Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json)
Hash identifier: OVwZZ9i3LK+zXB++evjCLRs+Vpk36j5zW+wSSQExD2A=
Subject key identifier: 3E:5D:C6:8B:B6:C3:89:9F:EC:07:2C:F8:1E:48:8D:93:91:E5:9D:61
Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a
Certificate serial: 0198D473CE523FD77829588E43B149A289F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
Manifest number: 1644
Signing time: Sat 23 Aug 2025 01:03:35 +0000
Manifest this update: Sat 23 Aug 2025 01:03:35 +0000
Manifest next update: Sun 24 Aug 2025 01:03:35 +0000
Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: 1iM/CXee3te6O4YChrLfs+gbmgcC2X0drnAMKrRoJjg=)
2: yhhMqOayivlP0HqWgBqkxI1f14U.roa (hash: w/NNRo63VlTAmPeepIG4fNxKMWjZVte8F0Xs65Wc7u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:ce:52:3f:d7:78:29:58:8e:43:b1:49:a2:89:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a
Validity
Not Before: Aug 23 01:03:35 2025 GMT
Not After : Aug 24 01:03:35 2025 GMT
Subject: CN=3e5dc68bb6c3899fec072cf81e488d9391e59d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:87:86:a3:b8:a0:3b:b7:b1:0b:1a:96:60:a2:
7c:ed:38:fb:4b:01:f8:2d:9f:f1:8f:46:a9:20:b1:
e9:52:67:a2:fb:00:e4:81:62:7d:d5:75:26:ed:f7:
45:b4:8d:9a:29:3b:7b:dd:94:ff:36:02:c3:62:a7:
ca:df:6e:9f:b9:25:28:df:b3:30:8a:76:54:29:e0:
f5:00:87:97:e8:9d:34:58:f5:45:af:aa:53:c2:7f:
0e:ca:ec:e7:3d:8d:69:3e:20:97:d9:61:e7:53:b1:
0d:0a:e1:9e:dd:fc:d4:d6:93:03:e8:03:dd:95:50:
cf:0c:fb:43:62:8a:ef:b5:55:53:79:54:c5:f3:1f:
9e:41:20:a4:ca:b6:ee:bf:ef:58:33:23:75:48:dd:
32:98:07:f7:af:61:f5:28:85:19:43:ac:9e:67:16:
7f:7e:61:18:e1:62:e6:d7:ee:9e:44:eb:87:ca:cf:
99:52:51:33:86:79:e8:80:7d:54:f9:be:1c:0a:c9:
85:a2:da:cb:16:70:db:03:53:64:5e:3b:59:4b:71:
93:62:27:98:37:77:5a:6e:cc:e3:7f:9a:76:52:5f:
1d:76:fd:7f:ff:5c:45:4c:2d:9e:0a:ab:96:00:5f:
06:b3:d3:f1:dd:cd:72:68:ba:a5:32:f1:e1:7e:f6:
2a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5D:C6:8B:B6:C3:89:9F:EC:07:2C:F8:1E:48:8D:93:91:E5:9D:61
X509v3 Authority Key Identifier:
keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:d7:93:e8:59:b1:27:ac:2d:be:0b:b5:f5:32:16:d5:5b:43:
87:37:35:d4:87:37:fa:e4:96:24:1e:c6:10:c2:a0:8f:ae:13:
03:7c:33:67:ab:9a:e4:f6:e0:47:74:a6:71:2a:28:48:26:bd:
f1:54:1e:b5:84:db:56:de:2d:30:5a:40:4e:8b:66:db:13:d3:
0d:24:b4:a0:d0:21:a4:c6:ac:1c:c0:85:05:a3:4f:68:97:cc:
8d:19:a3:56:0b:ba:4d:e0:4d:42:e0:22:3a:9d:64:5c:91:81:
77:73:0b:cc:4a:9b:3e:0c:27:d2:6c:92:50:a8:9e:c6:97:5a:
9f:d2:f3:87:1b:e0:4b:31:2a:83:43:ec:72:46:88:f4:6c:2e:
b8:67:c9:62:f9:69:3e:21:34:51:83:b2:d2:e5:1d:3b:6d:91:
c0:72:69:f5:e1:87:a4:8b:04:f7:07:3f:e1:82:73:d1:55:0c:
69:b4:54:65:9a:90:98:89:1c:38:7d:2f:4d:54:2a:e4:18:26:
ca:ec:35:b8:31:c7:a7:d5:4b:47:1b:38:70:ec:ea:eb:c7:e2:
37:c1:85:79:25:4e:86:91:9f:39:bf:cf:f9:15:3e:4f:15:ba:
ab:13:1a:8f:cd:04:6e:47:14:3a:cf:9f:2b:fd:83:77:56:ce:
f0:5f:b5:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:56 2025 by rpki-client