Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: FSQ0+T7Zrxf2ntzwdeHPbkNXiEIu37fsbzRsUOdJnQg=
Subject key identifier: 37:A2:3E:5D:00:97:22:59:0C:F4:9F:93:05:4E:A3:51:F9:D6:84:24
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 0199228D1B35EB954EADC959882886C2DA0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: 0171
Signing time: Sun 07 Sep 2025 05:01:36 +0000
Manifest this update: Sun 07 Sep 2025 05:01:36 +0000
Manifest next update: Mon 08 Sep 2025 05:01:36 +0000
Files and hashes: 1: duguTeW8ErmRr7f5ZEryR3oV58E.roa (hash: q3OOsJ7Kv17p8ez5C5AQYcTLGWf82piJmxtRxe/QdaM=)
2: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: q84yCsEoWgYhgY738HtYnJI3OpNem0+I8NqIk8/OULM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:1b:35:eb:95:4e:ad:c9:59:88:28:86:c2:da:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Sep 7 05:01:36 2025 GMT
Not After : Sep 8 05:01:36 2025 GMT
Subject: CN=37a23e5d009722590cf49f93054ea351f9d68424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:af:42:f9:e5:6a:0e:6d:30:ed:af:6b:4b:74:
bc:04:c4:33:df:e3:1b:28:03:eb:a4:af:99:3f:d1:
1f:5b:42:40:23:61:11:e0:a8:7b:da:44:2a:0f:4c:
b6:5b:4c:57:c9:61:4a:17:02:70:7b:76:bc:c6:01:
99:f9:b9:5c:3b:2a:ca:7c:c8:7f:03:70:91:73:06:
b8:19:6a:90:87:21:b3:a0:f6:76:10:9b:38:7f:1c:
38:8a:c4:03:53:c0:72:33:36:c6:d6:c2:15:05:49:
41:57:47:66:89:ee:36:bc:83:d9:ad:18:c6:55:7f:
55:7a:bb:76:f1:1b:43:9a:8c:d2:5e:7c:64:26:b5:
09:2d:17:13:be:62:32:09:86:84:a1:9d:af:4f:a9:
91:7a:f5:e8:68:b9:9f:c2:37:2b:db:ba:90:f0:b2:
4e:e8:8e:71:46:21:d9:e9:85:17:d5:a8:9c:5d:9f:
59:5b:a1:6c:c5:4b:b5:9e:48:57:6c:96:70:5c:92:
70:20:1e:fa:3f:56:c0:b9:d8:c3:75:7b:67:56:92:
07:c9:65:d0:d9:67:52:f1:17:8b:91:7e:d7:1a:87:
ca:42:39:d6:26:cd:0e:e8:b6:47:e5:b6:4a:43:32:
20:cc:21:a1:24:a0:07:bd:9d:3d:a4:fb:88:15:96:
d7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A2:3E:5D:00:97:22:59:0C:F4:9F:93:05:4E:A3:51:F9:D6:84:24
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:0d:05:2e:17:70:b6:1b:31:2e:06:3c:95:6e:84:56:bf:9b:
ed:26:9c:c4:32:e5:08:86:17:8c:a0:b0:e0:ca:76:44:d8:0f:
97:85:f0:99:a0:d3:3d:da:27:2b:5f:e3:9d:69:46:a4:01:9a:
67:16:08:e2:4c:14:3d:62:28:a4:ee:99:b8:76:03:1a:90:cd:
cd:62:7c:4c:31:bb:71:12:90:60:8d:a0:67:47:fb:a8:c6:27:
73:2f:1d:35:24:46:e8:45:9c:01:b7:c4:f6:5d:40:5d:c3:4c:
61:ab:f1:ea:1a:dc:98:8f:71:d3:30:f3:0e:53:a3:f8:c9:d4:
5a:53:b2:c9:9f:14:6f:c6:8e:31:df:b6:4f:63:8c:9b:9c:00:
f9:67:80:89:fb:8c:3b:8f:90:a0:1b:30:60:67:4a:b0:25:8a:
55:8a:cb:96:5c:08:18:b5:7f:41:98:26:3e:1f:80:64:50:f8:
32:c8:ba:38:74:b0:4a:9b:b3:8c:4b:26:73:0b:0a:63:22:5d:
0b:f4:d2:6c:42:ff:28:9a:20:e4:99:43:0f:cb:f7:7e:e0:ef:
45:8d:02:d7:55:35:10:d4:96:b2:6d:6c:a7:e6:79:20:c0:39:
18:3e:2d:36:59:d0:d1:40:1f:0a:d8:76:9c:64:8a:a0:f3:f6:
93:f5:c9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:15 2025 by rpki-client