Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
File: THGxR-uHN6vMM1-AIJUbJf8mVqY.mft (raw, json)
Hash identifier: VX8je8r6sWFiE5YeMbB6BtSqSElnXY+WK9qJUo0aknc=
Subject key identifier: 7E:F7:F7:D6:67:F4:41:9C:0B:40:86:E4:95:32:C9:CB:DC:3C:26:A9
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 0198D54EAB689D53518C63AEC6C7F98F44D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
Manifest number: 0AE3
Signing time: Sat 23 Aug 2025 05:02:39 +0000
Manifest this update: Sat 23 Aug 2025 05:02:39 +0000
Manifest next update: Sun 24 Aug 2025 05:02:39 +0000
Files and hashes: 1: THGxR-uHN6vMM1-AIJUbJf8mVqY.crl (hash: HW7WT+qjyFvn9G0UErP2g/TO+C2RTaQzqoJ1GaCuHUI=)
2: aZp_-IqiVFoAaaD08gi82AqrlBM.roa (hash: xAjdvDvJZRM8tEfeaFE3V9XsMT9Nsdi0raaN7LzCKfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:ab:68:9d:53:51:8c:63:ae:c6:c7:f9:8f:44:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: Aug 23 05:02:39 2025 GMT
Not After : Aug 24 05:02:39 2025 GMT
Subject: CN=7ef7f7d667f4419c0b4086e49532c9cbdc3c26a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2b:d0:39:3f:c4:3d:97:03:a1:ea:d9:2d:a3:
81:18:41:40:5d:57:7d:f9:52:54:6c:0b:ac:c8:41:
cb:68:7b:95:fd:80:16:73:85:4e:26:d5:b6:67:6b:
fd:b1:94:ac:37:5b:21:9e:14:ce:33:55:05:2a:3c:
26:a1:62:0d:23:03:60:50:65:d1:a8:6b:d2:ef:40:
cb:eb:a0:34:e5:64:f3:98:0f:d3:c4:d6:d8:c5:09:
c6:cc:75:08:cd:98:12:3b:7c:a4:97:a5:b1:6c:6a:
91:37:3f:a9:f5:ab:2f:15:a7:bd:38:25:0e:7b:0c:
07:ea:a9:ca:96:f3:2b:6f:5c:49:34:2c:b5:ab:c8:
45:0d:57:1e:f8:61:c4:b8:11:33:23:32:0d:f5:40:
13:94:00:b4:7f:26:83:f7:f9:e2:27:12:4b:45:70:
63:a0:b6:7b:35:4e:3b:0a:38:74:09:1a:b2:a1:17:
4f:81:c3:85:5b:64:42:a4:89:ae:ca:e8:32:a5:c8:
78:41:81:5e:77:37:06:4c:d5:63:b6:4c:c0:04:7e:
1d:50:8a:3e:c6:f7:6d:d5:2c:31:22:2f:1d:1d:80:
c8:1c:8c:8e:a9:cb:bc:cd:e3:ef:5e:19:f5:59:4e:
7a:82:85:95:e0:5e:a6:33:79:1b:d5:33:d5:92:90:
46:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F7:F7:D6:67:F4:41:9C:0B:40:86:E4:95:32:C9:CB:DC:3C:26:A9
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:38:46:df:21:36:93:56:84:ae:18:6c:fe:07:f5:e6:c2:33:
8f:97:66:99:77:fa:56:be:ee:94:f7:3e:96:6f:83:e2:69:75:
1c:18:a6:c0:76:58:5a:de:73:a3:b1:d5:70:4b:86:a3:aa:be:
33:9a:81:bc:66:f4:95:62:46:ed:ab:80:0e:09:33:2f:f0:88:
69:9f:d0:12:8e:ce:50:da:1e:5d:50:b7:bc:62:b1:e0:d5:30:
73:5f:d3:1d:b5:9f:9f:9e:df:32:3b:8e:7a:7f:71:ea:fc:34:
f3:be:bc:1c:ab:41:c0:08:82:d2:bc:b8:64:9f:d0:66:6e:83:
be:86:e8:6b:45:27:5b:bf:c4:fe:f1:b7:f1:23:7f:19:9e:28:
1b:8f:13:45:96:8a:3c:54:1f:a9:9e:c7:7b:66:d0:8c:d5:5e:
cc:56:cc:a3:13:cc:bf:47:2a:c7:b6:69:13:d9:59:0b:b6:50:
51:16:78:22:b4:1a:b5:66:8b:b1:38:af:54:76:65:c9:bd:62:
f0:63:91:a4:02:5d:35:d3:73:38:99:4f:88:b6:74:38:0a:b5:
49:99:1e:0a:5b:5d:5a:32:65:86:9c:5d:15:4b:9a:e2:a9:29:
9b:50:01:78:6d:d0:b5:56:4a:87:84:8c:a4:d3:3d:71:65:c8:
1b:4b:43:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:57 2025 by rpki-client