Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: J4ImnuY2bQrmN73cTh4QTXFOo/FocmS+W+hL6wbfgEY=
Subject key identifier: 51:50:B8:69:7F:13:BC:01:34:4D:21:7C:00:FA:A2:97:C3:33:99:45
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 0197B8C5AD8863E0A007D636BF0C8996817F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 23:00:52 +0000
Manifest this update: Sat 28 Jun 2025 23:00:52 +0000
Manifest next update: Sun 29 Jun 2025 23:00:52 +0000
Files and hashes: 1: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: gluY4/foXioWKMqO36L2I5SLCLjX2QYLnqda3Fr+NcU=)
2: xSS92RJP_9kDYA2uBQZz6tpYK1I.roa (hash: rR5n4U9xDx2H85hw0wOs3NY+BK3tAcVO4QlJE3rUQXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:ad:88:63:e0:a0:07:d6:36:bf:0c:89:96:81:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Jun 28 23:00:52 2025 GMT
Not After : Jun 29 23:00:52 2025 GMT
Subject: CN=5150b8697f13bc01344d217c00faa297c3339945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:53:2e:a9:f0:c5:43:40:a3:8d:f5:d3:6f:38:
86:03:69:83:c3:fb:3a:f4:c1:c2:eb:cb:14:fc:4a:
b8:c6:43:2d:c8:99:4a:d7:25:23:e5:05:16:b7:a5:
de:bb:2f:00:23:ec:3d:39:95:c2:b9:f2:b8:60:2d:
d5:e7:59:15:d5:97:89:71:cb:a6:6b:95:a7:a8:d5:
4f:12:6e:6b:ca:31:d1:f2:fc:9a:ea:de:61:71:1e:
f8:75:c1:77:6d:98:ed:30:59:3a:05:15:c2:ed:bd:
8d:8d:6b:97:45:81:bb:fd:4a:fc:ca:89:f5:0d:3d:
6f:d3:58:99:8e:e5:6a:78:0b:40:29:0b:f7:8d:18:
19:c0:2a:f7:96:73:40:e1:82:6d:0d:11:e1:ad:a6:
8d:06:75:41:27:50:79:69:22:70:f2:9a:d0:de:09:
01:b4:ed:ba:ab:af:5b:26:31:de:3c:dc:9b:ba:cb:
fa:93:d3:62:7d:2a:a8:da:5a:d3:94:58:63:6e:ae:
42:30:4f:ce:cb:a6:5f:89:55:7e:56:08:21:8b:37:
e5:b7:57:a1:c4:06:04:16:10:fa:aa:5e:6e:50:98:
99:d3:25:02:fa:22:85:13:a2:8d:9c:dc:8b:ba:29:
53:a5:9f:6e:1e:93:8c:01:09:33:06:68:91:de:a8:
72:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:50:B8:69:7F:13:BC:01:34:4D:21:7C:00:FA:A2:97:C3:33:99:45
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:f2:d9:42:62:20:cc:46:f2:4f:b4:53:ad:e3:6d:d4:18:0b:
e9:a4:4a:fc:c2:8d:ad:f0:44:ef:37:fd:3d:cb:4c:4a:94:65:
c2:72:e5:a2:27:66:7a:33:cd:56:59:a9:16:e5:f8:c9:6b:f9:
5f:e3:ef:e1:89:7c:9f:60:b5:e9:f2:05:db:95:ef:5d:70:c8:
3e:80:c3:d3:21:ae:f6:62:3a:af:37:b3:e8:a0:7d:95:e1:71:
03:f1:52:01:61:4e:7d:35:7a:b2:6e:0f:ac:a7:cc:34:8f:99:
12:6c:58:e3:ea:57:1e:fe:57:a9:9c:56:21:b9:7a:3e:14:42:
76:9d:b1:01:8f:80:ac:7f:0f:f2:a7:f7:ee:67:49:c7:37:37:
43:68:d1:89:b7:c0:d4:96:f2:4e:1a:6e:85:c0:8b:24:e5:30:
ad:8a:e8:9a:82:4d:18:ab:4c:f8:21:e8:6d:28:8d:fe:8f:1c:
75:b7:c5:99:c7:b0:17:df:50:c8:72:6e:1a:06:8a:89:4c:02:
e4:74:7a:74:18:15:d6:6c:f0:6a:c3:f6:84:e4:2b:56:16:ec:
03:6a:04:ed:b0:27:20:a2:e7:59:02:3e:b7:54:92:7f:88:c8:
d4:f4:1b:5c:6e:49:ec:e3:91:1d:59:a4:f7:58:3c:57:d5:bf:
97:5d:24:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:12:24 2025 by rpki-client