
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File: hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier: I2IdKREU31Bas5AuRwoAvNhnLeDvtqV/vtktgPjLu9I=
Subject key identifier: 48:6C:E3:AD:A2:20:B6:57:14:1D:1A:C6:27:74:DD:31:57:88:C9:77
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer: /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial: 0197CACC017AC521E30508210BE852E1A447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number: 105A
Signing time: Wed 02 Jul 2025 11:00:56 +0000
Manifest this update: Wed 02 Jul 2025 11:00:56 +0000
Manifest next update: Thu 03 Jul 2025 11:00:56 +0000
Files and hashes: 1: XLQfftOCYwZhCKWBFvPgcWtM3ng.roa (hash: e5IwRRubP2iih1RAenDvyf84x82YlIWC8mC3l2YoKV8=)
2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: sEa9l6kPM1Td+VvwlOdEvJgsYkGEC3NmaSO9zNsYPuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cc:01:7a:c5:21:e3:05:08:21:0b:e8:52:e1:a4:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Validity
Not Before: Jul 2 11:00:56 2025 GMT
Not After : Jul 3 11:00:56 2025 GMT
Subject: CN=486ce3ada220b657141d1ac62774dd315788c977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:cb:25:e7:49:b8:ae:7d:c8:3f:3a:ca:eb:46:
5b:3a:e3:a4:91:a6:5b:e9:33:68:2f:48:be:65:a3:
b8:2d:0f:a3:b2:e0:2d:6c:df:42:02:91:e5:36:9f:
24:07:d1:c9:9e:93:66:d6:34:f1:bb:ea:18:94:01:
b6:ae:d0:b1:a6:d7:f3:69:88:75:8e:aa:bf:b0:8b:
9c:07:62:29:ca:d3:45:ae:36:b7:fa:ce:c1:f0:7a:
ea:a3:66:27:91:51:fd:c8:a0:cd:bc:da:a7:c9:fa:
79:14:c7:1f:0b:b9:4a:1f:2c:e4:0b:86:0a:9f:23:
b9:b9:24:82:16:5e:73:e3:43:c8:ca:b3:b7:c4:46:
f6:e4:2c:07:07:2e:48:30:0e:dd:23:5f:ba:fe:e8:
3a:2d:20:97:3e:59:56:3f:b8:fc:5b:45:f7:96:58:
d8:76:bc:2a:e7:f9:e3:81:50:26:06:2c:d2:b4:b8:
bc:30:51:91:a4:25:e6:f9:ea:e7:bd:1c:73:5e:b5:
fe:98:85:21:95:fd:26:43:4d:bb:79:c3:26:74:33:
b0:15:9a:16:c8:43:dc:14:b3:e9:06:1e:45:38:fd:
06:8d:24:a2:2c:b4:d2:7b:a0:e8:4d:40:72:2f:37:
23:b6:cc:f3:71:c9:5c:0b:5b:f8:35:58:ac:62:b7:
68:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:6C:E3:AD:A2:20:B6:57:14:1D:1A:C6:27:74:DD:31:57:88:C9:77
X509v3 Authority Key Identifier:
keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:ae:8e:ff:70:a7:fd:3b:90:cc:eb:4f:bb:5c:db:b8:0a:9b:
59:45:43:e9:41:5e:52:39:be:9e:bb:12:aa:44:af:90:c7:1d:
16:29:a7:9d:8b:07:b5:84:05:b0:14:00:c0:bb:c6:51:59:d0:
e6:36:17:d4:a3:2e:3a:b4:40:df:4b:d3:a5:55:12:fc:b8:c9:
ed:b5:7c:fb:70:53:84:6b:ec:d6:ac:2a:97:60:5f:56:0f:34:
52:14:ee:f7:23:a8:f2:68:4b:42:68:44:d7:88:f1:dd:42:c3:
4e:b6:33:d8:ef:74:9d:4f:9b:00:4c:dc:91:f4:29:24:d1:63:
e2:73:56:a1:5c:30:fd:a6:99:ee:72:c5:30:f2:5a:30:a9:3a:
21:f1:43:c6:7c:3a:6c:87:22:46:49:1a:d7:e0:2f:b8:9b:ff:
eb:95:d1:96:05:53:8b:a7:2a:dc:7d:20:a9:9b:03:10:b9:f4:
79:df:db:5b:de:af:51:ab:76:58:37:d3:b1:b5:6c:5d:04:1e:
2b:f6:eb:74:90:d8:d5:bc:4b:0e:ce:cf:38:91:6d:6c:50:dd:
7a:ab:b2:5d:c5:6e:a6:a0:b7:46:4a:f9:15:3a:e9:13:11:e4:
a5:41:ee:a4:ba:32:fb:30:d3:7f:e6:b3:3a:32:ec:0b:2d:6d:
de:2b:c1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 19:58:34 2025 by rpki-client