Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
File: hDz1u4drdyt63kMpBctpbxNMqjk.mft (raw, json)
Hash identifier: ClWiv5wNeX4ZQdVrbJ9RMOnah/sfw+pDOX2+plc6Bs0=
Subject key identifier: B9:74:D4:C9:22:29:C1:43:D7:02:63:29:60:CB:66:AF:7E:C7:20:D0
Authority key identifier: 84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
Certificate issuer: /CN=843cf5bb876b772b7ade432905cb696f134caa39
Certificate serial: 0199221F08B3B0EC0D36F43C6C99573104ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
Manifest number: 1675
Signing time: Sun 07 Sep 2025 03:01:23 +0000
Manifest this update: Sun 07 Sep 2025 03:01:23 +0000
Manifest next update: Mon 08 Sep 2025 03:01:23 +0000
Files and hashes: 1: 8SOVzbdZRi1TiXuPdQBPQag2b1I.roa (hash: 4UxgH1Bm5rLISlPUt1abtwizcDNcCBaAAK4mH1Wxzxk=)
2: hDz1u4drdyt63kMpBctpbxNMqjk.crl (hash: m+WoVD5IaBfZ5XV10ExKJSyCWq59ZTy5DI4U4SPdBoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:08:b3:b0:ec:0d:36:f4:3c:6c:99:57:31:04:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843cf5bb876b772b7ade432905cb696f134caa39
Validity
Not Before: Sep 7 03:01:23 2025 GMT
Not After : Sep 8 03:01:23 2025 GMT
Subject: CN=b974d4c92229c143d702632960cb66af7ec720d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ef:0b:dc:89:7d:ae:cd:3b:64:14:cb:77:2f:
f4:67:df:d2:59:52:f9:75:a9:7b:16:02:ac:9d:1c:
31:b5:bb:7d:e7:f7:9a:ec:fe:4f:49:6e:84:0d:4f:
53:82:4d:59:3b:9a:76:c9:69:27:71:49:ce:5d:ae:
ac:a4:43:66:7e:42:7f:da:03:0a:de:bb:9a:b5:f7:
98:90:c6:f1:ae:7a:6f:9c:d3:1d:08:5b:8f:84:70:
c9:f4:b1:70:8b:c5:b7:5e:b0:f6:b6:7a:d6:bc:a7:
03:91:e5:c7:3c:3b:a1:6d:03:aa:86:68:80:50:a9:
f2:92:22:81:ce:e5:ab:16:cf:fe:e0:3a:6a:cb:34:
3d:5d:ba:39:c1:27:9f:3f:a0:45:f0:60:87:b3:de:
8d:97:e9:2e:30:e9:de:41:3b:0d:6e:89:78:a3:44:
37:e0:1e:9e:21:da:7e:55:b7:3d:ed:97:ba:70:ec:
94:2a:78:60:de:7f:62:81:15:32:de:c2:93:5d:28:
7b:2a:cc:dd:9a:86:e6:d5:5d:70:71:57:f4:41:ac:
c1:79:33:55:6b:ed:f0:31:26:5c:89:65:8d:31:e3:
3f:2c:2e:e8:d7:c6:8c:0a:3f:75:0f:d7:85:31:40:
f2:cd:03:df:b1:8f:93:16:66:8d:49:a8:18:e8:5c:
41:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:74:D4:C9:22:29:C1:43:D7:02:63:29:60:CB:66:AF:7E:C7:20:D0
X509v3 Authority Key Identifier:
keyid:84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:26:21:b9:53:e7:39:12:ff:53:f8:5b:e8:09:79:d4:5d:6d:
bd:1c:ee:a9:70:8f:10:2c:ab:ad:1d:69:33:d1:f8:be:87:6a:
1d:a5:15:e6:a1:ab:e4:26:6d:eb:ef:38:87:24:90:49:11:73:
14:b6:92:a4:d6:ca:95:8e:1c:94:e8:45:d7:f1:b7:6d:bb:94:
64:79:aa:23:3a:dc:d7:6e:a9:49:55:1a:57:63:2c:b0:ed:33:
14:a9:62:55:63:77:a4:b2:4d:d4:4a:bb:86:6b:2c:fd:ea:5b:
14:43:5d:28:07:cd:a4:bf:19:a8:7e:eb:bc:0a:0c:81:87:f5:
0b:dd:11:e7:61:5d:3e:96:2d:6e:ec:56:f0:c6:af:38:ac:5b:
ef:88:4b:65:c4:f9:65:22:26:19:c1:9c:a1:b4:04:61:45:63:
1e:6e:d0:8f:73:12:be:4c:3d:c5:eb:dc:49:5e:3f:ab:79:9e:
05:9e:4e:30:42:d6:33:9e:be:74:aa:75:2d:48:56:32:ec:f6:
b6:9b:3a:4c:6d:c0:0a:dd:3c:ed:35:aa:15:06:97:36:d5:bf:
fb:77:5d:96:15:65:fd:9b:01:95:ca:4a:08:07:59:bd:65:c6:
09:44:b5:eb:1a:ec:33:f8:57:67:a9:ca:1d:2c:cf:b9:25:58:
69:6e:16:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:29 2025 by rpki-client