Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
File: H8jtRm3i5spZZNHu0PJA3dJR3kg.mft (raw, json)
Hash identifier: GCdiNYdVEXG5Jf8nieuBNl1EqEncsQfOKs0m95lkKSw=
Subject key identifier: 2B:48:82:61:AB:9A:A6:34:3F:9C:79:E8:E2:DB:C6:7A:2B:0F:C0:FD
Authority key identifier: 1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
Certificate issuer: /CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Certificate serial: 0198D705D8A4ADE5D22DF52B1733704156E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
Manifest number: 15A1
Signing time: Sat 23 Aug 2025 13:02:21 +0000
Manifest this update: Sat 23 Aug 2025 13:02:21 +0000
Manifest next update: Sun 24 Aug 2025 13:02:21 +0000
Files and hashes: 1: H8jtRm3i5spZZNHu0PJA3dJR3kg.crl (hash: O/4qbmwxuIJnwRO25f9BqL/kmA0YQXBaOURUm0ahQco=)
2: nevmretTwrxwqsKKQjHFsjVUEY0.roa (hash: fWFJu1Hs2S96Xtm1+v7RRTX9W7ZYHV7fdQSuyQbPzQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:d8:a4:ad:e5:d2:2d:f5:2b:17:33:70:41:56:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc8ed466de2e6ca5964d1eed0f240ddd251de48
Validity
Not Before: Aug 23 13:02:21 2025 GMT
Not After : Aug 24 13:02:21 2025 GMT
Subject: CN=2b488261ab9aa6343f9c79e8e2dbc67a2b0fc0fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:24:38:da:b7:d0:a2:9a:f6:26:a7:3b:87:7c:
34:7a:7c:6a:08:87:65:84:70:3a:1a:c5:d8:c3:45:
d9:8d:19:e4:d7:50:14:a4:3e:c8:e4:8c:30:10:72:
04:e2:09:de:cd:3f:7a:b3:9e:8c:2e:88:d9:ac:ed:
1e:b5:97:4f:2f:a3:9f:14:39:17:be:cd:aa:7d:9d:
c1:6c:65:32:1a:6e:54:80:d3:f6:e8:fd:b1:bb:57:
ea:87:7d:17:2a:13:89:5e:d1:2d:73:07:7d:4f:ec:
40:4b:20:e6:e7:37:f3:90:a5:a8:ef:e8:36:32:95:
de:3f:b4:9a:77:20:49:7a:a5:3b:09:6b:44:68:fc:
cb:4f:0d:ea:4c:5e:79:bf:dd:26:96:c7:f0:88:20:
26:eb:d3:80:90:1a:c3:4d:f8:b0:c2:f1:5f:7f:1b:
3d:6d:ed:b7:18:c1:34:5a:de:43:0a:34:47:20:cf:
07:5f:cf:35:cb:1c:8f:d2:76:43:88:f3:ce:38:22:
f3:41:58:b9:7f:3e:cb:56:6b:fc:10:4c:9b:ae:dc:
94:fa:6b:5d:58:96:23:0f:2f:22:bb:a9:60:c1:9d:
5f:d4:57:fe:92:07:ea:9a:c8:58:4a:43:b1:47:5e:
d4:7e:ad:5e:8c:9c:9d:58:75:28:82:70:05:c5:7e:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:48:82:61:AB:9A:A6:34:3F:9C:79:E8:E2:DB:C6:7A:2B:0F:C0:FD
X509v3 Authority Key Identifier:
keyid:1F:C8:ED:46:6D:E2:E6:CA:59:64:D1:EE:D0:F2:40:DD:D2:51:DE:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8jtRm3i5spZZNHu0PJA3dJR3kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ca2ace-94ad-44cb-9809-f48d4babd50f/1/H8jtRm3i5spZZNHu0PJA3dJR3kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:7e:3b:63:d8:2d:e2:84:05:e5:37:48:77:4a:b0:de:8a:5a:
ce:d6:75:75:a5:2c:0a:0b:76:f0:cb:a8:d5:fd:3a:8a:dc:fb:
2d:eb:af:f9:1a:5d:d7:f9:5e:96:49:cb:a2:0b:c8:47:24:8c:
f7:95:1a:98:d7:d8:d1:7e:92:24:08:d4:a6:29:9c:dc:a5:ef:
c9:98:85:2a:14:96:05:43:55:5f:19:d3:a5:4c:80:92:13:c7:
fa:83:dc:57:b2:d8:09:0f:1c:75:e7:fb:34:72:55:cf:d8:f0:
aa:0a:8c:9f:be:b7:ab:5c:7d:44:9d:41:32:2c:94:40:9a:1a:
0f:96:7c:f2:7c:93:4f:7e:82:c0:1b:55:3e:46:d1:6c:50:3d:
64:97:08:20:cb:aa:ad:e1:9a:06:67:d5:1e:42:94:54:ac:49:
ca:c1:36:c8:b6:75:52:21:59:dc:34:8d:f8:56:80:cc:80:2b:
80:37:20:5a:00:76:1e:c5:0a:6d:31:56:a9:f7:28:ba:0e:37:
53:b0:13:3a:a4:19:20:9e:b6:ca:8a:d7:75:fe:f4:22:f7:14:
67:90:31:ad:c1:08:e6:21:ac:64:7d:11:26:59:fc:2c:55:63:
76:ec:bc:79:97:72:58:44:46:7e:75:48:c8:e7:da:1b:44:b8:
d1:b8:74:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:02:34 2025 by rpki-client