Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
File: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft (raw, json)
Hash identifier: snW69wJnNYeP4nLHCLora612ARa1YaaaoIcs91n/VDU=
Subject key identifier: 2F:71:3E:8D:F1:D1:EA:F3:FC:AD:6E:F8:4C:93:B2:66:11:36:9B:3E
Authority key identifier: 85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
Certificate issuer: /CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Certificate serial: 0198D705FE8AF53F4DAC182CDFA31896E288
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
Manifest number: 01F3
Signing time: Sat 23 Aug 2025 13:02:30 +0000
Manifest this update: Sat 23 Aug 2025 13:02:30 +0000
Manifest next update: Sun 24 Aug 2025 13:02:30 +0000
Files and hashes: 1: cllA8kNp-t480y7IfyyWuiklziY.roa (hash: 5bq8pPC98WVuN+UCw7i3OOCXOObrhETW5cCP805rEU4=)
2: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl (hash: SLzGGYRwtgEUMxFSzhp/QfqatijMfN0HSxUC0zls1s0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:fe:8a:f5:3f:4d:ac:18:2c:df:a3:18:96:e2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Validity
Not Before: Aug 23 13:02:30 2025 GMT
Not After : Aug 24 13:02:30 2025 GMT
Subject: CN=2f713e8df1d1eaf3fcad6ef84c93b26611369b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bd:27:8d:32:53:3a:30:57:15:b1:e0:01:db:
a3:ae:e2:4e:a1:05:b3:49:fc:62:68:2e:ee:54:66:
f9:61:03:41:94:1b:19:d0:1e:33:83:27:7f:77:c3:
5d:9d:a7:dc:c6:22:26:08:88:0b:7e:e3:b6:45:de:
db:16:e0:d8:13:a0:3a:c7:e0:e0:27:f5:cc:32:52:
be:72:46:9e:b7:a0:82:8c:43:aa:74:a2:ec:8a:58:
bb:7e:7d:ad:9b:70:e3:dc:ac:73:bf:2c:d7:17:4b:
6b:8f:4e:14:14:4c:d1:71:27:fc:cd:bf:04:49:1f:
37:c0:e4:b1:3d:d3:14:a5:3a:9f:da:42:bc:20:aa:
bb:86:00:9f:50:d0:67:ff:04:0d:0f:7b:f6:cc:f3:
d1:92:98:86:63:3b:54:90:dc:89:66:36:2d:63:ec:
5d:9d:4e:bb:99:77:d7:8d:ea:48:4c:0d:91:18:3b:
a8:4b:36:04:a6:07:7b:6e:2a:82:da:27:72:0d:5a:
98:2d:06:a7:3a:6d:7c:83:bb:3b:b4:a5:39:98:6a:
08:6d:d7:28:03:e7:c6:3d:c5:33:92:dc:61:0b:bf:
e5:61:a3:11:6f:f0:14:1f:bc:37:cd:cc:f1:cd:06:
14:1e:cb:35:d4:ba:16:92:2c:7f:0f:e9:be:e2:95:
3e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:71:3E:8D:F1:D1:EA:F3:FC:AD:6E:F8:4C:93:B2:66:11:36:9B:3E
X509v3 Authority Key Identifier:
keyid:85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:e3:ee:c1:09:48:b6:55:ec:0f:c9:af:f4:66:07:ae:24:af:
9f:b4:a7:39:02:73:86:d1:51:ab:f8:41:d2:3b:bb:dd:10:c8:
43:a6:57:a6:b4:30:9d:96:5c:4a:19:4d:32:73:70:f2:b3:4b:
2d:f4:bf:70:ee:3e:46:a1:d6:7d:3f:ed:03:3c:83:e2:a0:c7:
7f:37:38:9c:13:d4:5d:86:7e:27:53:41:cd:e9:b3:4e:73:c0:
08:26:7e:7e:0d:5f:b4:a5:07:0e:17:73:86:10:6d:2e:11:f1:
c9:a0:24:94:1a:8f:c9:89:92:51:43:7f:1e:b0:32:1d:a8:1d:
b3:c5:25:10:f9:c9:44:4f:fb:9e:6e:e3:25:3b:46:3a:96:56:
ca:d7:2d:cf:da:23:c6:5b:66:ee:9c:42:c5:94:9c:7d:5c:02:
d8:10:ed:51:32:05:ad:2b:f8:61:62:4d:09:c7:3f:f3:92:33:
ed:ec:d3:f8:3a:9a:7f:11:42:8e:d3:84:b2:d2:4b:f9:97:86:
11:8a:91:1c:a9:cc:b4:70:59:64:c9:a9:ab:43:21:3d:5c:67:
9d:fe:df:ae:7b:ce:ed:5b:e2:b3:43:8e:ed:aa:de:83:15:4b:
89:20:a1:35:3a:d4:f7:a0:45:c5:3a:7f:b5:77:ca:19:a3:11:
1b:af:6b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:21:07 2025 by rpki-client