Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: jno7QE24blIU21084hwF/8ElL8pfvOskcDm89Payb4s=
Subject key identifier: CE:F5:16:14:3D:8A:5F:D0:47:DA:3C:0D:69:26:09:68:E3:74:C7:B2
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 0198D5161B3E9852E51BDC44D36A63EFBD07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 04:00:52 +0000
Manifest this update: Sat 23 Aug 2025 04:00:52 +0000
Manifest next update: Sun 24 Aug 2025 04:00:52 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: axY2td0flZbysITZJPOHHOlYFxnLyczTxjLeUiG1Sb8=)
2: zYnN-i8U1PX-vVy0Kko-kLxeBsU.roa (hash: SDcPgjrr8y9zPr3/XTNgtJ+0oZH17N4IYV4VzMId4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:1b:3e:98:52:e5:1b:dc:44:d3:6a:63:ef:bd:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Aug 23 04:00:52 2025 GMT
Not After : Aug 24 04:00:52 2025 GMT
Subject: CN=cef516143d8a5fd047da3c0d69260968e374c7b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7e:1a:cb:44:3a:9e:73:c3:9e:89:74:6f:f2:
a2:7a:31:70:db:10:4a:25:9f:cd:8e:4d:ca:b8:90:
56:bb:6b:ba:74:d6:27:bc:5d:e3:2e:9b:6d:80:5d:
9e:93:c9:e6:e1:5b:6d:ae:63:6b:9e:a9:48:97:12:
7f:2e:48:64:eb:fb:cb:28:b5:56:e8:bd:14:b3:2c:
01:86:ec:8d:87:2d:23:7f:03:09:55:7d:c5:68:af:
07:59:22:18:75:fd:65:f1:50:e0:6f:2c:16:2e:02:
dd:20:93:c8:89:63:d7:a1:e4:ea:d8:59:f2:4e:b2:
f4:d1:ef:7d:10:42:e8:3b:83:ba:03:aa:13:5b:94:
1b:d3:2e:ad:21:f4:59:53:9f:06:b6:a4:e5:bc:a5:
aa:32:f3:2e:69:16:da:0f:d5:8e:77:17:67:d1:8d:
f9:aa:1f:2a:d0:7b:d7:77:21:c5:3c:2c:45:2a:63:
04:b2:d0:fc:61:de:d1:3f:60:b5:fe:5b:5c:82:39:
dc:ea:56:c9:d6:40:9e:05:ae:74:1e:6d:76:8c:82:
5e:08:e6:0e:83:b8:ab:1b:83:5b:2e:6c:fc:7b:1d:
3a:bc:43:d1:26:ee:f0:90:a7:25:9f:00:73:e9:db:
cd:a6:91:ec:28:39:61:b9:ae:3b:0b:ec:2a:c7:b8:
43:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F5:16:14:3D:8A:5F:D0:47:DA:3C:0D:69:26:09:68:E3:74:C7:B2
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:f3:98:b1:69:07:8c:a7:ee:c6:75:c9:5c:19:08:c3:90:b3:
cd:e3:68:c2:7f:17:57:58:55:bf:cf:24:ff:02:76:44:62:12:
09:cd:c5:fe:fc:b6:f0:43:e6:ac:db:ea:30:7a:e3:46:68:3c:
a9:e1:e9:ed:50:a6:0e:d3:6b:a8:2e:0c:3a:f3:dd:1b:7c:c3:
04:58:d2:42:62:c8:d1:e8:5a:9e:b9:64:d9:2b:83:ed:6b:66:
7e:d4:79:a9:e2:b0:20:c9:ea:4c:41:3a:c8:f6:8d:c3:a6:50:
85:06:f6:78:68:d2:b9:98:69:fd:ba:85:24:2d:3b:34:98:39:
bd:b4:a8:4c:02:c0:4a:ee:ee:7f:c7:f2:5d:38:9f:86:e0:a4:
52:07:a4:14:d8:0f:a2:80:83:26:84:c3:97:65:59:b4:a4:6c:
a4:f3:a1:ec:78:c8:21:48:81:5a:32:5b:12:2d:e9:e6:3a:96:
1e:a7:bd:21:b7:b9:14:42:9c:0a:ca:d4:b5:61:9f:b5:fe:bf:
f5:b4:e1:28:f2:66:54:b0:a1:bb:14:1c:67:46:03:db:e2:1e:
90:d2:fd:93:04:eb:e0:1a:05:c7:a1:62:0e:92:2b:fd:ae:87:
4a:a4:c0:71:99:c1:64:75:8b:9b:73:57:8f:3a:9f:17:02:52:
29:c9:cc:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:16:19 2025 by rpki-client