Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: lqg4eUX6DAeu80zptN+p7i3CS7vfyIGEeMKITmfTugM=
Subject key identifier: F8:65:FE:C4:85:D2:AB:42:C6:53:02:B2:AD:6F:BC:BD:85:AE:7F:E5
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 0198D473F73B698B2F20E9EE1E191A130CB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 164D
Signing time: Sat 23 Aug 2025 01:03:46 +0000
Manifest this update: Sat 23 Aug 2025 01:03:46 +0000
Manifest next update: Sun 24 Aug 2025 01:03:46 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: KbxF/YK8EqSIi+3WRiUTCsSXlLkNbwAtbD8ph9ODAjk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:f7:3b:69:8b:2f:20:e9:ee:1e:19:1a:13:0c:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Aug 23 01:03:46 2025 GMT
Not After : Aug 24 01:03:46 2025 GMT
Subject: CN=f865fec485d2ab42c65302b2ad6fbcbd85ae7fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:02:a3:71:82:d1:d6:7b:40:61:57:72:44:
d1:c0:eb:3b:c3:91:1e:15:d6:9e:e5:84:0b:d4:75:
3b:08:83:aa:92:fb:64:fa:9c:3c:57:09:8b:41:fd:
7d:a3:5c:1a:0c:9a:89:a0:9d:56:a9:95:2a:fc:94:
5f:04:98:26:4c:75:26:e4:62:63:74:56:1f:b1:ee:
2c:1f:b3:6d:88:08:39:8b:3a:73:29:29:c7:e2:49:
7f:05:29:28:79:d6:05:88:de:3a:c1:ca:b9:10:f1:
bd:f6:5b:12:7f:9e:c0:56:b7:b2:5b:7b:f5:a4:a1:
7f:40:bb:cf:a3:cf:1b:b0:97:7b:1f:dd:1a:f4:e6:
36:2f:42:83:ac:2a:9f:6f:f1:84:d7:db:39:0e:d3:
e2:ed:0e:a3:f1:db:21:a8:f3:bc:8d:45:ec:9b:28:
b8:17:1b:e3:5c:91:b4:d4:9c:a0:4f:a1:c0:af:dc:
cd:aa:44:2d:48:25:9f:05:6f:71:60:04:ec:2b:ea:
fa:fc:7e:51:a8:02:7a:8d:26:43:ac:ba:4d:c1:e8:
65:9f:d2:26:96:4a:1f:75:34:e8:a5:2e:88:4d:15:
5f:85:5a:1e:89:09:85:f8:43:b3:da:39:d8:ca:c8:
84:02:45:55:0f:6e:7b:d8:98:d4:b7:4a:5f:14:62:
31:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:65:FE:C4:85:D2:AB:42:C6:53:02:B2:AD:6F:BC:BD:85:AE:7F:E5
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:6a:31:19:69:f3:2b:76:8d:0c:37:3c:75:65:80:35:29:2a:
e3:e9:09:23:27:f9:a0:57:b2:72:2c:d7:6e:c2:cb:6e:05:d0:
a6:47:62:8e:3c:76:3f:df:07:a9:ad:36:5a:d0:1b:c1:6f:89:
d0:0b:bd:18:a9:2e:94:44:61:7f:c3:d9:db:89:a0:0f:47:7b:
1f:b6:19:b9:23:16:b9:7d:06:3f:cf:f7:e8:38:26:7e:c7:f4:
92:2b:c0:3c:8c:9e:e2:29:c1:1c:02:e8:f2:e8:53:13:e8:96:
d1:79:1f:a3:9a:c3:bb:ed:2b:f9:3c:6e:29:42:fa:5f:27:d9:
71:ed:ba:68:7e:ee:3b:c8:35:98:71:08:ab:b6:e9:96:0d:8b:
bf:fb:95:e2:15:da:3e:90:18:9c:f8:be:0d:f1:cb:c8:4e:92:
3f:ed:62:3d:32:36:ab:42:b7:cf:63:3c:05:c7:71:dc:96:b4:
9c:6e:9e:6e:c6:83:10:d1:9e:69:b4:52:54:62:c0:06:6f:af:
85:31:1c:28:83:33:e0:a1:53:f5:36:aa:0f:26:0c:f9:b5:29:
04:36:28:14:b4:a2:c0:ed:80:fe:95:4c:39:71:e2:78:96:ba:
45:9e:f7:43:43:96:e6:f5:8c:7f:12:e1:8d:52:0c:d4:b1:70:
47:6f:64:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:31:04 2025 by rpki-client