60:77:21:5f:dd:a8:b9:e4:1b:ee:
55:af:c9:a5:2d:66:79:51:80:e4:24:f2:82:e8:34:69:d4:0c:
09:c9:77:15:7e:35:50:8e:7c:ce:37:94:9f:51:9e:01:b6:9c:
a3:f6:37:b9:56:ad:e2:75:40:90:60:81:0d:7c:1b:26:30:54:
e7:64:c1:de:38:0c:e4:65:f4:b6:4a:94:ab:19:04:86:3b:9b:
26:83:ef:03:4f:e1:8b:2a:7d:f7:ec:34:1d:96:76:3c:8d:cc:
d8:f3:98:12:a3:0b:3b:9e:2f:86:f2:a6:85:30:f9:dc:49:5b:
45:a1:65:20:e6:7f:20:68:99:4a:1c:99:11:b1:a8:a2:aa:7a:
64:c6:ec:d1:91:d5:15:81:1e:92:5f:cf:00:8f:a9:91:5b:5b:
2a:6a:d8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:32:59 2025 by rpki-client