Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
File: h0HsF9wDCbE9iKZ-oi3Luyak46E.mft (raw, json)
Hash identifier: DnWD8wO3SZ0rGulRf7IAeupl9S+K9/qnPSiwJzjZuI4=
Subject key identifier: FB:2C:3E:57:AE:30:7E:31:05:C4:E1:27:57:7B:19:99:14:21:8B:89
Authority key identifier: 87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
Certificate issuer: /CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Certificate serial: 01993492831BCA09F9C76EC0C1D449DCCB21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
Manifest number: 09A7
Signing time: Wed 10 Sep 2025 17:00:40 +0000
Manifest this update: Wed 10 Sep 2025 17:00:40 +0000
Manifest next update: Thu 11 Sep 2025 17:00:40 +0000
Files and hashes: 1: cASyfuH0abUwpn-V7hmuZSIQ09c.roa (hash: U2HpSDc4zJjb5yR4FxelHkJvS6rW6HvOOx+N/+WSuMk=)
2: h0HsF9wDCbE9iKZ-oi3Luyak46E.crl (hash: ITli7V2PMQdB6vRvHdka9BFTNHxhg8dbBx1/sDOlaV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 17:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:92:83:1b:ca:09:f9:c7:6e:c0:c1:d4:49:dc:cb:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Validity
Not Before: Sep 10 17:00:40 2025 GMT
Not After : Sep 11 17:00:40 2025 GMT
Subject: CN=fb2c3e57ae307e3105c4e127577b199914218b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:4e:22:9c:b0:41:01:8a:5f:af:79:07:51:b4:
82:4f:18:e7:f9:b1:fb:5e:fd:47:43:d5:50:07:cb:
e4:3d:d4:29:26:90:0c:aa:11:f8:ba:b3:e9:0e:63:
6c:85:f8:3b:73:8e:e1:70:04:a5:4c:bb:bd:14:14:
9a:ff:9c:71:8d:83:89:b8:bd:8e:6c:5a:8b:9d:be:
8e:5d:61:dd:8d:da:79:fa:ea:e6:46:6b:ba:7a:0c:
48:8b:cd:7a:73:47:8c:14:77:9c:f0:77:0b:3e:6d:
3f:19:82:14:86:22:ab:86:17:d6:36:4d:eb:39:0b:
a3:92:d2:fb:ff:26:78:ff:7c:47:86:f8:69:f1:82:
8a:03:82:d5:e1:97:2b:14:c9:07:b9:c0:5b:8e:6a:
f2:a8:e7:04:0c:ba:8a:0f:3c:23:dc:4f:76:3b:a1:
e3:7b:76:7b:55:a3:cb:47:d4:54:3a:73:8e:26:7a:
64:97:26:db:eb:fd:f1:a8:cd:2d:fa:a8:a4:67:5c:
01:cf:38:50:50:4d:46:3e:6d:1e:fd:87:6d:34:78:
6f:06:e3:4d:39:7e:d8:15:51:70:e4:6b:ab:d5:6a:
3b:64:bd:f5:bd:a4:06:d3:13:7e:ef:63:c5:72:5d:
00:25:e6:a6:07:97:7d:73:56:db:7d:7f:5a:91:3e:
8d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:2C:3E:57:AE:30:7E:31:05:C4:E1:27:57:7B:19:99:14:21:8B:89
X509v3 Authority Key Identifier:
keyid:87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:05:6c:ba:4d:67:dd:fc:71:56:45:83:24:95:a5:be:30:01:
ad:dd:33:3e:e3:cf:ba:56:8a:96:75:77:11:a8:b6:04:4c:e6:
e3:55:5f:fb:bd:9f:28:2a:9e:25:fd:96:b0:ef:c7:55:55:64:
06:ea:59:0f:55:94:c8:c5:7f:93:62:49:a6:90:35:f6:a2:ba:
82:27:26:51:ea:ff:3d:ed:a6:44:fc:99:95:51:29:02:98:bd:
bc:63:b8:31:2f:50:4a:d2:c7:4f:6c:3e:53:20:f7:d9:89:2e:
02:b4:83:6e:42:57:08:c9:cd:ce:15:e3:ed:00:7d:6c:9c:fc:
35:19:d9:d8:be:c6:45:7c:c3:8e:1f:e2:89:98:ae:cf:5c:09:
98:bc:18:58:37:52:ff:f2:18:88:30:36:28:4c:22:b8:af:22:
12:da:a6:77:a5:20:b2:dd:cd:1b:40:71:e4:c4:9b:a2:b7:e0:
5c:d9:7b:c2:db:b1:0a:a4:32:ea:26:d7:f5:5e:7f:05:b1:75:
43:52:26:18:e0:98:34:86:b3:07:b4:96:52:cf:d8:0f:1c:93:
ca:90:82:41:ca:e8:f6:ad:f9:b8:d7:de:3e:9a:da:3d:68:4b:
fa:9a:17:17:fd:26:a1:6b:34:d2:c8:a8:cb:22:db:49:cf:4e:
96:a3:79:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 01:06:15 2025 by rpki-client