Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: Tdp1jO8n6Fd7IF6zLz2WIWw+EK3H9o7dPFtL4tODavw=
Subject key identifier: 3E:5A:44:39:C6:4E:80:B0:8B:B2:FC:5E:6C:4B:E6:AE:A6:41:B5:4C
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 0198D4E05075DF470F83C383A125DD06AF47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 03:02:07 +0000
Manifest this update: Sat 23 Aug 2025 03:02:07 +0000
Manifest next update: Sun 24 Aug 2025 03:02:07 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: yAyLNzhBWNbNTGu1zpRBHSOdZe6PV5RsSgaR7nPe0lE=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:50:75:df:47:0f:83:c3:83:a1:25:dd:06:af:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Aug 23 03:02:07 2025 GMT
Not After : Aug 24 03:02:07 2025 GMT
Subject: CN=3e5a4439c64e80b08bb2fc5e6c4be6aea641b54c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:52:c0:79:07:fc:0f:3d:ed:b5:94:98:55:0c:
5f:72:5c:ea:ea:b9:19:7c:a2:36:be:07:2a:dc:57:
a9:c1:b8:bd:c6:a8:b3:f4:aa:de:27:33:33:e2:07:
f3:a9:79:f8:e1:cb:be:c7:eb:7c:dc:39:02:7c:a1:
da:6b:52:18:fe:11:e4:9e:51:f3:e6:a4:83:39:e8:
bf:02:d4:77:2a:6e:66:6f:db:04:0e:e3:62:e7:f5:
ca:e1:4a:21:ef:9c:33:e9:0d:ea:a0:76:3c:1c:37:
49:e9:a2:90:bc:76:f5:fb:76:61:5e:75:e0:14:c9:
21:51:c1:7c:bc:46:b8:a8:0b:bb:74:da:ec:19:8a:
2a:f7:c9:4e:3b:6b:9e:83:23:80:7f:4f:fe:49:e8:
97:6c:f6:e4:1e:e0:8a:52:f7:19:10:cd:6f:47:96:
78:32:14:83:ac:4e:39:28:8f:57:73:7e:8b:16:37:
36:b8:12:b7:67:8a:4b:32:ed:dd:bc:2a:2f:65:74:
87:1a:53:28:a5:83:38:1b:fd:5d:9f:a3:88:c7:36:
c6:a7:79:fa:1b:31:69:b9:9f:32:85:60:98:2b:ea:
54:6e:bc:39:5e:e7:bf:eb:ab:eb:0f:69:47:d3:53:
79:3a:a4:ac:f4:78:21:08:56:3d:94:5c:05:27:38:
65:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5A:44:39:C6:4E:80:B0:8B:B2:FC:5E:6C:4B:E6:AE:A6:41:B5:4C
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:38:69:c0:2f:16:36:11:32:42:c5:ae:8d:0e:34:99:0a:07:
b5:23:e5:5e:6e:06:cf:81:62:41:6c:23:ce:f3:a5:c9:ec:61:
64:40:6d:29:de:78:62:73:a6:30:e4:30:c6:6c:40:a1:50:9c:
c3:c5:28:0d:ec:8e:0c:27:34:c9:f5:aa:20:8e:33:e5:12:3a:
1b:2d:34:51:1d:c4:9c:80:0f:f1:94:57:2b:b5:09:a2:69:2f:
e9:1f:61:c3:0e:7d:94:6b:43:b0:db:da:e8:be:b9:14:a6:df:
de:92:b3:fc:21:0b:2c:2a:42:6b:e0:45:bd:4b:af:68:60:46:
0a:e2:58:34:18:3f:f0:60:67:7c:d2:33:1e:e4:ef:ba:c9:7b:
04:05:05:b3:83:4a:65:f4:fe:72:12:79:2d:d7:ae:f9:fc:b5:
dd:e3:b2:5b:18:b7:2c:20:8a:72:3b:22:d1:a0:a8:a4:0a:d4:
ad:3a:6f:95:87:3f:7d:37:b2:73:23:4e:3c:eb:ca:fc:ac:e5:
09:4a:93:64:53:c6:10:c3:02:77:22:78:e3:fd:cd:30:33:96:
b3:9c:9e:0a:78:cc:a9:6a:56:90:3f:d8:a1:56:24:11:c8:1f:
ff:a2:57:80:c6:e5:aa:8a:66:e7:81:6c:91:4d:66:e0:18:aa:
b4:77:9b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:15 2025 by rpki-client