Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: nu2lc+07GIEnvtUoYWdzX9J+usd2zh3nwXpNMYxx4IU=
Subject key identifier: 06:48:08:42:4C:DB:2A:02:5A:58:98:C7:3D:68:B1:1B:B9:78:9B:F2
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 0198D70587C513FDB92212ADD0FB37A13826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 08DA
Signing time: Sat 23 Aug 2025 13:02:00 +0000
Manifest this update: Sat 23 Aug 2025 13:02:00 +0000
Manifest next update: Sun 24 Aug 2025 13:02:00 +0000
Files and hashes: 1: 5iC1C_l2xnIVtV_ynL6awoKgYMQ.roa (hash: c0Zm1e9RjgR5PBfasK6Q1TzGKpfYhKyszQz9aW+gUGA=)
2: K2099PO4iAtvBzGlnwl1axWP2hE.roa (hash: 6aTZlr/sfRYyJqs+vE8kRpR5W2QDPbSiPNBoLmmWJlA=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: SvHfPkMhq5Er+wnsAGSx62e+k006jXsdgtmF9yYJVFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:87:c5:13:fd:b9:22:12:ad:d0:fb:37:a1:38:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: Aug 23 13:02:00 2025 GMT
Not After : Aug 24 13:02:00 2025 GMT
Subject: CN=064808424cdb2a025a5898c73d68b11bb9789bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:47:86:b5:78:9a:7c:66:36:8b:ab:6b:ea:91:
7d:ff:99:24:d1:ce:1b:92:12:1f:e0:17:36:9f:92:
10:17:65:12:7d:00:1c:29:4e:0b:97:39:ab:b9:71:
ba:76:7b:0c:ce:38:fd:cf:2e:ae:d4:79:26:38:5f:
f2:9f:ce:72:8d:15:b9:32:92:5e:0e:03:18:e3:2e:
53:70:fe:bd:94:84:13:fe:8c:8f:f8:3c:3c:ba:41:
88:42:6a:a6:64:f6:af:c5:1c:45:2e:82:cf:36:4c:
36:ae:90:86:c7:0f:be:40:a1:1b:2d:ca:1f:d4:44:
36:37:e3:e6:28:de:92:cb:1b:58:5e:6e:55:5f:41:
a1:fa:32:31:53:09:ae:4a:64:ee:ad:dc:81:83:42:
d8:7b:8f:fe:81:6e:b7:cf:2e:39:a1:3c:0d:12:69:
8d:4d:b2:dd:99:8e:99:10:f1:bc:12:41:8c:13:9e:
2c:ae:0f:d3:d5:06:ab:d9:10:54:30:7e:3e:36:9d:
3d:3b:c9:dc:0f:89:87:b2:b3:8e:36:4b:d9:0a:68:
63:57:05:a5:fe:2b:fc:19:cf:15:83:bb:32:ef:63:
df:9e:a4:00:45:46:86:a9:e7:f9:c1:eb:3f:64:68:
cf:bc:da:16:7a:1a:03:75:a3:09:a8:4c:a2:ef:8f:
0c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:48:08:42:4C:DB:2A:02:5A:58:98:C7:3D:68:B1:1B:B9:78:9B:F2
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:a9:9a:95:21:73:ab:99:55:46:87:df:e8:cf:aa:d7:e1:54:
53:32:f8:ff:87:a1:cf:46:af:9a:ac:5d:db:67:5c:c7:55:e0:
bf:09:16:79:10:3c:0c:66:3d:01:d2:ac:35:cf:70:d7:59:b1:
18:2f:54:de:ab:f2:cf:7b:bb:4c:b2:a8:96:6b:f7:2c:43:8b:
46:58:e7:b7:4d:4c:04:fa:fd:b9:44:6d:72:9a:ae:14:d1:08:
1e:e6:80:a9:f1:33:f8:88:90:45:a9:be:82:17:45:79:96:c1:
7a:4b:aa:9f:0f:9d:80:f9:01:b2:93:d9:95:78:4a:da:11:bb:
60:f7:74:46:65:56:e0:83:19:a2:19:53:75:e3:94:5e:42:96:
22:09:66:e6:39:ca:80:9a:9c:0c:77:50:20:29:9c:0c:25:57:
21:d4:eb:77:0c:1d:66:0d:e7:3b:9d:c3:d6:4e:a8:e3:56:e8:
63:98:c6:09:6c:ad:03:af:b6:21:d8:38:d6:50:08:dd:3d:ee:
76:42:94:c1:6a:32:1a:f5:3f:94:6f:1b:c1:6a:4b:d8:fd:10:
dd:46:d8:50:e1:a4:e2:bb:0e:9c:bf:58:51:08:24:e3:67:69:
0c:19:9d:14:e2:60:6d:93:f7:bf:16:21:c9:03:35:ba:4a:6a:
c9:c3:e6:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:32:41 2025 by rpki-client