Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: LSM+NzsNvBUe6iSt5u16VpdeYmXu8IUvHqzY6jC8+e0=
Subject key identifier: E1:1C:BB:3A:EC:A7:3C:99:66:78:49:99:FF:53:20:CE:04:4D:1B:9C
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 01993312B06C3E79AD1ED53A06A7792E9B9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 1182
Signing time: Wed 10 Sep 2025 10:01:26 +0000
Manifest this update: Wed 10 Sep 2025 10:01:26 +0000
Manifest next update: Thu 11 Sep 2025 10:01:26 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: SCPRrjJ22rA6TFaqAkIaKAK/QzFfk08k/1pZK2if35k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 10:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:12:b0:6c:3e:79:ad:1e:d5:3a:06:a7:79:2e:9b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Sep 10 10:01:26 2025 GMT
Not After : Sep 11 10:01:26 2025 GMT
Subject: CN=e11cbb3aeca73c9966784999ff5320ce044d1b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:26:e3:4c:e5:69:c6:4a:a3:df:e4:63:4f:
5f:98:6e:ed:d6:0c:39:85:cf:5d:ce:78:f7:10:8b:
ca:47:07:1d:e8:82:8d:58:c0:1e:5f:84:35:ec:39:
ef:b1:9d:56:be:45:cb:5f:cc:25:74:e4:b6:ef:58:
51:e9:7c:c6:f3:03:c9:9f:f9:48:00:5c:eb:14:f3:
74:74:c5:66:b7:dd:1e:f0:12:6c:96:95:68:87:dc:
dc:29:c0:63:24:68:94:09:06:38:67:ff:7a:e0:24:
8e:41:fe:03:22:1e:7d:65:c6:88:8b:e8:27:f1:b8:
64:62:de:ec:db:3f:bf:14:c8:84:3e:50:5a:f6:1b:
4e:57:0a:bd:a8:57:88:bf:20:f8:24:a3:3c:4b:7a:
6b:ee:04:9a:08:46:de:75:77:aa:3f:72:21:5a:5c:
0b:f4:22:1f:8b:ac:6a:be:ca:a9:0c:ac:14:53:da:
ef:4b:2f:33:a5:74:6f:0a:1a:d3:4e:d8:b3:f2:11:
d4:37:7f:29:3e:6a:9f:fe:83:e7:72:d0:09:b8:93:
8d:5b:32:33:92:2e:52:4f:49:d4:a1:63:8e:04:db:
14:56:ad:ad:9d:3e:7c:3d:93:bc:22:2b:e5:36:77:
1e:f5:1e:82:fa:e5:e1:68:aa:92:2b:f1:56:8e:b1:
ff:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1C:BB:3A:EC:A7:3C:99:66:78:49:99:FF:53:20:CE:04:4D:1B:9C
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:cb:53:23:87:dd:6c:47:0a:7c:9d:ab:b1:1d:51:21:52:81:
cb:36:80:a7:2f:86:ac:90:40:3e:22:03:e7:b9:b4:3b:c5:12:
30:44:06:01:4e:15:e2:26:ee:85:a2:62:84:c1:ca:93:85:4c:
fd:a9:0d:6b:04:0a:64:24:c5:6b:89:ae:d8:de:86:17:27:08:
1d:f6:58:44:8c:b5:44:a0:cf:af:1e:0b:d9:22:a8:d3:d3:82:
d4:e8:89:fe:4d:3a:40:ad:32:e6:9c:31:54:a6:64:d6:2d:c6:
2c:e0:df:0e:97:3c:0e:fe:ec:37:3f:67:95:6b:48:3e:96:f7:
cd:2e:a7:93:7d:56:18:7d:66:a7:40:2b:f3:bb:cd:80:a1:34:
2a:b4:b7:a3:f0:31:ef:f8:cd:c7:b6:70:7c:ba:fe:50:df:b7:
27:e6:b7:47:26:b6:8f:8c:09:b5:34:56:85:7d:a5:25:e9:9e:
75:63:0d:0f:58:4b:94:4b:74:72:03:fc:a7:6c:8e:6e:c9:7f:
f5:a6:57:78:99:2c:90:ec:74:5a:f6:06:24:98:01:ae:97:90:
9a:81:4f:e2:c4:c7:bb:a2:3a:87:b5:f5:79:92:13:02:04:df:
d3:95:e7:eb:53:d1:4e:f4:40:5c:f2:5c:de:7b:5d:4d:52:ae:
4d:ed:b5:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 14:16:33 2025 by rpki-client