Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json)
Hash identifier: wudBP9WelPONH4/iwn4JMMHid2vXN03tga7Ipp0ah0s=
Subject key identifier: 3F:6C:AD:29:58:0E:38:D2:A7:27:3B:28:2C:AA:C5:3A:A3:3B:BD:0A
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 01992FDA41205B771BFA5F3533CBABF6DAAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
Manifest number: 07A0
Signing time: Tue 09 Sep 2025 19:00:56 +0000
Manifest this update: Tue 09 Sep 2025 19:00:56 +0000
Manifest next update: Wed 10 Sep 2025 19:00:56 +0000
Files and hashes: 1: 00q_V9fiuxK8x1J5dDf6heEWqpM.roa (hash: XdV8RV4SCz2Bjb29weutw1xlx9C6MC3WoiwiAcbHJHU=)
2: 0DRjjmcZlOUPV43RadORGLY5fAU.roa (hash: OsLSdbKdwCfPfb6fa3q09CVq+CXKI7ScoH/tLbYmOyY=)
3: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: Ueb+g5vkuY9McEtBmt8/Fah3tIl1IPKq3rwsdXTubHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 19:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:da:41:20:5b:77:1b:fa:5f:35:33:cb:ab:f6:da:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Sep 9 19:00:56 2025 GMT
Not After : Sep 10 19:00:56 2025 GMT
Subject: CN=3f6cad29580e38d2a7273b282caac53aa33bbd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f0:0c:52:30:0c:90:a2:35:5e:8b:d0:3b:1d:
a4:5f:cc:4f:cd:78:90:70:96:86:c4:9f:bd:c7:c1:
a7:84:ad:29:28:d8:f8:6d:c3:9f:64:88:42:3c:c4:
65:66:6c:f0:9f:82:e9:3e:6d:1c:05:13:58:6f:07:
51:67:6e:fa:ac:dc:89:7a:f6:2d:14:a3:dd:e1:8c:
3f:1e:f5:e0:fa:16:7e:da:3c:f2:23:52:ee:41:55:
a3:95:5c:38:77:af:be:38:29:1d:30:11:46:37:37:
4e:01:14:86:34:97:59:1f:5b:e3:94:1c:d1:96:e0:
81:7a:ba:66:a8:21:b6:e5:79:41:2e:fe:2f:25:64:
2c:93:04:56:b6:17:94:1d:5f:68:32:fd:46:58:23:
5f:98:f7:1e:2c:d6:aa:17:e9:80:ab:37:da:86:ac:
80:42:24:89:fa:4c:d2:f7:de:d2:5b:b1:7f:fe:ff:
20:84:0d:0d:dd:3c:4a:3f:b1:f6:58:6f:bd:48:8c:
3a:c8:bb:8a:0c:85:6d:41:8f:fa:48:47:1d:eb:e3:
ad:d0:b4:54:50:3d:f7:e6:ba:0c:2c:07:f7:89:9f:
2b:40:7a:3e:c8:ab:8b:46:d2:6a:5f:e9:4a:54:57:
c7:3e:0a:c4:e8:16:50:d9:95:79:c3:ad:66:94:c9:
1f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6C:AD:29:58:0E:38:D2:A7:27:3B:28:2C:AA:C5:3A:A3:3B:BD:0A
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:99:97:8b:11:4e:2c:17:a2:ac:8b:11:f1:c2:32:4a:e4:9f:
24:93:76:ca:02:df:6b:aa:a5:ab:79:9a:6c:82:72:a8:fc:a0:
3f:8f:3e:3d:7a:d6:40:0a:4c:6f:4b:04:0e:bc:bf:27:49:05:
85:c9:86:78:48:87:51:99:7e:04:d8:5e:a1:ab:ee:71:cc:4c:
78:84:7e:5a:ee:b1:54:eb:67:67:b5:df:fe:f0:bd:11:99:b5:
af:92:9f:d6:88:d2:32:06:f5:e4:d6:53:13:b4:b0:65:3c:15:
47:69:dc:0d:62:af:70:b9:d6:41:1e:2e:36:02:ef:46:56:dc:
98:89:48:48:08:6d:6f:06:0f:6e:30:b1:d1:eb:ee:0e:11:e8:
1e:69:60:28:c3:07:66:3e:6c:a1:9c:b7:a8:eb:6c:cc:17:31:
b4:40:b9:65:e3:45:0c:c8:6b:ee:36:56:f2:d6:18:0a:d4:8e:
69:df:17:20:2d:57:86:c1:70:1c:39:3e:9c:b8:55:c0:83:04:
31:c5:80:1b:bd:0d:f2:c8:0a:62:35:a3:cf:42:53:bb:06:aa:
69:e3:d9:8c:35:b2:75:de:19:87:a6:5e:d2:df:7e:41:93:93:
ac:7f:1b:0a:4b:c5:40:3f:be:d0:2c:16:cf:58:47:4c:9f:cf:
36:b4:d7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:31:48 2025 by rpki-client