Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: kgQVlmu7fTH4VClR7lw9JJd89wbnQ1pm1Hjz58sweYc=
Subject key identifier: 1A:BC:AC:CA:E3:8F:CB:07:DC:0A:A8:22:DA:8E:4D:23:D2:D8:56:E2
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 0198D583DC855A2E3976F5BC6D0D9EACA358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 0A32
Signing time: Sat 23 Aug 2025 06:00:45 +0000
Manifest this update: Sat 23 Aug 2025 06:00:45 +0000
Manifest next update: Sun 24 Aug 2025 06:00:45 +0000
Files and hashes: 1: 2z5OP5uOUPeCHEZvOlemyfzgiqA.roa (hash: Hk782ryuX9Xc6GFCRAe62b1gzyY4Vb/jeKK1cnQhmr8=)
2: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: t20YOkGHXeIRQDtKzAacJYSczxI+5a3Xjym6sy6GhqE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:dc:85:5a:2e:39:76:f5:bc:6d:0d:9e:ac:a3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: Aug 23 06:00:45 2025 GMT
Not After : Aug 24 06:00:45 2025 GMT
Subject: CN=1abcaccae38fcb07dc0aa822da8e4d23d2d856e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c0:74:c3:6c:29:28:0c:80:ab:05:5d:23:b4:
62:d0:44:61:0f:aa:93:e4:a5:ae:39:83:9f:40:62:
e6:62:88:ee:17:12:b9:30:52:0d:5c:25:bf:1a:cb:
b0:9a:72:95:0e:17:bf:0f:7a:b7:9b:57:93:6f:7d:
dd:72:48:ff:54:52:bd:16:da:3e:dc:38:09:f0:5e:
29:83:d2:f1:d8:6e:45:69:55:24:d3:a6:b2:ea:3b:
3d:f7:a8:07:f8:1a:cb:98:4a:3b:de:42:f2:92:15:
4f:7f:67:6b:75:ba:cb:ad:18:89:2c:6c:c9:01:d7:
8d:89:83:26:06:f0:a7:28:39:31:01:89:24:64:50:
73:78:66:0b:52:be:3f:7d:4e:4b:56:a1:52:d6:41:
c9:32:3b:a4:e8:2b:ff:f2:ba:64:59:1f:b2:f0:fd:
42:e3:0a:23:77:7f:ff:86:f4:92:60:18:00:1d:e2:
8c:97:9b:21:ec:fd:49:66:26:26:33:f4:32:61:4b:
ec:23:71:7c:81:79:d2:3e:a8:d9:23:6e:ed:e1:dd:
33:84:2b:78:6a:83:cf:dc:bd:e3:93:ea:34:b8:e5:
9a:f9:fb:ba:5b:d7:b3:3e:f5:12:fd:11:df:b1:d6:
2e:2f:bd:4e:9e:6e:ec:16:84:da:8e:0b:bf:c2:7e:
da:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BC:AC:CA:E3:8F:CB:07:DC:0A:A8:22:DA:8E:4D:23:D2:D8:56:E2
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:cb:5a:1d:65:3b:10:df:58:98:5e:c7:75:65:a4:f8:7b:2a:
52:98:1c:cb:69:c9:ac:ab:d3:f3:60:19:8d:07:39:0b:13:1e:
0e:90:59:b6:52:cf:32:6f:75:30:b2:63:90:17:9a:7c:d5:a6:
dc:6f:a6:be:d3:63:ba:1f:25:c6:40:1c:b5:c8:28:79:97:7f:
b0:6b:dd:16:0c:63:18:6e:21:f7:c6:61:e9:b9:67:bb:b9:9a:
72:68:c6:72:a8:8f:40:76:1d:21:ed:23:0b:bc:0b:6d:cf:3e:
76:b2:6b:07:bb:f0:d5:96:65:6f:62:9a:28:89:4b:80:82:48:
1c:2f:6c:c7:71:f9:b4:13:1b:35:17:e2:ff:24:04:d2:aa:35:
e3:98:8f:bf:20:37:44:dc:3f:e9:8a:93:ea:1e:f7:05:c6:6d:
c3:a1:ad:6e:b6:74:2a:e9:2d:66:71:61:94:e1:c2:7f:49:b2:
b0:a3:56:bc:3f:95:35:48:59:2d:a6:1d:01:84:30:f7:6b:ac:
c0:28:b2:ea:2e:80:0c:cd:ad:b4:41:08:8d:0a:48:5a:02:18:
34:f0:48:d0:3f:dc:6d:f1:4e:2c:c2:62:47:f5:7f:57:17:c2:
0a:06:9d:78:3d:de:8a:04:3a:3b:3f:5a:a2:5a:35:a3:49:a1:
ec:15:df:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:52 2025 by rpki-client