Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
File: hAfwBj7przHYfP5lubwZPrQsiWk.mft (raw, json)
Hash identifier: XNvu/2dyw7NA29eTq1Swi6cr33m5yVAmxUtZKCztZS4=
Subject key identifier: A7:33:84:C7:87:AE:6C:4A:DB:CF:80:07:BB:E7:2A:3D:E6:4D:91:0D
Authority key identifier: 84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
Certificate issuer: /CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Certificate serial: 0198D4DFE7B89C43E7F27CADF1BE792EAE39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
Manifest number: 06AD
Signing time: Sat 23 Aug 2025 03:01:40 +0000
Manifest this update: Sat 23 Aug 2025 03:01:40 +0000
Manifest next update: Sun 24 Aug 2025 03:01:40 +0000
Files and hashes: 1: Z7UyGu5eAyy6eE2IZXWBPwAGCsY.roa (hash: 69ViYIsd0St7iG615BWi/I8unIJ08lLoNoGfAWMd13A=)
2: hAfwBj7przHYfP5lubwZPrQsiWk.crl (hash: q+ydSeg/ZRsN/iEOMU5kJa/QsRplR4Aioyo199mWSBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:e7:b8:9c:43:e7:f2:7c:ad:f1:be:79:2e:ae:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Validity
Not Before: Aug 23 03:01:40 2025 GMT
Not After : Aug 24 03:01:40 2025 GMT
Subject: CN=a73384c787ae6c4adbcf8007bbe72a3de64d910d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:48:d0:ca:f5:fd:25:a1:a3:39:1b:88:56:e2:
82:d1:62:d7:aa:8c:fc:a7:de:0a:22:28:01:13:4d:
48:0c:3a:11:4e:3c:84:ef:3d:4f:63:52:21:81:4e:
61:65:0a:5e:79:70:8f:1a:2d:6a:d7:f1:30:f9:4d:
8f:23:da:e2:6c:13:05:55:4c:1f:5f:c5:6e:e2:ee:
9a:6f:d5:80:bb:91:e9:9f:af:b9:3f:de:84:47:cc:
ac:5e:06:fe:8b:fe:42:96:cd:04:be:a3:b8:da:36:
83:42:ac:47:cd:89:c7:65:a2:f7:15:0e:1a:0e:9e:
09:82:50:00:d0:e6:a5:9e:17:57:13:f8:4f:a1:f7:
ab:4a:25:7c:12:16:7d:4b:1e:1d:94:0e:36:22:47:
c5:4d:02:a1:ef:f1:60:f0:a0:34:f2:be:12:ea:5f:
f8:17:4a:c2:5a:35:be:0c:ed:a2:1a:1e:0d:f8:96:
50:80:f8:24:6c:a4:7e:7f:c0:c1:be:ab:67:f8:c6:
e7:dd:b2:11:56:ee:93:a7:81:53:4b:b7:10:37:23:
23:18:90:ec:7a:93:f1:f0:0d:e5:23:68:85:76:09:
fa:f4:38:cc:c8:b6:63:81:08:26:2f:12:bd:99:a5:
d6:f4:e3:2c:09:ec:ee:ce:17:a8:90:d8:31:6c:33:
84:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:33:84:C7:87:AE:6C:4A:DB:CF:80:07:BB:E7:2A:3D:E6:4D:91:0D
X509v3 Authority Key Identifier:
keyid:84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:6c:dc:0a:cb:6c:4e:98:e2:68:c0:91:b5:6f:91:2a:11:88:
05:c2:28:19:be:be:19:34:09:28:de:71:c0:30:33:f2:34:75:
99:99:be:18:af:c1:40:a4:da:a8:ab:72:0c:8e:88:4b:93:7e:
8c:8e:3a:e3:60:0d:fb:cd:4a:f3:ba:1b:ec:a0:01:e5:86:05:
8f:f3:b1:b3:db:8c:71:da:dc:54:23:a8:12:7f:b6:11:96:08:
d1:4e:40:35:67:c8:b3:02:ca:5b:8b:5a:36:06:59:06:10:0d:
0b:b4:21:58:1f:03:28:16:7a:cb:b6:73:72:56:f4:1c:e0:e5:
75:8d:61:79:c8:ef:21:02:ec:aa:90:0f:1c:98:79:d4:24:46:
aa:0f:68:f7:1a:d9:2c:71:b7:a1:f8:34:3f:67:e2:ec:da:8f:
8e:c1:65:49:10:ab:b5:b9:7c:38:f7:6a:2e:c9:2e:40:f8:c5:
f2:68:56:0a:48:94:42:29:e5:e9:4c:56:f4:f0:96:3c:20:8a:
32:8d:d1:92:a6:4e:67:c7:93:38:26:a1:d9:60:1f:f2:fa:8c:
c9:d6:f7:20:ec:8f:19:53:c5:fa:54:b8:3b:03:b3:34:93:f2:
6a:8e:f6:ae:0c:30:92:1e:85:ce:70:6c:8e:4a:49:35:43:12:
8d:3a:a7:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:58:56 2025 by rpki-client