Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: IuOK5rvEZ7+nrFBoS/wYVaV6zCUktS3xZmUxymS63H8=
Subject key identifier: A0:73:D8:32:79:E3:C0:55:3F:4E:FB:B7:FD:C7:02:6D:C4:E8:0A:11
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 0197B88FE1E58F479888132F576B83C0C640
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 1035
Signing time: Sat 28 Jun 2025 22:02:06 +0000
Manifest this update: Sat 28 Jun 2025 22:02:06 +0000
Manifest next update: Sun 29 Jun 2025 22:02:06 +0000
Files and hashes: 1: CJqITen207ZODHzo1XtCMdI_VBo.roa (hash: f1FWG5pswdJQTpL1NXAace6jGLQD4G1flmSN2+tjCMo=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: FYkiOOJLov8JSpG5FKsXxI7v7Cs+osu1QeFBWF5BLH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 22:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:e1:e5:8f:47:98:88:13:2f:57:6b:83:c0:c6:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: Jun 28 22:02:06 2025 GMT
Not After : Jun 29 22:02:06 2025 GMT
Subject: CN=a073d83279e3c0553f4efbb7fdc7026dc4e80a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:e5:f5:f2:4b:61:10:cb:5a:05:b7:bb:8d:
72:3a:29:7c:8f:e7:f9:20:78:16:04:fc:e9:55:55:
dc:d0:fd:97:19:c4:fa:c9:0b:b9:8e:66:9b:aa:0d:
1c:c4:8f:11:ee:4b:d2:7f:f9:ec:d0:d9:1f:f6:50:
9f:3c:09:51:3a:2a:f5:61:68:ba:1a:0d:02:c2:5f:
d3:f0:70:74:07:ce:f7:34:d5:02:75:fa:9a:51:ce:
a0:cf:b5:e3:29:d5:65:98:5a:01:13:2a:e2:bb:de:
44:ac:99:31:48:a7:42:1f:67:8f:c0:e8:f7:88:f0:
7b:57:fc:1d:bd:31:63:49:b0:c1:c9:12:14:b4:b4:
b8:35:f8:b8:43:e5:1c:fc:01:a5:2e:c6:49:96:7d:
cc:e6:cc:88:ed:d2:9b:d1:b6:f7:49:3f:f3:f3:c2:
ed:01:33:9f:60:e8:4d:8f:3e:f4:15:bc:17:20:d1:
49:ba:d1:3c:ba:55:6c:45:df:35:93:b7:36:10:83:
37:e5:70:b0:8f:5a:0d:28:7f:94:f0:fe:60:23:cf:
f0:64:7b:51:0d:ca:4b:ff:27:22:05:7e:b1:58:d3:
e6:25:9f:18:e6:69:56:a5:86:9e:e9:6c:f8:36:00:
3c:79:93:9b:1c:5a:be:ba:7c:6e:2d:62:5d:0b:0f:
62:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:73:D8:32:79:E3:C0:55:3F:4E:FB:B7:FD:C7:02:6D:C4:E8:0A:11
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:74:73:7d:2a:7f:9e:2c:04:d3:37:ac:52:a4:79:64:11:82:
90:0a:a8:25:a2:74:ef:d9:d0:0b:42:6b:c5:e6:9e:58:b4:42:
97:55:6c:ad:12:23:96:fc:57:fd:29:aa:17:fe:22:30:4f:a7:
12:ac:be:68:7f:0e:d4:94:e6:e3:60:d7:72:71:dd:a2:eb:02:
39:86:32:73:7c:60:25:f2:a7:8b:55:96:46:89:b7:6f:00:38:
80:1f:e4:e7:f7:ca:1d:17:73:62:67:a1:31:36:ce:b5:6f:ed:
8d:4e:a5:bb:42:84:7d:94:b3:07:7d:7a:27:85:3a:a4:64:26:
e2:1a:7a:0e:a2:83:2e:dc:5d:7a:ae:31:c0:a9:c6:50:b6:36:
90:bd:ad:be:80:57:4b:0d:93:f8:17:5c:64:12:d8:d5:c1:04:
36:d3:dd:a1:7b:72:de:58:aa:ae:2f:8c:f6:f1:33:93:9b:bd:
a8:96:94:d7:8e:e3:c6:67:ae:3b:85:29:72:90:f4:d4:19:ec:
45:1e:52:0c:99:71:5e:10:7e:db:8d:24:fe:25:ab:e8:72:4c:
56:f7:83:c1:7c:85:56:06:ee:9e:af:db:75:7a:dd:20:21:2d:
e0:80:fe:f0:a7:b8:56:01:c1:67:2a:83:2f:52:a6:2b:17:e6:
15:29:aa:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:05:23 2025 by rpki-client