Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
File: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft (raw, json)
Hash identifier: apgzXZDoylqjY/MRg03RnZrMn0ZPZbH/iTssukvwt1k=
Subject key identifier: EF:D6:7B:30:F1:48:C4:86:8C:08:C3:01:AA:25:60:68:77:C5:D2:02
Authority key identifier: 85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
Certificate issuer: /CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Certificate serial: 01992255622C345D67805481B968E801EAC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
Manifest number: 021A
Signing time: Sun 07 Sep 2025 04:00:45 +0000
Manifest this update: Sun 07 Sep 2025 04:00:45 +0000
Manifest next update: Mon 08 Sep 2025 04:00:45 +0000
Files and hashes: 1: cllA8kNp-t480y7IfyyWuiklziY.roa (hash: 5bq8pPC98WVuN+UCw7i3OOCXOObrhETW5cCP805rEU4=)
2: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl (hash: 2PiZ1x/llQ2u7pBKtoi6fVbAQPhNBd6+Fq4Ysh+HgA4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:62:2c:34:5d:67:80:54:81:b9:68:e8:01:ea:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Validity
Not Before: Sep 7 04:00:45 2025 GMT
Not After : Sep 8 04:00:45 2025 GMT
Subject: CN=efd67b30f148c4868c08c301aa25606877c5d202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b1:35:50:43:7d:66:e3:be:02:aa:b3:b1:2f:
ae:18:00:92:72:3b:b4:f0:b7:2c:77:8b:3e:c9:07:
d5:19:c9:07:03:0c:76:c3:ed:02:46:9e:a3:8d:b2:
90:66:28:ba:8e:9e:df:8e:cd:e5:e2:45:b1:65:cc:
c6:aa:a1:61:bf:e0:4d:f6:99:34:9b:55:36:0d:2c:
29:af:a1:eb:97:bb:31:09:25:f9:ae:a0:a1:30:92:
22:f6:68:e6:36:ae:cf:00:60:01:ad:c2:31:9c:48:
aa:fe:0a:43:a2:55:30:d7:6b:30:4d:e4:b0:5f:0e:
04:e6:da:f6:20:a5:a2:3b:c5:05:99:4f:0d:1b:88:
49:d2:21:96:4e:49:70:a9:8f:86:7d:30:d9:af:dd:
46:d8:a3:ea:6a:d5:44:b4:8e:48:b1:22:12:4e:84:
5e:61:a1:a3:03:17:94:89:d2:c2:41:db:a8:7e:8f:
a7:07:ad:61:ad:64:8c:59:58:87:25:18:01:4d:16:
a8:89:62:27:69:da:13:09:94:66:6b:5e:fb:78:a2:
80:b4:99:76:8c:f0:44:0a:d1:9b:47:31:93:bd:a3:
52:be:28:3a:1a:04:36:c8:16:b4:e8:d1:1c:0a:99:
f2:38:6d:ea:03:28:98:a1:42:44:90:20:32:7e:81:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:D6:7B:30:F1:48:C4:86:8C:08:C3:01:AA:25:60:68:77:C5:D2:02
X509v3 Authority Key Identifier:
keyid:85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:5b:f2:17:f8:97:85:20:d6:c6:e0:56:b7:f7:40:15:8b:af:
98:0b:03:dc:1d:25:fe:7d:dc:d0:d9:f0:d2:51:ee:1e:5e:eb:
97:31:2c:e2:5a:1a:c6:87:2b:eb:dc:c6:f1:c4:33:d7:d3:6d:
82:39:f4:8c:4b:22:7f:ce:6d:a5:bd:5d:4c:4f:b5:0b:fd:66:
15:5f:59:a1:08:8e:61:94:5b:cc:cf:43:92:a3:3a:46:e4:56:
5b:55:08:20:ad:48:2c:42:a8:78:87:79:77:c9:40:5c:a2:8b:
46:66:87:14:44:2d:06:ab:9c:a0:18:c3:a8:c8:0c:da:56:e3:
da:9d:a3:55:65:66:90:55:c1:84:90:49:7e:4c:fa:ea:0f:ae:
3e:6f:1a:d0:0c:12:85:13:6b:a4:a7:53:0f:9d:01:db:f8:48:
6b:e3:46:e7:b5:9e:fe:50:28:0f:ec:20:7c:b9:d9:27:a5:d0:
c3:19:a8:a7:3d:bf:b4:d3:ea:92:da:72:73:c9:fe:5f:c8:6b:
72:f2:0b:67:2e:55:ba:e8:83:b4:df:6d:43:39:07:29:98:c9:
08:23:f2:6e:95:73:78:89:10:66:e1:56:c8:65:36:ec:d1:25:
3d:00:e1:28:78:c9:57:82:70:0b:6b:27:f9:50:2b:18:30:56:
6b:94:a9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:53:41 2025 by rpki-client