Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
File: rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft (raw, json)
Hash identifier: wiomFZZbTfXJ7LbvVkAYBHN+Yl8z/zIxoAZ0VSItaeA=
Subject key identifier: 46:FE:7D:95:78:47:C9:0D:3E:77:0F:B8:84:0F:B1:10:AA:68:7E:F6
Authority key identifier: AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
Certificate issuer: /CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Certificate serial: 0198D65F8CB092452B479A091EEE203B27C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 10:00:42 +0000
Manifest this update: Sat 23 Aug 2025 10:00:42 +0000
Manifest next update: Sun 24 Aug 2025 10:00:42 +0000
Files and hashes: 1: 4Z6xjw98hxZ8bvYUhmvQisZFvOM.roa (hash: j5d+sT1h6lzMh+Fw7CHOI9NqQUP8la0OU484/Ch6a44=)
2: rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl (hash: lYbC8+8sYfzvxcRW4lzHD21AYeDwm5RsBrxy+9xRe9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:8c:b0:92:45:2b:47:9a:09:1e:ee:20:3b:27:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae1ef3d626a754e43d07c700d0513c114b660ef5
Validity
Not Before: Aug 23 10:00:42 2025 GMT
Not After : Aug 24 10:00:42 2025 GMT
Subject: CN=46fe7d957847c90d3e770fb8840fb110aa687ef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:2f:1d:b5:51:9d:c4:ce:52:28:2b:f2:66:
d8:3e:26:b6:b0:c8:63:f7:b7:12:9a:1d:7c:9d:2b:
13:76:74:d7:a4:c2:96:07:9a:60:59:24:89:60:ce:
f2:f7:f9:df:a6:66:f3:a8:92:da:ab:cd:a5:cc:66:
ca:b2:46:4c:48:e0:9c:52:df:3f:d7:3b:71:cf:40:
05:b8:27:cf:c7:df:a3:0a:da:18:4f:76:73:84:aa:
dd:ab:7b:00:b6:ae:62:af:89:c9:fe:74:34:2e:44:
f9:27:57:2a:61:06:c9:76:b8:4f:38:a2:1a:47:83:
54:1e:6a:90:bf:fc:af:a8:a2:4a:80:db:b8:24:53:
1a:bf:be:f5:df:97:05:6f:ce:db:ac:d2:e0:51:7c:
d0:c9:a0:5a:87:9f:a0:4e:f0:ad:3c:35:c7:e2:62:
0d:eb:c1:ab:98:1c:18:96:86:17:7c:d9:09:3a:75:
f6:49:fc:b7:86:0c:64:20:fc:cb:95:9f:02:5b:75:
28:07:de:af:49:8d:f1:4d:b9:5b:68:8a:5a:3f:df:
94:6c:a3:5f:dc:91:32:be:1a:26:fd:47:a6:24:e3:
39:1c:4d:b9:92:f0:5a:4e:e8:82:d5:ac:8c:20:16:
08:23:9f:a9:fc:aa:28:1b:a2:07:a8:6c:14:21:4a:
06:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FE:7D:95:78:47:C9:0D:3E:77:0F:B8:84:0F:B1:10:AA:68:7E:F6
X509v3 Authority Key Identifier:
keyid:AE:1E:F3:D6:26:A7:54:E4:3D:07:C7:00:D0:51:3C:11:4B:66:0E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rh7z1ianVOQ9B8cA0FE8EUtmDvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/afe9b8-e881-4462-a1ee-8e81d1350736/1/rh7z1ianVOQ9B8cA0FE8EUtmDvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:73:5d:a4:01:ae:14:3b:56:35:e3:f4:83:b0:f4:df:8d:fc:
9a:a0:b7:bc:05:06:33:19:57:41:9a:e7:62:2e:f4:71:08:b4:
ec:38:dc:a6:d0:1f:94:41:2b:d2:75:76:50:0e:21:ed:c6:67:
7d:16:1b:c1:ac:92:59:a3:58:1b:ac:f5:94:77:74:fa:e4:1b:
47:22:08:38:95:c1:98:f0:df:0f:0d:68:2c:0e:5c:8f:60:7f:
f1:af:d2:a1:4a:dc:22:90:b9:ae:d4:06:41:21:85:41:a2:b5:
5e:c7:d2:55:0f:29:55:d2:86:8e:b5:01:a6:f6:83:9f:21:31:
01:92:3b:db:f3:e1:92:01:0a:4b:77:20:52:8c:ac:62:52:1e:
14:75:e5:cb:18:8c:ee:ec:bc:f6:72:27:93:fd:63:04:43:3e:
f8:0a:2c:12:a5:52:1b:4e:5b:39:5c:d5:22:dd:d3:66:1a:cd:
eb:64:df:3f:30:53:25:86:f5:19:f2:aa:ca:f8:b8:9b:9a:5f:
4f:12:83:68:b1:4c:ef:f3:ea:e6:12:3a:a5:ad:16:9a:b0:34:
e6:4b:17:f1:88:04:34:95:66:73:a3:6c:30:60:7d:1b:9c:9b:
fb:86:64:a5:89:0a:54:6f:c8:d3:65:4a:36:bf:d7:a0:23:7c:
75:e8:01:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:17:20 2025 by rpki-client