Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json)
Hash identifier: AOoOrd1n2ccdcf09QvldAw641iXWuqXl8wbP/5dwE58=
Subject key identifier: 0E:64:F7:E9:69:32:7D:90:5D:58:33:3D:D3:3C:06:87:22:ED:6A:6A
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 0199179A92DFEC151E6248E3AAA6555A7994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
Manifest number: 087F
Signing time: Fri 05 Sep 2025 02:00:30 +0000
Manifest this update: Fri 05 Sep 2025 02:00:30 +0000
Manifest next update: Sat 06 Sep 2025 02:00:30 +0000
Files and hashes: 1: GrVfgYYa0s5gLsRQp5P5vAQeHlE.roa (hash: Twu1XyErZ1bzBOtE8/HK3XbggJvMpOYaRXT376BODWE=)
2: XUIGCJfhGsoP5FdVAQmT9lUNYuc.roa (hash: hjmwDLHRKf4c787nov0R6bRVLxtqmM1uwueYf+NK6fU=)
3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: M5aFk+l9JW6rzyPuaVwA1+FfGnMxP1uyVi9t3waUCKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9a:92:df:ec:15:1e:62:48:e3:aa:a6:55:5a:79:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: Sep 5 02:00:30 2025 GMT
Not After : Sep 6 02:00:30 2025 GMT
Subject: CN=0e64f7e969327d905d58333dd33c068722ed6a6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:65:13:ae:08:70:ff:ae:a8:83:6b:92:52:
ec:d4:da:e1:1b:0f:6b:4b:b0:10:45:4c:7f:e4:88:
bb:21:a7:5b:bd:74:e5:3e:3a:56:4f:f3:50:30:fa:
c0:d5:fa:42:f1:80:83:d4:cd:23:ee:b6:69:76:29:
14:e7:d8:28:1c:cb:3e:95:78:d7:89:a9:b8:fb:19:
73:40:4b:2b:b2:d7:dd:10:f0:ee:95:83:f2:b4:13:
0f:c2:ac:dd:9d:9f:9b:e5:b4:3f:71:cb:11:e3:36:
ad:d0:70:52:fd:87:09:86:91:17:e7:bf:de:41:0d:
2e:01:61:6d:dc:5c:ad:cc:41:f1:2f:d6:d8:51:1e:
86:2c:66:43:49:80:c9:c2:d3:d2:73:ff:3c:0a:74:
19:71:44:db:b9:07:44:22:fc:8e:b7:42:53:0d:7f:
f2:af:9e:5d:e1:ea:5e:f5:7f:b0:f1:da:92:29:6a:
0c:bc:ef:06:7f:fd:7c:cf:7f:1e:03:d7:e1:ef:51:
fe:ad:98:2e:b8:75:d9:ad:f0:87:1e:b8:90:39:2e:
47:2d:db:2b:d7:05:26:11:0d:ec:8f:72:62:35:ea:
c2:69:e9:e9:7c:7d:19:38:b6:51:32:e9:f7:74:4c:
50:82:f2:06:ed:67:56:ec:1f:7b:79:93:2c:44:03:
f8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:64:F7:E9:69:32:7D:90:5D:58:33:3D:D3:3C:06:87:22:ED:6A:6A
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:59:d2:b4:33:66:9c:fc:81:cc:48:a9:36:9d:74:41:f5:ab:
2e:a4:0d:73:5c:69:bd:d9:f5:fb:fc:3d:c6:15:8c:f2:f6:98:
03:e1:76:f2:ba:c1:f4:af:8b:18:10:c5:e4:4c:02:1e:c5:9e:
9b:8b:1b:bb:23:3e:60:f0:95:94:c1:ad:52:81:dd:4d:a0:a6:
4d:a1:0d:52:33:4a:37:26:24:7e:68:cc:a8:f7:cd:e4:63:4c:
94:4a:70:af:43:28:65:3c:56:e2:59:06:a3:3e:0c:e0:6f:23:
03:d5:62:a7:61:f3:b5:20:9e:22:0b:21:d7:36:7d:b1:28:86:
f5:7f:34:d1:47:d0:d2:05:c2:46:3a:4c:9d:d3:80:ec:89:23:
6d:3d:21:ae:04:f3:ce:ae:8b:c8:54:52:4b:8e:3c:0f:70:66:
cf:ff:a1:e9:9e:8b:dd:cf:24:b3:46:45:78:06:55:d3:57:1a:
2f:f6:bd:59:16:68:49:5e:1b:64:05:4a:f3:6e:d8:76:bf:b0:
28:78:7c:fe:8b:98:9a:cf:ba:ba:0c:f3:14:2b:a8:14:88:f2:
3b:f7:60:25:07:cc:b8:60:10:e8:c2:d2:25:55:87:0a:ca:3e:
d6:b7:3e:df:67:34:7b:ba:dc:0f:63:83:7f:7f:08:aa:0b:a2:
20:d3:a5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:22:38 2025 by rpki-client