Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: 5wjx3ET8yU6FbXBgKFbrWS9EzuFhjSSrMa9yySKvL+U=
Subject key identifier: 7E:3A:08:95:B1:5A:22:AB:B3:5C:D5:01:A5:38:8D:F7:24:9D:AB:71
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 0198D5BBB8530D95C4E8E19CFC9DA4959778
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 107E
Signing time: Sat 23 Aug 2025 07:01:45 +0000
Manifest this update: Sat 23 Aug 2025 07:01:45 +0000
Manifest next update: Sun 24 Aug 2025 07:01:45 +0000
Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: zENHZyvrxEkGu9czrkiX60e7fwQBOskxKTWSVpryAyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:b8:53:0d:95:c4:e8:e1:9c:fc:9d:a4:95:97:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Aug 23 07:01:45 2025 GMT
Not After : Aug 24 07:01:45 2025 GMT
Subject: CN=7e3a0895b15a22abb35cd501a5388df7249dab71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e9:b5:9d:d9:93:c0:86:bb:17:5b:59:96:4a:
b0:ce:47:4e:a3:dd:6c:a3:d0:06:ca:6c:8b:40:09:
f8:1e:a5:18:38:39:44:0d:c7:a9:7f:6b:55:df:bc:
1f:d5:67:b8:88:b7:16:96:cb:1d:62:64:9f:8d:16:
87:8d:91:e3:b6:9d:02:c9:2f:a6:0a:c7:1f:70:c6:
40:dc:e9:99:66:d3:1c:23:5c:0c:c8:ef:6e:4b:2c:
e8:f4:17:8d:1c:ca:42:18:80:a3:b4:9b:77:a6:b4:
83:3b:1d:6e:f9:2e:33:1a:9b:53:68:1d:53:05:e1:
6f:9d:d8:8d:c8:97:6a:c9:b9:57:e4:9f:ac:32:bf:
05:85:a6:38:14:78:50:3f:cb:9f:84:ed:10:48:9e:
71:00:5e:52:ff:ef:c1:82:f2:9c:42:2a:25:3f:c0:
80:3a:8a:df:bb:1f:16:f3:cb:3c:fb:4a:e8:70:7e:
4b:75:f5:a1:95:4e:34:08:da:e3:31:74:7e:44:75:
55:d2:e7:b0:cc:fb:58:4c:e1:dd:78:1a:06:a3:29:
ef:b4:01:d6:a1:a2:a2:d6:95:4e:65:40:ad:b5:35:
a5:8c:de:94:28:a8:68:61:c4:c9:dc:d9:a9:7b:32:
f0:0b:45:a4:8d:42:5c:2e:50:fe:8b:54:4a:e9:97:
1a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:3A:08:95:B1:5A:22:AB:B3:5C:D5:01:A5:38:8D:F7:24:9D:AB:71
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:4d:68:37:c5:7a:5a:b2:ba:77:15:86:a1:08:ba:e1:75:4c:
f1:83:97:16:71:34:99:ea:66:7f:02:79:8a:21:36:7d:19:f3:
73:4a:91:0c:3c:78:51:88:bc:e9:f1:00:29:9e:4e:60:ca:27:
57:2a:cf:83:32:07:f4:77:41:38:6f:f2:75:81:4f:2b:c6:bf:
ac:ce:27:19:b4:b2:12:e9:fc:f2:a4:b9:1f:4c:80:18:5d:fc:
ea:ea:b6:b1:d4:28:e6:a5:77:c8:2d:49:11:d9:fd:d0:58:6b:
49:d6:1a:72:74:fa:40:f5:f9:4e:08:d7:dd:c1:ac:97:21:13:
52:4e:38:75:f7:82:62:a3:40:9c:b3:53:0e:b6:d9:24:0d:a6:
72:4f:59:69:82:63:cf:db:3a:2f:c7:80:ee:11:48:f2:c1:09:
ae:52:52:43:a5:1a:65:97:f8:40:98:17:1a:58:bd:cf:28:7c:
3e:66:a9:86:7d:b7:b3:51:8f:d6:8a:cb:de:98:3b:d8:55:3f:
b1:2e:f9:7b:22:64:90:33:c4:81:db:26:62:9f:d8:5f:6c:83:
45:2a:7f:7a:b4:b4:12:5c:96:9e:11:86:99:37:ab:46:d5:74:
80:e3:22:81:02:ae:b6:c2:a1:55:8b:0e:8f:e6:90:c9:3e:be:
45:cc:02:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:31:50 2025 by rpki-client