Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json)
Hash identifier: AY5ozH3sKwTc6G+M8dTz4m1Z2mZcAsyqHxGYETsCF7s=
Subject key identifier: 9F:B8:F0:8F:94:71:92:CE:D8:8E:2D:A4:B4:3A:50:1F:16:5E:BA:75
Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Certificate serial: 0198D5836A757E0E8C23C4760D5CBB2E1D4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
Manifest number: 026C
Signing time: Sat 23 Aug 2025 06:00:16 +0000
Manifest this update: Sat 23 Aug 2025 06:00:16 +0000
Manifest next update: Sun 24 Aug 2025 06:00:16 +0000
Files and hashes: 1: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: Nr1x4wcU/0E8B8JtDzTlsKyfmMjKb6u/fTWJXd0p5fk=)
2: uLnIOwRkGxrsBbDo0gQE4-hCZ48.roa (hash: s37fBcagBo3TMxYLMpYCF62YuISi5XxqQMy7wxYlEsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:6a:75:7e:0e:8c:23:c4:76:0d:5c:bb:2e:1d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Validity
Not Before: Aug 23 06:00:16 2025 GMT
Not After : Aug 24 06:00:16 2025 GMT
Subject: CN=9fb8f08f947192ced88e2da4b43a501f165eba75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:63:4d:b9:f7:8f:57:66:52:cd:58:91:0a:be:
be:87:f6:1f:fa:09:55:16:0d:2f:a1:a3:9e:25:5a:
3a:6a:ba:70:de:1b:3f:f8:72:91:21:3e:b2:60:ee:
ce:b2:14:12:49:70:42:60:e3:41:a7:74:7b:62:b2:
71:cd:71:21:33:80:e3:39:c5:b5:4e:86:70:d7:a8:
69:9a:7b:24:8b:7b:4d:a3:03:28:72:ef:e3:fd:22:
85:ab:58:f6:81:ae:5a:c2:cd:04:a0:aa:a2:3c:97:
ef:6a:f7:b4:f3:25:73:0b:37:df:a9:e2:83:32:a8:
02:b7:44:f5:4e:d3:a1:1f:82:04:37:ab:5c:f6:c1:
23:15:11:61:17:b2:6e:a4:86:57:88:f7:66:76:6d:
3f:bd:be:23:d1:9f:b7:0a:b2:c5:60:90:e9:91:ef:
fb:58:d3:22:a5:88:3d:f3:5d:12:a5:3c:6a:b2:b5:
b4:67:0e:f7:ab:2d:69:c7:34:11:ce:ae:0b:29:14:
82:15:d1:6c:53:3b:78:40:da:5f:8e:16:d1:e7:db:
03:74:c0:9c:8c:32:0c:44:8c:d6:89:03:9a:f8:4e:
4d:bb:dd:a0:e0:8b:9d:c7:ca:d4:8c:1b:60:28:d8:
5f:fd:f5:1e:11:6e:ab:79:02:56:5b:df:7e:76:82:
8c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B8:F0:8F:94:71:92:CE:D8:8E:2D:A4:B4:3A:50:1F:16:5E:BA:75
X509v3 Authority Key Identifier:
keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:8c:55:27:4e:72:c5:0d:d2:ba:1c:31:3a:6f:72:36:0f:eb:
ac:06:f8:79:44:6a:79:4b:03:9a:54:99:67:30:55:df:e8:f3:
73:f1:ca:7b:ab:bf:0d:a8:cc:bd:42:be:d8:fc:5a:79:32:3c:
e4:21:96:da:a0:96:fa:04:61:3f:6c:33:4c:7a:65:1d:88:e6:
53:c6:2a:f9:0e:a2:3d:b8:a4:fe:59:4e:e4:63:b1:29:88:03:
20:17:10:72:6b:f7:74:25:18:b6:df:8a:fb:de:80:75:b0:e3:
0e:e1:2a:ce:4e:a1:06:09:fd:81:35:bd:17:5f:c6:6a:10:97:
24:a3:b9:56:8c:b1:cd:3e:27:b2:00:d4:a3:66:82:24:b1:26:
4d:e9:c7:ec:3e:15:b6:9e:72:d3:f4:bb:c1:59:ef:1a:d5:0b:
a5:21:59:c2:b2:3a:4f:84:22:4c:c3:5b:0c:3d:c3:0e:c8:87:
a4:e8:43:99:0f:8a:01:a4:20:1f:ca:32:8a:d4:69:31:20:70:
32:c1:85:cf:00:33:af:24:00:6a:4e:7e:4c:ef:a5:99:70:28:
b1:b4:07:3c:1e:91:86:6e:39:df:8b:0f:56:0b:5e:f1:80:f6:
a0:7f:f9:70:05:c7:02:a6:f3:8e:2f:1d:63:40:12:a7:c9:d3:
68:0b:14:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:29:47 2025 by rpki-client