Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: H0ZNB8S5l/oVVeMEXQiZqfKopHcVACWWHp2tfGgbGdE=
Subject key identifier: 3E:B7:1D:E2:F6:BB:09:A0:46:CB:22:16:4D:0E:B1:9F:6C:E5:B7:50
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 01992331286BB2FBDDEBB6784766DE138A1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 1676
Signing time: Sun 07 Sep 2025 08:00:47 +0000
Manifest this update: Sun 07 Sep 2025 08:00:47 +0000
Manifest next update: Mon 08 Sep 2025 08:00:47 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: z2cOhFlS0MGcmwjI5c2BwHazRYkPJlPM6KhKZ0uEs6w=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:28:6b:b2:fb:dd:eb:b6:78:47:66:de:13:8a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Sep 7 08:00:47 2025 GMT
Not After : Sep 8 08:00:47 2025 GMT
Subject: CN=3eb71de2f6bb09a046cb22164d0eb19f6ce5b750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:24:45:8b:5e:e0:74:81:52:bf:5b:a2:3c:2e:
be:10:90:3e:0b:c0:31:f8:d3:a9:15:bc:74:24:05:
5e:fe:9e:74:ac:6e:c2:69:e4:a6:34:87:75:36:9c:
e4:13:ca:13:61:c5:45:cc:b5:f6:e9:7d:a4:ee:b4:
4f:2f:ad:d4:4b:33:7e:77:aa:82:67:3f:42:3d:19:
5c:33:ee:27:67:f2:88:00:92:c5:6f:d4:14:96:98:
ae:98:62:45:cf:4c:bc:6e:2a:bf:e9:16:83:cc:11:
72:80:13:f6:cd:14:d4:f9:4c:a6:cc:0c:ea:ba:a9:
00:7d:ed:62:7f:c5:a0:e3:75:4f:04:84:47:38:79:
f6:22:d6:89:04:d2:43:3e:a8:18:0d:87:4b:eb:2d:
f0:54:8d:9f:e6:c7:9d:08:b6:b0:28:ba:aa:77:e7:
61:c7:93:d1:c3:9c:c3:55:01:e0:17:8e:49:30:a8:
5c:ee:c2:08:67:66:7d:40:c0:c3:08:f8:5e:9a:e8:
e1:fc:27:5f:5c:8d:6b:52:d3:e5:d1:c2:0c:8b:ae:
fe:19:bb:84:97:44:6e:b0:17:94:5c:fa:6c:e5:28:
8f:00:5c:8c:c4:81:8d:e0:f8:f4:ba:0e:d0:26:13:
30:81:98:a6:e9:04:32:f7:1e:1d:6d:96:c4:bb:03:
1e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B7:1D:E2:F6:BB:09:A0:46:CB:22:16:4D:0E:B1:9F:6C:E5:B7:50
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:d5:74:20:44:7a:28:e8:34:28:31:41:d7:41:c0:78:73:fa:
91:ea:7b:c1:d3:d4:14:3d:62:53:99:15:81:a6:c4:17:4b:4d:
3a:d4:32:75:27:81:25:75:7e:dc:3a:9b:b6:47:3c:de:b8:93:
88:cc:36:ab:22:36:82:af:f5:ea:35:e9:ad:c0:86:48:97:cb:
3a:76:dc:ef:d5:94:de:f9:92:9c:15:6c:00:b8:03:11:81:c9:
b1:fc:ef:7c:a8:f6:22:5c:6e:8f:46:5f:82:79:b3:3b:d1:24:
2c:39:36:02:34:ad:95:e6:a7:79:4f:92:32:b2:1c:e4:37:05:
87:17:71:f5:94:0b:39:f7:fb:b7:6f:07:8d:0a:3e:22:c9:73:
bb:6d:f0:b7:eb:2c:04:0a:eb:dc:6d:8d:0a:db:f1:7d:57:c0:
9d:50:ce:5b:2a:4d:a7:3f:80:85:c1:86:70:f6:c3:f0:ad:5d:
1a:6c:89:3d:b0:28:0c:b0:fb:69:4e:59:31:3c:c2:23:90:98:
d7:50:59:1f:1f:99:f2:e6:fa:b9:8e:3f:6a:f5:bb:10:c3:9e:
f7:87:a1:19:ee:94:cc:bb:5a:ad:b9:3c:b4:52:14:32:d6:a7:
f3:1d:af:28:2d:5a:c3:82:36:53:d2:e4:38:1d:d8:e9:bc:01:
e3:31:5b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:50:52 2025 by rpki-client