Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: 0EmW6XJ2P1Y6NyjIehdIIovfwY8x1pN3WpYriF4np1s=
Subject key identifier: 80:8B:0A:65:9F:CD:F5:F5:32:04:F8:58:29:0A:F0:93:95:D0:73:0F
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 0198D4E0E9AB1071E1355021555577A479F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 1654
Signing time: Sat 23 Aug 2025 03:02:46 +0000
Manifest this update: Sat 23 Aug 2025 03:02:46 +0000
Manifest next update: Sun 24 Aug 2025 03:02:46 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: 9pnzkGSF1x/MEStymoiV4PbEO+w9s57a446uRrcH1GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:e9:ab:10:71:e1:35:50:21:55:55:77:a4:79:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Aug 23 03:02:46 2025 GMT
Not After : Aug 24 03:02:46 2025 GMT
Subject: CN=808b0a659fcdf5f53204f858290af09395d0730f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1c:de:75:29:aa:6e:41:29:48:94:8b:1d:f9:
cc:01:1c:d1:20:d2:7c:ac:41:d9:e7:78:24:fc:34:
85:d2:ea:a0:a6:e0:8d:3b:91:6c:3b:5c:08:59:de:
05:4a:0a:74:c5:73:52:89:d3:0b:6a:91:bf:b0:e1:
f9:75:39:1c:5e:ef:f0:dd:4e:3a:83:dd:ec:93:17:
d3:40:6c:82:1f:d2:4d:ed:dd:d5:a5:be:b9:05:ef:
9c:11:42:36:2a:3a:2e:a5:d4:91:6e:a3:da:96:0c:
b3:0f:e4:ed:74:e6:4f:88:1c:73:ca:53:0e:d7:8e:
cc:94:4f:bd:6e:a5:ce:53:02:3f:c8:e4:e0:83:75:
10:08:56:91:bb:ff:0a:78:52:e9:61:5c:e5:14:53:
0c:f5:c0:d8:1f:8b:62:12:3b:d6:37:51:71:08:34:
42:17:0c:bd:14:3e:7d:36:e6:b9:f2:c0:6b:d0:7a:
49:aa:9c:1a:dd:74:fb:9d:44:19:cd:5f:d5:76:9d:
2c:7c:1b:02:f7:8c:2e:1e:b4:b5:2a:d4:ab:82:86:
5e:c5:cd:57:d5:d2:7a:9a:e1:b1:38:86:ff:76:a8:
b8:9e:94:ae:fe:62:eb:e7:96:de:39:a9:67:bf:ff:
0f:59:53:01:5e:52:ac:65:fc:0a:2f:c2:9f:30:1a:
18:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8B:0A:65:9F:CD:F5:F5:32:04:F8:58:29:0A:F0:93:95:D0:73:0F
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:50:66:93:8f:bb:9f:62:65:7f:fb:fb:32:ad:b5:f1:5e:c7:
c8:7e:3f:0f:fc:f9:66:dc:c8:f9:85:c7:c9:b6:50:0e:31:2b:
8f:97:6f:89:8b:5e:a3:2c:d5:57:cc:9e:a2:02:a0:9d:da:fb:
01:86:e9:82:fb:dc:18:e0:b4:9a:eb:10:b7:3b:7c:4f:ce:28:
2d:58:71:71:88:2d:90:17:2f:32:e8:ba:34:87:75:9c:91:d6:
46:cc:df:9f:53:a6:6d:76:cb:e7:eb:f7:05:2d:41:7a:af:bf:
50:f2:3c:07:9c:9f:36:44:c9:8a:e6:81:ac:eb:a8:e8:1b:91:
e3:53:20:07:c9:32:6e:4b:77:3a:88:24:c5:56:58:ce:05:7b:
ec:35:8b:93:79:2f:35:ce:d8:73:ff:33:8f:c9:5b:17:1d:80:
51:4f:15:75:a0:cc:7d:76:6e:bf:84:3b:cc:8c:da:87:62:0e:
84:24:76:01:47:9a:fb:82:67:80:c7:fb:30:63:c6:23:9f:f4:
b7:2d:d1:f9:5e:cb:0b:c5:26:7a:c5:54:15:ed:8e:a1:70:36:
45:29:41:6b:ce:1e:01:db:c0:a8:b4:b7:d5:b8:a4:ea:1b:ee:
87:0c:c6:2d:27:3e:b7:b5:e2:f4:85:97:d6:52:47:e4:cb:6a:
b5:f6:7e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:52:16 2025 by rpki-client