Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
File: hGhM2vJd5AvvwejkIoWo1ew4kEc.mft (raw, json)
Hash identifier: lkwf0ORYYp4yqG9BlP/b9Q438g7QtwcdUO6kgTjWmP0=
Subject key identifier: 3A:E4:92:E2:E0:D4:EA:BF:24:E1:D2:BA:8A:80:0D:BC:07:0A:DC:B7
Authority key identifier: 84:68:4C:DA:F2:5D:E4:0B:EF:C1:E8:E4:22:85:A8:D5:EC:38:90:47
Certificate issuer: /CN=84684cdaf25de40befc1e8e42285a8d5ec389047
Certificate serial: 01995A56D156A621074FA257A4367BE0DDBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
Manifest number: 04AC
Signing time: Thu 18 Sep 2025 01:01:02 +0000
Manifest this update: Thu 18 Sep 2025 01:01:02 +0000
Manifest next update: Fri 19 Sep 2025 01:01:02 +0000
Files and hashes: 1: hGhM2vJd5AvvwejkIoWo1ew4kEc.crl (hash: MSmjnfwZIiK+0AQiKO7o8CeoPdOrjfBJDLex2FyWgQk=)
2: oidwYZW8G2o74OS_a_nCcJCpjCg.roa (hash: ogxgsB9YER6I/w+iNtW/Wqu1gf3XIhY2x4sxgGoaIJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Sep 2025 21:38:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5a:56:d1:56:a6:21:07:4f:a2:57:a4:36:7b:e0:dd:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84684cdaf25de40befc1e8e42285a8d5ec389047
Validity
Not Before: Sep 18 01:01:02 2025 GMT
Not After : Sep 19 01:01:02 2025 GMT
Subject: CN=3ae492e2e0d4eabf24e1d2ba8a800dbc070adcb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:99:38:ea:74:91:cb:be:11:7b:e2:cc:dc:
ae:f0:fb:3e:a2:ab:e4:45:ba:58:0e:57:58:d7:dd:
0b:fe:bf:44:fe:43:91:de:c5:66:b5:6d:3b:ad:6b:
f8:45:1c:7a:9a:55:31:72:3f:75:3a:ca:45:da:52:
1f:f1:fd:18:30:11:ff:ad:86:1c:e0:48:0e:b4:a7:
75:d2:75:dd:45:db:44:09:5c:e1:e6:3a:8b:20:0f:
13:a3:38:45:31:bb:97:8f:9c:2f:82:ba:56:92:52:
8b:3a:22:e5:7e:b6:5c:25:27:ce:68:d3:12:6e:1c:
6f:11:d5:d2:1d:ee:96:b9:a2:23:59:b2:68:71:ca:
3b:72:22:a9:4b:04:cb:0a:ce:99:17:0f:33:83:4b:
9a:e8:06:06:85:e8:ec:6f:bd:cb:22:96:89:a4:da:
d2:60:c7:cc:61:63:28:f9:a6:21:d5:1c:f3:06:d7:
7e:5c:c3:2b:6a:ff:57:c4:65:14:cb:2f:7f:f1:e2:
08:06:a0:78:d4:90:b1:9f:38:c3:5f:31:e3:a4:0b:
d7:31:71:81:7e:0a:69:48:6f:a0:67:27:7a:89:6c:
27:9d:26:02:59:69:ea:88:d1:a4:5a:2e:c0:58:55:
2c:f3:7c:55:2e:0e:09:03:2b:0a:04:1f:eb:bf:ba:
be:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E4:92:E2:E0:D4:EA:BF:24:E1:D2:BA:8A:80:0D:BC:07:0A:DC:B7
X509v3 Authority Key Identifier:
keyid:84:68:4C:DA:F2:5D:E4:0B:EF:C1:E8:E4:22:85:A8:D5:EC:38:90:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGhM2vJd5AvvwejkIoWo1ew4kEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c0383a-f271-4c1e-b5ca-decb22062c70/1/hGhM2vJd5AvvwejkIoWo1ew4kEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:66:e4:86:b4:13:4a:68:af:27:c6:1c:9d:b0:36:a5:af:7c:
a4:ad:10:69:e5:d8:3c:3f:e6:b9:d0:1b:c6:a6:e7:b6:d3:79:
e8:e7:5d:be:88:fa:4b:68:07:4f:6a:48:9b:3c:4c:e7:58:b9:
11:ce:0f:bf:0f:41:d7:85:3b:fc:e0:1d:00:d5:70:6e:67:cc:
00:78:7c:2a:e5:c1:91:70:13:61:0f:de:49:df:22:02:10:f6:
54:00:54:1d:7a:bc:ea:94:54:82:3d:ff:dd:8a:3e:6b:38:84:
bc:ad:09:63:ce:1f:fb:94:1a:ba:49:71:15:1b:8a:37:27:29:
ae:88:43:b8:a3:82:51:d3:7c:89:b6:65:3f:a1:4f:47:72:7a:
51:61:da:4e:51:68:59:53:05:51:7e:d0:6a:c7:99:25:56:c0:
f5:5b:6b:9f:4c:17:84:05:c2:a3:15:f4:0b:80:6a:be:9b:05:
6a:2f:b9:be:76:0a:c0:d5:e6:ee:f5:0e:4d:58:99:42:37:8e:
b8:cf:f3:7a:85:49:3a:08:94:eb:ef:69:0e:e6:1e:9d:a8:7e:
a5:cb:eb:ef:1d:86:30:b3:cf:6f:a0:eb:69:7b:19:14:14:fc:
b4:20:36:09:3e:e4:44:30:5c:64:d5:e2:75:12:a4:2f:25:d9:
22:ff:0f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 06:05:34 2025 by rpki-client