Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
File: hAfwBj7przHYfP5lubwZPrQsiWk.mft (raw, json)
Hash identifier: JzAtAfqnyVe2nvakrGyg+2dxt9xtUPD598kllja+qx4=
Subject key identifier: 09:E6:AC:C7:98:93:BE:78:81:29:E2:52:87:16:EB:AC:AE:80:52:A2
Authority key identifier: 84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
Certificate issuer: /CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Certificate serial: 0197C86FFAC71B0ED640D2DDE76EDC0DDCCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
Manifest number: 0622
Signing time: Wed 02 Jul 2025 00:01:11 +0000
Manifest this update: Wed 02 Jul 2025 00:01:11 +0000
Manifest next update: Thu 03 Jul 2025 00:01:11 +0000
Files and hashes: 1: Z7UyGu5eAyy6eE2IZXWBPwAGCsY.roa (hash: 69ViYIsd0St7iG615BWi/I8unIJ08lLoNoGfAWMd13A=)
2: hAfwBj7przHYfP5lubwZPrQsiWk.crl (hash: Fi63qVrTMr8c34U6szBQwhDWbxP36CrKo4sSvVWWY9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 00:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c8:6f:fa:c7:1b:0e:d6:40:d2:dd:e7:6e:dc:0d:dc:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8407f0063ee9af31d87cfe65b9bc193eb42c8969
Validity
Not Before: Jul 2 00:01:11 2025 GMT
Not After : Jul 3 00:01:11 2025 GMT
Subject: CN=09e6acc79893be788129e2528716ebacae8052a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b5:b5:71:7f:42:59:41:8f:be:fd:19:06:9b:
a7:0f:ec:b7:fc:17:5c:45:a8:8e:e6:3d:96:d5:cb:
42:19:f7:77:eb:f2:e3:89:7f:86:f3:6a:33:95:de:
62:67:37:d0:bb:44:58:af:99:9c:82:a2:0d:21:5f:
b4:35:53:77:ea:58:c1:d3:05:c4:03:e3:a6:56:05:
9b:58:c4:18:91:8f:18:93:d7:ca:df:2f:3c:58:26:
c6:34:49:ea:c8:8d:34:6e:9d:2f:bd:7b:fe:34:59:
34:ce:55:9a:ff:15:ec:95:94:b4:4c:8a:b9:46:4f:
95:c3:43:81:5e:11:db:e0:99:23:f6:10:2c:1d:f4:
7f:76:f5:4d:c6:ef:79:32:42:e2:79:f6:ba:aa:35:
47:a1:86:c2:d9:19:54:ec:4c:9b:8b:de:ce:28:98:
33:34:26:94:36:7e:d8:ef:cd:16:2e:e6:93:c2:ea:
56:32:3b:95:c0:7e:4b:d3:23:d1:bb:c1:48:35:cb:
44:f6:74:96:e3:5a:99:96:ae:fc:0b:90:dd:8d:40:
7d:96:17:f8:f4:d7:7e:c1:1f:8c:f7:5b:ad:23:61:
19:4c:30:c5:8e:d3:24:b3:4d:8c:b7:c0:d4:0b:3b:
25:7a:3e:38:3a:c0:d7:c0:2a:03:8c:8d:1e:5c:d1:
8f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E6:AC:C7:98:93:BE:78:81:29:E2:52:87:16:EB:AC:AE:80:52:A2
X509v3 Authority Key Identifier:
keyid:84:07:F0:06:3E:E9:AF:31:D8:7C:FE:65:B9:BC:19:3E:B4:2C:89:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAfwBj7przHYfP5lubwZPrQsiWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/657c59-e3b9-404f-afab-e1efcf2ed0a7/1/hAfwBj7przHYfP5lubwZPrQsiWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:79:71:4b:e3:1e:94:35:e6:88:03:58:61:90:59:63:ca:4d:
2e:e1:8c:1c:ca:a4:4b:6c:06:70:5a:75:b1:fc:50:b4:df:9b:
b6:99:4b:d1:26:6c:d5:f5:db:70:f3:de:d5:5c:28:67:f7:ab:
a0:48:e0:88:5d:bc:57:8b:41:33:7f:68:fa:99:ae:70:a6:5e:
9c:96:d1:90:45:45:b4:de:56:73:b0:9e:80:05:a5:cc:a3:50:
21:47:88:c3:0b:fd:20:d0:5d:90:6d:4b:a6:48:de:b5:6b:35:
1f:12:14:34:39:53:ae:24:63:a0:89:b4:78:29:c9:e7:21:c9:
0d:34:b4:90:1d:7b:b8:57:36:a5:f6:ba:f9:23:df:f2:08:45:
9d:c9:a5:9f:6d:50:04:b0:c8:9e:02:f0:66:1d:12:0b:f5:82:
9c:5e:fe:76:f4:3f:ea:99:ab:fd:ce:e3:12:74:9d:e2:80:1c:
60:15:eb:ed:cb:4d:fe:32:5b:30:56:8e:b9:27:f8:1d:7b:6c:
31:75:70:9c:5b:6f:2f:a1:73:e7:db:77:a8:25:da:4e:95:e1:
76:a0:dd:68:c5:36:68:b8:7c:d7:8f:93:95:14:75:0e:25:f3:
3f:a7:24:18:4c:33:3e:5e:20:98:44:80:0d:9c:11:2e:91:c0:
73:cd:90:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 04:13:24 2025 by rpki-client