Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
File: hZjLxOjf8YUkBKmSddIwpWERBV8.mft (raw, json)
Hash identifier: 53j19rgEwBnnhfvFO9aPtHakwJuGBv0TGjJFOSHKAiY=
Subject key identifier: 2C:E9:C3:75:9D:BC:8A:E8:BE:FA:70:F9:95:97:81:58:36:CA:7B:E4
Authority key identifier: 85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
Certificate issuer: /CN=8598cbc4e8dff1852404a99275d230a56111055f
Certificate serial: 0198D58396505CE8AD5EE10CD0EE43579C2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
Manifest number: 0698
Signing time: Sat 23 Aug 2025 06:00:27 +0000
Manifest this update: Sat 23 Aug 2025 06:00:27 +0000
Manifest next update: Sun 24 Aug 2025 06:00:27 +0000
Files and hashes: 1: XOOVHbvdi1PyG7OFqAlrThvaXr0.roa (hash: FXkyjiQc3j4OAi/BA8pdWLXnVuKz/SxHMWNuTxG6YRs=)
2: hZjLxOjf8YUkBKmSddIwpWERBV8.crl (hash: /ENxWUd+q5CzO7w19EDddO+wBSwEufRDAj6WoGADZpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:96:50:5c:e8:ad:5e:e1:0c:d0:ee:43:57:9c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8598cbc4e8dff1852404a99275d230a56111055f
Validity
Not Before: Aug 23 06:00:27 2025 GMT
Not After : Aug 24 06:00:27 2025 GMT
Subject: CN=2ce9c3759dbc8ae8befa70f99597815836ca7be4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3b:2e:26:2e:29:c0:e2:32:eb:81:2c:ea:e6:
b8:a3:98:67:6a:a4:96:24:b9:3c:68:d9:e9:6b:b5:
d7:52:f2:94:3c:c8:2a:e9:f1:14:87:e6:38:a1:a2:
67:c0:67:31:5e:14:b7:33:28:2f:27:8d:34:12:e9:
3b:71:2e:28:2e:fd:d6:5e:bb:f6:84:a2:83:86:9d:
c4:dc:fe:db:bc:ac:10:71:8f:17:e0:ac:e2:18:5a:
5f:1f:8f:3b:bf:b3:d6:94:99:e3:86:44:45:20:67:
83:f2:18:63:f4:31:0e:46:32:89:62:6e:e2:13:c6:
e1:81:49:2f:09:65:8d:a0:9b:91:1e:61:05:87:5f:
e0:d7:f0:ec:72:1f:b9:18:b0:0b:b3:1b:b1:52:9d:
8b:f8:98:55:84:aa:37:c6:2b:0d:59:87:5f:29:05:
11:13:be:ea:de:5a:8a:e7:8a:d1:f2:6f:1c:55:95:
53:e6:ec:bc:5a:32:be:91:fe:66:86:31:f0:61:cb:
5c:e1:d7:36:d7:3b:86:ec:fb:5b:8e:30:16:37:96:
e2:47:b7:27:67:a0:d4:e3:af:86:57:b9:72:37:f1:
c0:05:08:c5:2b:0a:d0:b9:a9:37:46:ff:8c:c3:c1:
1a:44:8a:68:cf:64:6f:b4:06:c4:99:74:e9:b0:03:
e8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E9:C3:75:9D:BC:8A:E8:BE:FA:70:F9:95:97:81:58:36:CA:7B:E4
X509v3 Authority Key Identifier:
keyid:85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:0f:8c:bd:a9:32:d6:76:05:4c:a6:d8:41:a6:45:d2:32:ae:
da:ce:34:f6:84:b1:43:50:0d:a4:e6:66:93:0e:ca:48:64:70:
5c:0f:70:5c:b2:e6:36:29:62:8c:11:a6:5d:2a:11:34:cd:3c:
55:84:54:2a:09:16:ed:f6:f6:65:a0:d8:e0:0a:95:0a:58:d1:
a6:56:3a:b8:93:7c:61:38:4d:b0:34:9a:e7:fd:55:d7:fb:6d:
1f:97:02:f0:6a:5d:aa:46:75:c5:86:c9:d9:92:79:c9:2e:1c:
ea:c6:be:78:a3:92:2c:6f:29:11:cb:12:3b:35:98:b2:53:67:
09:24:86:2d:32:07:d4:eb:37:27:26:c6:ed:50:4d:9e:e8:2b:
0d:ef:46:d3:b0:be:9b:45:7c:d1:a6:17:e7:be:2c:8e:09:f8:
16:ef:77:d4:2d:f2:8b:97:d4:f5:f0:23:c2:af:b6:bd:3e:7d:
bc:36:be:e7:b3:a7:71:e4:3c:69:d6:d2:49:32:47:2f:97:f6:
de:ce:a9:aa:61:9b:fb:0a:32:76:e5:b0:9d:c1:2f:b2:8c:2e:
b0:9f:26:db:87:aa:9a:d8:a0:0e:8a:b0:da:b3:68:f5:cc:0a:
30:85:d2:83:49:99:ab:9a:66:dd:0d:c7:0f:2f:c3:da:b0:69:
a5:2b:d5:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:43 2025 by rpki-client