Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
File: hKafxWiJTLOYXt7yIha9mZdN4lE.mft (raw, json)
Hash identifier: xk2LsqPJczdrC50B5lovHyu+ymCaYdP/ZwkP9Wig728=
Subject key identifier: A9:65:59:FC:35:56:87:80:1D:14:20:42:B5:B4:47:B3:8A:8C:22:82
Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251
Certificate serial: 0198D5F18EA8F9434DCC4B189244437AF922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
Manifest number: 1313
Signing time: Sat 23 Aug 2025 08:00:34 +0000
Manifest this update: Sat 23 Aug 2025 08:00:34 +0000
Manifest next update: Sun 24 Aug 2025 08:00:34 +0000
Files and hashes: 1: gTuMJj4zNk4inmWeuwHt2oopg5M.roa (hash: zopPOsMBU8dt9Dr0i+LUD1TPbnQUzJ4uDKxUzfrnRiY=)
2: hKafxWiJTLOYXt7yIha9mZdN4lE.crl (hash: q11qYiIaZKU3HfAipMNWVl7NljXkUY+osXvP10fmDuw=)
3: rnwY-7oYw6V-trqxlfGxfeIKZIY.roa (hash: Yep0/R2aV0HSvC5J3JSqbOslIcQ/KKdPdI5bChqi8Qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:8e:a8:f9:43:4d:cc:4b:18:92:44:43:7a:f9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a69fc568894cb3985edef22216bd99974de251
Validity
Not Before: Aug 23 08:00:34 2025 GMT
Not After : Aug 24 08:00:34 2025 GMT
Subject: CN=a96559fc355687801d142042b5b447b38a8c2282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:9b:d8:1b:38:92:7c:91:97:8b:87:92:c6:
da:b9:bf:de:f7:10:77:4a:08:1d:ff:f4:26:57:67:
8d:ed:c1:8d:59:50:c7:94:ae:f1:dd:14:e0:bd:08:
26:e9:d8:40:d4:1c:f4:23:53:55:92:64:37:5d:34:
ba:fc:e8:98:81:c0:b1:1a:16:03:a0:a1:01:2a:ad:
31:c1:06:f9:37:92:01:42:34:1d:5b:5c:54:cb:ec:
6f:21:a3:47:51:41:fe:30:b0:f5:e5:3c:52:c5:6f:
36:3a:bc:d5:33:9b:f5:bd:99:13:e5:23:cd:73:ed:
25:0a:7b:65:57:46:3d:70:eb:03:66:0f:5a:58:1d:
24:24:8f:99:fd:91:d6:e1:2d:d8:cd:b8:5c:68:c5:
63:f4:cf:9f:84:58:de:89:10:f8:ea:bd:3f:4e:b3:
81:b7:2f:d8:4a:02:c3:f0:dd:4c:3c:c1:06:97:11:
37:f2:9d:82:09:36:47:46:bc:11:b4:5b:7b:4b:99:
cb:1e:7f:84:7c:74:b1:e4:54:6e:d2:47:d9:cd:ca:
bb:6c:9f:3e:a4:e7:22:ba:2d:70:f1:97:e6:fd:18:
c0:1c:d4:c7:a9:35:a6:18:94:55:b3:3f:56:ed:86:
cc:f8:1a:2a:c1:89:90:71:5d:ad:12:07:45:71:76:
20:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:65:59:FC:35:56:87:80:1D:14:20:42:B5:B4:47:B3:8A:8C:22:82
X509v3 Authority Key Identifier:
keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:98:81:52:68:6f:c6:8d:55:c4:2d:f2:42:47:9c:91:da:95:
cc:61:7b:07:57:62:5f:09:6d:b9:77:26:90:2a:4d:99:1d:f4:
7c:90:49:4a:cf:59:c8:19:97:fe:a2:10:e6:c5:d9:da:c2:9f:
56:28:a6:34:63:dd:d2:a8:b8:19:16:aa:c7:b9:55:b3:05:a7:
45:50:8c:ef:4a:f2:6a:b8:63:ea:ef:c6:66:cc:f9:31:54:fb:
88:6b:9b:99:2a:4b:5d:35:03:45:10:04:9a:b4:58:ab:d9:57:
c7:d4:12:8d:ab:5e:4c:c2:61:8e:13:ad:f9:aa:18:93:59:90:
76:ac:23:40:51:e7:ee:d1:5f:43:6b:ee:3d:fe:4a:8f:a0:eb:
83:f5:47:58:b6:eb:bf:06:d9:1f:de:b2:74:94:15:46:84:a5:
65:37:27:19:e4:f8:61:07:59:46:50:97:c3:da:4f:c0:c4:ff:
00:28:84:8c:12:cb:f3:96:6c:4e:f9:f1:19:62:ed:a3:e6:d8:
81:fa:67:8d:7f:1d:48:26:b9:31:46:85:c2:fc:4b:4c:95:85:
5a:d0:56:cc:a7:47:b7:b4:76:d1:e6:1b:6d:51:e3:2c:41:02:
59:c6:3a:48:62:c7:98:c5:fa:97:30:3b:be:7d:7c:86:54:49:
b1:95:23:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:54 2025 by rpki-client