Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
File: hGbpF0La0bn0x5ayOzfres2FgWE.mft (raw, json)
Hash identifier: hk9N1nvtjxpGLoFzR1qqbwrBvY6sfHLpkvO2+fwqLc0=
Subject key identifier: B8:EA:D4:66:48:6F:21:55:17:27:8C:9D:DC:95:07:F5:A4:F4:37:E8
Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Certificate serial: 0198D4E00FE454A9A6B0E67A68C4F8E340E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
Manifest number: 10EA
Signing time: Sat 23 Aug 2025 03:01:50 +0000
Manifest this update: Sat 23 Aug 2025 03:01:50 +0000
Manifest next update: Sun 24 Aug 2025 03:01:50 +0000
Files and hashes: 1: bbcA4RxlQmcQjNn0rG4goHNMuOU.roa (hash: R2hOoSIVcz11ndb2ZPvvYv6Kv8fgZfMkny+ajnRe2GQ=)
2: hGbpF0La0bn0x5ayOzfres2FgWE.crl (hash: E+hWF2BGJw/22q+lvJGcqw/R6PtC+YMwRoqdow2UaUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:0f:e4:54:a9:a6:b0:e6:7a:68:c4:f8:e3:40:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Validity
Not Before: Aug 23 03:01:50 2025 GMT
Not After : Aug 24 03:01:50 2025 GMT
Subject: CN=b8ead466486f215517278c9ddc9507f5a4f437e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:48:0c:0e:67:87:70:15:16:6d:18:f3:31:d3:
ae:58:f9:ea:39:7b:48:40:a0:a1:f5:80:b0:b3:3a:
01:a3:0a:99:f0:85:ec:0c:b4:ef:54:29:a4:bd:0b:
0e:e1:07:6e:20:11:95:b9:76:d2:d0:41:49:a5:2b:
8a:53:1c:fb:d6:79:b4:a6:19:95:9c:f3:13:b4:2c:
64:69:60:65:c9:8d:9a:a0:f6:07:fe:24:fd:44:bb:
b5:7d:51:17:e2:79:82:fe:9b:db:ca:6b:f6:40:ea:
99:34:02:d2:3d:a1:a8:99:0d:85:c7:9c:41:01:cc:
33:6b:27:6f:7a:d9:22:d7:f5:1e:3e:34:cb:a4:5a:
41:03:e2:13:9e:65:cf:09:3d:a2:a1:a8:da:79:39:
42:d5:fd:6a:1d:92:bb:07:ab:8b:ea:a7:c0:ae:07:
12:0b:eb:06:41:b2:46:6a:45:be:b5:88:57:72:9d:
15:9f:f9:f2:9f:be:75:b9:84:38:a8:2f:20:8b:bc:
3a:0b:02:d3:64:94:d6:61:32:6d:f6:1b:0d:e3:b6:
ba:a0:2b:d4:eb:70:fc:eb:c7:92:b1:8e:64:4d:26:
de:38:db:f1:25:78:73:42:a1:8b:2e:68:0e:a9:5a:
86:86:ad:2e:bc:a3:40:48:fb:f4:03:99:de:b8:08:
39:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:EA:D4:66:48:6F:21:55:17:27:8C:9D:DC:95:07:F5:A4:F4:37:E8
X509v3 Authority Key Identifier:
keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:97:bc:4f:a7:84:18:72:38:62:87:fd:09:07:95:56:5f:41:
dd:79:ae:b9:80:97:75:8f:54:fc:37:f3:e5:e3:6a:7d:2c:e8:
88:1d:4e:30:0c:8e:37:af:70:e4:b2:90:60:8d:29:1a:9c:60:
65:d4:b1:31:75:40:d1:c7:ee:6a:13:94:1c:d8:da:d7:1a:09:
36:f9:73:8a:99:ec:e9:07:68:42:45:60:31:a0:5a:c8:5e:9e:
f8:4b:5a:63:60:39:b1:d1:ef:c9:19:24:22:34:df:24:cc:2a:
e6:e1:51:5a:0c:48:e9:69:42:48:bb:06:fa:e4:00:c7:fb:0a:
86:f6:91:79:98:a2:28:13:e2:85:6b:16:ad:c9:3d:fa:bd:c9:
35:73:6a:32:a3:2e:68:19:bd:e0:6d:20:38:14:ca:34:e2:9e:
d2:a4:25:4f:48:b1:eb:c2:fd:db:c7:2a:74:f5:80:c5:27:f9:
45:0b:58:cf:c1:55:4f:ab:f2:b5:41:52:78:19:38:94:56:bb:
a0:78:c8:e8:d4:5d:35:bb:45:ed:d1:de:c1:ba:0f:c4:ac:71:
70:44:56:ee:0a:cd:10:78:66:75:78:e7:14:71:6c:88:68:d0:
f4:65:a6:8a:46:e2:bf:b6:41:5a:5c:00:4e:40:9e:f6:1c:fc:
ab:54:b8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:18:59 2025 by rpki-client