Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: E3JR+RQnvqu60f5UVv4oEIz0f8/XS9+UVvVgTjJz8Tk=
Subject key identifier: 4D:6A:AB:0D:EB:74:C1:57:A4:61:BD:E1:9D:7B:A6:CB:A4:8D:A4:17
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 0198D473FD4C924F78E40F36C50E823A3488
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0411
Signing time: Sat 23 Aug 2025 01:03:47 +0000
Manifest this update: Sat 23 Aug 2025 01:03:47 +0000
Manifest next update: Sun 24 Aug 2025 01:03:47 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: 2claETpImtxx2dLXpPpskRMX9/100TF0WztrQ3P2Ips=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:fd:4c:92:4f:78:e4:0f:36:c5:0e:82:3a:34:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Aug 23 01:03:47 2025 GMT
Not After : Aug 24 01:03:47 2025 GMT
Subject: CN=4d6aab0deb74c157a461bde19d7ba6cba48da417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:65:73:7d:81:be:3b:29:6b:f4:94:88:00:29:
7c:17:23:39:67:39:cb:38:f6:a5:b4:c6:3c:5f:54:
a8:9e:15:36:cf:13:e7:11:f1:ea:b3:6b:4a:55:36:
69:b8:02:65:1f:89:7b:d6:ef:da:fe:07:7a:6d:34:
ed:40:3f:2a:dc:3b:f0:b5:48:a6:57:aa:01:e2:6b:
2d:f6:5e:e4:d9:2a:6d:16:52:58:14:af:3e:07:db:
a8:71:f5:d1:df:e8:22:34:a8:36:bf:d6:f1:78:62:
27:2b:4f:57:b0:81:f6:48:5b:16:9e:bd:db:20:3c:
30:1b:0a:0e:89:54:b0:96:0e:21:a5:56:8a:15:d8:
22:c1:a4:59:22:8e:de:18:0f:3f:c4:2f:cb:d2:63:
1b:d9:5f:2b:38:94:a5:cf:c8:8b:12:98:98:4e:4a:
cc:ad:59:36:cb:15:28:ed:6b:0b:b3:20:cf:66:f3:
eb:36:56:00:aa:51:03:ce:02:6f:9f:71:ac:9b:86:
1a:df:ac:65:3e:c0:d3:4c:29:90:5f:33:14:a9:86:
13:6d:8f:db:22:a1:e5:ae:5d:15:fb:6b:1e:db:7a:
2c:0a:57:7c:47:bc:fd:c3:2a:af:4c:c1:1d:e1:75:
aa:1f:26:cb:29:41:89:c7:e2:fb:f9:5f:7d:84:5d:
3a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6A:AB:0D:EB:74:C1:57:A4:61:BD:E1:9D:7B:A6:CB:A4:8D:A4:17
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:8b:dc:d6:d0:22:b9:44:f6:05:4e:3b:1e:62:8f:63:3b:31:
cb:2e:f8:21:36:55:ac:04:d3:68:d0:d5:fa:b1:3d:dd:ce:fe:
58:3b:7e:a4:29:54:af:49:c3:b3:22:d5:54:97:65:8f:5b:68:
7c:5d:0d:a9:e0:da:98:c0:f6:82:14:46:36:03:18:35:da:50:
50:8b:a5:1d:da:89:5a:26:91:21:49:7c:9a:a6:3c:7e:bc:e1:
e8:ba:37:98:66:b1:0d:b0:02:71:0a:0b:f5:fa:25:33:01:67:
25:fb:59:f1:27:f3:5b:ec:58:0f:42:bf:45:f1:ae:cf:ee:45:
3b:2c:58:6b:c8:b5:4a:f1:ab:c9:9d:d8:ab:15:bd:ff:51:60:
53:78:ef:52:b8:2d:d8:b4:32:21:9f:59:f9:18:db:0a:ce:d1:
c9:0f:e2:c4:a7:c1:eb:e5:08:4e:20:bb:6f:57:2e:81:05:08:
a3:c3:f9:06:ce:7f:88:c0:c0:8a:ba:1f:fc:a8:f7:2d:25:2d:
0c:75:a0:62:6d:11:56:e8:6e:0a:10:ef:a2:20:39:de:6e:57:
df:06:9d:40:bc:e7:74:12:dc:d5:0b:ab:d4:52:a7:1a:de:15:
fd:d0:81:71:31:dd:54:6e:1a:91:91:d4:5c:f3:5c:92:21:69:
66:1a:c8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:52 2025 by rpki-client