Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: LQTMZ0WJnkX8A0rsD0uTzpCJQt/QNkwoO4pd86egFjk=
Subject key identifier: C1:50:5E:82:24:43:9F:66:1C:93:38:7A:D4:23:34:02:EB:37:F6:68
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 0198D6608BB025952DE6ED4B624CF0336F40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 10C9
Signing time: Sat 23 Aug 2025 10:01:48 +0000
Manifest this update: Sat 23 Aug 2025 10:01:48 +0000
Manifest next update: Sun 24 Aug 2025 10:01:48 +0000
Files and hashes: 1: CJqITen207ZODHzo1XtCMdI_VBo.roa (hash: f1FWG5pswdJQTpL1NXAace6jGLQD4G1flmSN2+tjCMo=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: vOTRnAudzFSTZJHtP0rW2+iJwjRC4q1QQI1s3EZApGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:8b:b0:25:95:2d:e6:ed:4b:62:4c:f0:33:6f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: Aug 23 10:01:48 2025 GMT
Not After : Aug 24 10:01:48 2025 GMT
Subject: CN=c1505e8224439f661c93387ad4233402eb37f668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:59:23:ac:fb:c3:d6:74:b4:ce:49:30:66:1d:
61:71:b0:9a:9e:8e:d9:4c:45:d0:f7:5e:26:cb:8b:
28:63:18:8c:41:00:5f:91:e9:ec:5e:0f:cf:3a:b4:
f3:57:8a:ec:8e:04:42:79:f8:b9:68:10:f7:43:f2:
67:f0:56:2d:9c:b8:d6:c2:32:21:af:3d:8d:81:e8:
e6:dd:8f:57:e7:a4:f7:b3:b4:df:f2:34:b7:9a:58:
d0:fa:3f:b0:b0:e0:d7:36:5b:d8:ee:02:15:e4:09:
81:54:d0:aa:fd:59:0d:3f:4f:43:08:e9:20:a8:24:
d8:6b:26:73:4b:49:a5:82:f3:2e:2f:01:05:bc:46:
10:01:b0:48:98:3b:3c:9e:44:f0:08:b1:d8:70:a2:
95:6d:e1:a5:fb:ef:80:b2:e3:ee:1a:19:bc:14:b7:
94:d9:a1:f3:7c:1b:c5:db:b0:41:9d:1e:7d:b1:0e:
da:62:1b:c6:ac:35:5e:3d:14:ae:90:47:83:a3:88:
6a:58:51:0f:88:b6:b3:99:69:d3:c5:6f:f8:1a:18:
e0:44:a7:da:24:ea:48:46:1a:66:13:c3:f0:7a:9f:
69:63:7e:9d:04:1a:a3:28:56:e3:56:be:bc:2a:d5:
84:0d:d7:6e:e0:ac:3c:f4:7f:52:87:b2:5f:23:57:
56:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:50:5E:82:24:43:9F:66:1C:93:38:7A:D4:23:34:02:EB:37:F6:68
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:9d:89:2e:f5:10:f7:bb:e7:a7:e4:03:9c:f8:dc:16:8d:31:
6d:02:00:85:6a:e0:80:11:f6:51:76:8b:f8:da:c1:bf:75:50:
66:79:33:7d:bb:5f:e1:fd:27:0b:b1:4e:be:c8:69:10:f4:dd:
51:b0:6d:76:20:35:40:72:21:e1:1c:75:36:6a:52:84:ee:8b:
82:23:3a:0a:c3:72:ba:ea:04:60:83:e7:8c:e4:bf:6d:3e:13:
46:69:34:dc:84:61:c1:40:be:de:83:23:05:c9:f5:ed:4a:f4:
9c:9e:10:c1:37:d2:73:39:62:6c:55:a4:11:1e:f6:b0:ce:09:
97:ad:43:69:ce:e1:6d:69:b1:38:d2:42:db:62:77:f8:5a:36:
96:38:c9:54:34:7d:b2:5a:6a:e9:7c:c0:31:af:06:eb:c4:bb:
ff:ae:7e:e5:24:e4:21:4d:80:2b:79:26:d1:4e:a9:be:19:3a:
7d:29:58:a8:f0:26:eb:9a:5f:4a:99:97:45:b5:a0:a5:87:1f:
89:db:2e:4a:6f:2a:dc:f4:d5:bf:c1:67:2a:98:4e:42:e6:9a:
89:7a:18:15:bd:21:3a:2f:b9:e8:9e:6d:f3:f5:0e:42:8b:e6:
58:4c:65:6e:96:db:d5:4b:82:ce:b7:c8:03:66:7d:b6:70:de:
ed:f2:9a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:34:15 2025 by rpki-client