Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: CAuQLtPGNbjfYf9iwVrxJ4NTksCUWKMImTYzg2Z/xxQ=
Subject key identifier: 70:6E:3F:34:D3:F1:5A:E9:1D:2B:0F:61:56:45:22:86:8B:C2:B8:E5
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 0198D54E836D9B0B8CA4906599B6AF9CB60A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: 0149
Signing time: Sat 23 Aug 2025 05:02:28 +0000
Manifest this update: Sat 23 Aug 2025 05:02:28 +0000
Manifest next update: Sun 24 Aug 2025 05:02:28 +0000
Files and hashes: 1: duguTeW8ErmRr7f5ZEryR3oV58E.roa (hash: q3OOsJ7Kv17p8ez5C5AQYcTLGWf82piJmxtRxe/QdaM=)
2: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: DVCjB7X7iJnxouyOS3jFfDDe5WZHaWd7qmZCZJAYZwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:83:6d:9b:0b:8c:a4:90:65:99:b6:af:9c:b6:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Aug 23 05:02:28 2025 GMT
Not After : Aug 24 05:02:28 2025 GMT
Subject: CN=706e3f34d3f15ae91d2b0f61564522868bc2b8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3a:61:66:56:e1:5a:b0:9f:d0:00:aa:cc:3f:
a6:da:56:a0:cf:d3:f0:bc:5b:de:be:1f:f1:43:97:
35:28:2b:d4:68:5b:c4:81:07:66:a6:a9:af:4d:6c:
c8:f8:14:c0:04:c8:77:27:b9:d5:17:4a:e9:40:d6:
2b:3a:fb:e7:79:62:ca:c5:fc:20:6a:1b:22:a2:d2:
d7:5d:23:1a:87:f0:ca:61:7b:cc:a8:89:9a:43:cb:
b3:db:59:d1:cc:f0:b1:08:20:8e:be:64:2b:32:63:
44:38:c4:cb:d7:b4:73:86:6b:97:06:20:1b:9d:f7:
fb:9b:28:d6:b4:0e:47:d5:cc:b6:49:4c:96:89:fd:
07:a3:a6:84:d9:dd:f0:06:03:5b:f5:88:bd:bd:33:
4c:f9:0b:10:8f:5d:13:89:56:45:95:95:95:7b:df:
8c:64:85:3d:d5:51:50:4e:68:d8:f4:25:7b:0f:d7:
91:ee:b0:ba:19:29:af:98:14:4b:de:da:b1:f5:14:
fa:0b:71:4f:f8:01:99:37:61:46:26:19:e4:aa:49:
90:5b:2f:c2:b6:40:33:65:20:be:0d:fe:0d:0a:53:
17:15:e2:7c:75:2b:66:18:1c:39:0a:99:0b:4b:dc:
31:55:e0:d8:90:de:4b:f2:61:2e:4a:f9:ef:f7:d5:
69:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6E:3F:34:D3:F1:5A:E9:1D:2B:0F:61:56:45:22:86:8B:C2:B8:E5
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:3d:ea:8d:93:24:0d:65:c4:b6:87:49:98:22:80:16:33:39:
dd:0e:fd:9d:a9:39:23:94:24:e2:06:57:e0:6e:7d:9f:2e:b2:
40:84:1b:c5:b2:97:31:5c:cb:84:db:2d:29:64:0a:82:1e:4a:
de:1d:33:62:7d:74:bd:7a:04:11:38:29:f4:1d:f0:3e:65:43:
82:5f:1d:b9:b4:99:9b:9c:16:2b:68:d1:eb:2a:35:64:b8:e7:
dc:37:2d:89:f8:3d:08:bf:d7:64:fd:53:b2:85:a1:4e:d0:bc:
7d:74:82:bb:ad:bb:c0:28:c5:ee:ca:70:e3:1a:ec:76:04:82:
67:63:86:1b:00:2e:88:2d:45:cd:d2:26:4e:2f:ad:b7:ab:c5:
09:08:a8:a4:33:d7:3a:07:b2:4d:25:b9:0f:1e:7a:5d:e5:69:
49:c6:f0:59:d5:11:2e:40:3c:ab:94:4c:42:d4:e2:01:db:dd:
2f:e8:ad:50:09:32:58:94:a9:53:5f:0d:c6:94:ca:da:d8:b7:
fc:c1:2c:89:8c:2a:78:78:b2:48:25:1e:d6:a2:7c:e1:d5:b3:
21:66:b1:8e:aa:3c:cf:c6:d2:97:15:a0:10:12:55:2b:51:fe:
41:01:e4:f1:57:57:b1:36:7d:8c:7c:2a:e7:c5:d0:19:70:87:
c4:55:b3:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:44 2025 by rpki-client