Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: SLOaKVhLisT1Q6jNiEvTA5XMjZxHMaZZFwHBDb8UPxA=
Subject key identifier: 1F:DF:D2:70:6D:84:F7:54:60:5F:6B:23:DA:96:4C:29:20:8B:00:C8
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 0198D54E1165767D498084CE3FDD6FA04405
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 02E5
Signing time: Sat 23 Aug 2025 05:01:59 +0000
Manifest this update: Sat 23 Aug 2025 05:01:59 +0000
Manifest next update: Sun 24 Aug 2025 05:01:59 +0000
Files and hashes: 1: XQhGXNLWNfcx8qTRL0NifXvVWoo.roa (hash: DIa3SB+1p0iRvRz10kAY5XHHNPz0YIKVDN13uXTrSK8=)
2: c4kqcT1XSHJJ0FNREY_3KgQV5Zg.roa (hash: BFqJRUOC40P0vfCEnDcc5S1ZBpr8qXlnCPbjKvFWFf8=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: rKX+D+isUznPAvmSREZ1AIAE+fEg/2IOBIO0VZgWiHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:11:65:76:7d:49:80:84:ce:3f:dd:6f:a0:44:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Aug 23 05:01:59 2025 GMT
Not After : Aug 24 05:01:59 2025 GMT
Subject: CN=1fdfd2706d84f754605f6b23da964c29208b00c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:fd:49:47:c1:a0:cd:86:b7:d6:f2:fd:70:ea:
0e:d0:eb:47:d4:0b:e3:25:3f:ba:7b:59:98:cf:6b:
5b:8b:35:4f:ad:ae:c1:23:fb:65:2b:b7:fb:64:ab:
a8:11:06:a0:2a:4a:27:de:eb:4b:db:66:f5:5e:8b:
42:23:9b:c2:1a:ed:b3:df:8c:99:0f:50:ae:cc:00:
49:4b:4c:03:2d:a1:9a:c6:8f:ef:ed:35:9d:98:24:
f5:68:99:a9:4a:d7:0f:99:40:e8:19:4e:ce:c1:89:
74:47:52:d9:da:3a:ba:ed:48:de:9b:21:e8:4e:12:
b1:77:c9:f6:fa:b1:9c:93:02:66:9b:d4:c5:2f:c2:
b9:f5:ef:47:88:ed:ba:4f:c7:5c:fe:4c:45:42:bc:
95:4f:c4:57:94:e7:df:4a:54:91:f0:83:d3:85:cd:
8a:5d:eb:0d:6c:27:57:76:10:9b:9a:90:9c:d0:8d:
71:c9:63:f2:ff:ec:ab:58:af:93:e0:1e:33:bd:98:
e0:0e:d2:2d:42:b8:38:9a:44:eb:a0:93:5e:db:00:
51:80:54:7f:69:23:55:00:39:5b:e4:b5:f3:95:ee:
5c:9b:8f:d0:42:9d:15:71:30:93:0c:45:da:58:ee:
a3:62:54:e5:e8:3f:e5:bf:14:08:e3:74:e5:9f:ba:
ea:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DF:D2:70:6D:84:F7:54:60:5F:6B:23:DA:96:4C:29:20:8B:00:C8
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:4e:40:4d:01:96:a2:ca:d5:7a:9e:91:6e:f1:16:01:1b:8f:
d1:22:a4:7b:ac:b3:11:b5:1d:b5:25:f7:4a:26:9b:0c:85:0f:
42:40:2a:2d:ab:3b:53:0c:e9:85:39:49:9a:ba:24:3f:44:d5:
a3:c0:6d:2a:11:25:e7:04:1a:67:cf:5e:07:14:2f:fd:9a:62:
43:ea:2c:08:2a:27:68:a2:b0:b5:f4:c6:3b:7d:a7:3a:8a:fb:
75:6d:62:2c:08:04:ef:a7:bd:d3:eb:14:4c:e9:a8:2c:a0:4f:
a7:c8:54:9f:7a:48:99:b6:00:c2:71:66:34:dd:29:81:68:8d:
07:65:68:fa:be:4c:b4:a2:1f:46:19:bb:0b:dc:2a:fc:00:d3:
2a:c1:ad:7b:df:dc:41:89:63:7c:dc:dd:c6:aa:3f:19:41:43:
13:e5:f8:84:87:14:47:90:ad:07:1c:8c:38:f8:0d:1e:04:0f:
3e:c7:24:90:30:48:ab:8c:e1:c4:c2:ba:0e:8c:60:89:d5:9f:
c1:6e:47:5c:5b:e2:15:5a:79:1a:7e:91:cd:ea:eb:ee:ba:21:
80:5a:c6:ed:29:28:76:20:98:17:70:b8:43:51:e2:d0:7f:7e:
fe:dd:91:0e:00:e8:15:75:da:39:9b:ca:95:2b:c6:1e:94:b4:
a1:99:7e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:58:49 2025 by rpki-client