Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
File: h9OLoS9GKcITH8YOiVDWwwO-fSI.mft (raw, json)
Hash identifier: pdDcTPtazaPv81NrdXzLznZKZPTibP5bHysMtRXZha4=
Subject key identifier: 61:00:04:05:57:04:9E:55:01:D4:D0:00:EF:4F:B4:90:81:5C:DB:EE
Authority key identifier: 87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
Certificate issuer: /CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Certificate serial: 019921E7A910AAD8BB21B2A01907D58D535A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
Manifest number: 07D3
Signing time: Sun 07 Sep 2025 02:00:54 +0000
Manifest this update: Sun 07 Sep 2025 02:00:54 +0000
Manifest next update: Mon 08 Sep 2025 02:00:54 +0000
Files and hashes: 1: NPXq7VLWTvwMe_H1BOcCF7vP8QQ.roa (hash: UBan9KbEcKtiRn9epXoesYMRtYi5lW0QY6/c4yNUKv8=)
2: h9OLoS9GKcITH8YOiVDWwwO-fSI.crl (hash: WOIEezz07G18Kxo3wII8yrvydXt0GokP3OXBo1BWtjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:a9:10:aa:d8:bb:21:b2:a0:19:07:d5:8d:53:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d38ba12f4629c2131fc60e8950d6c303be7d22
Validity
Not Before: Sep 7 02:00:54 2025 GMT
Not After : Sep 8 02:00:54 2025 GMT
Subject: CN=6100040557049e5501d4d000ef4fb490815cdbee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:71:ea:e3:de:44:70:23:de:45:fc:50:0e:59:
21:52:6a:9e:6c:fe:35:a5:c4:1a:a9:24:8b:27:d9:
d2:77:77:61:ca:95:d1:db:f8:40:15:09:c8:65:b8:
11:fa:61:79:99:05:f9:ea:12:27:3b:2d:ef:b7:79:
8e:b1:e6:38:45:f7:15:3c:52:fa:aa:62:57:44:f4:
66:c1:bc:11:5b:a1:d4:7f:ae:b2:e8:0d:42:fe:45:
a0:10:20:a7:6f:88:15:f5:7b:32:1f:ea:84:2e:ce:
db:62:fa:4e:0a:75:e3:15:58:63:de:af:10:5b:4e:
69:05:14:11:7a:47:d3:ad:e2:5a:a6:58:97:0a:9e:
d6:d9:61:8e:d0:84:4b:87:a5:08:14:84:bc:79:82:
aa:0a:63:02:54:35:d3:49:fc:77:b4:35:ba:44:bb:
ff:57:4a:fd:35:f4:d0:47:25:d3:f3:66:60:e5:8d:
85:55:39:f3:bc:9a:7a:e5:82:03:0e:77:21:53:58:
9b:6d:35:6b:93:32:d9:63:5b:c0:e4:ff:74:30:71:
db:3c:f2:0f:26:53:33:20:f1:0d:b4:39:35:06:77:
65:0a:89:4f:53:79:91:35:f2:2d:66:08:97:77:ac:
ed:bf:ab:ee:a9:e6:9b:3f:b8:f6:97:8d:2d:87:5e:
65:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:00:04:05:57:04:9E:55:01:D4:D0:00:EF:4F:B4:90:81:5C:DB:EE
X509v3 Authority Key Identifier:
keyid:87:D3:8B:A1:2F:46:29:C2:13:1F:C6:0E:89:50:D6:C3:03:BE:7D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9OLoS9GKcITH8YOiVDWwwO-fSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d2141-ecb8-4289-9669-fd55c58edaf7/1/h9OLoS9GKcITH8YOiVDWwwO-fSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ce:c5:ba:dd:03:17:95:ac:ed:5d:4a:68:2e:01:3a:75:18:
0f:c8:66:e3:34:e5:00:b0:ed:ea:b6:ae:a9:04:f4:9d:d8:6a:
ea:39:12:3a:24:83:e9:91:26:09:93:32:81:e6:f8:43:02:d7:
be:df:82:ea:03:bc:49:d5:34:fc:e3:d0:2f:58:9e:2d:8c:39:
eb:e7:1b:da:56:7b:f2:ed:5f:f0:ec:37:82:a5:f3:29:52:dc:
87:6f:ce:40:40:e6:97:d4:33:e7:cf:9e:6d:b0:00:70:1b:73:
33:3c:70:48:91:83:72:8f:7a:1b:bb:b5:08:c7:24:12:ee:76:
23:5f:64:e9:ce:35:9f:01:8f:e8:d8:9b:1f:db:bb:d8:7d:7b:
0c:d5:7a:0a:a3:66:f1:cb:19:bd:ab:00:28:80:04:1c:fd:1f:
0d:5f:fe:46:7b:38:63:5b:33:59:7c:23:a9:4a:ca:1b:ff:c4:
25:fe:06:9d:50:b5:d8:22:de:9a:a6:e0:cc:a2:09:15:b7:3c:
ff:df:f5:0c:29:08:56:9f:33:4c:7d:43:55:70:b1:22:f0:23:
87:7a:05:d8:5e:56:72:34:e5:a1:7a:59:3b:8d:f7:39:2b:be:
e4:4d:51:be:4e:68:23:2f:12:c2:bb:b9:95:4c:e2:0a:b5:b5:
3c:20:93:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:32 2025 by rpki-client