Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: 5oU/mIRr9WM5FUm6x/Eo7Q1pVBLIMjgdCqilf8d5xSU=
Subject key identifier: A7:6F:8E:0A:15:C9:A5:7F:97:30:12:DF:01:7D:B3:A6:E2:00:C7:B0
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 0198D4738BA3AC40F92AFDA6DF83C60737AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 1025
Signing time: Sat 23 Aug 2025 01:03:18 +0000
Manifest this update: Sat 23 Aug 2025 01:03:18 +0000
Manifest next update: Sun 24 Aug 2025 01:03:18 +0000
Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: jlOHtOeISkBQCpYXgmVGzWxB+hKS0oo3WjvkSV5trPs=)
2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:8b:a3:ac:40:f9:2a:fd:a6:df:83:c6:07:37:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Aug 23 01:03:18 2025 GMT
Not After : Aug 24 01:03:18 2025 GMT
Subject: CN=a76f8e0a15c9a57f973012df017db3a6e200c7b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fc:87:f8:28:f2:8a:78:d9:43:21:d5:24:c0:
1e:48:2f:e0:96:0d:3e:f6:64:f3:6c:2b:36:8d:a9:
88:01:1b:2e:39:e5:d2:3d:f1:57:f9:8b:b0:6a:fc:
b4:b3:da:85:dc:9c:d7:86:72:ab:3b:b3:48:26:bc:
37:a6:fa:2e:f4:41:7f:68:61:4a:14:82:33:ff:d9:
0b:2a:75:48:0a:f2:75:b2:bc:c0:54:46:39:d6:c2:
59:4f:9f:eb:f9:d7:06:0f:08:ad:68:67:28:d0:e6:
4d:25:17:c5:b2:06:7e:d6:e6:23:86:44:5e:28:dd:
4a:6e:50:f8:43:f7:92:86:15:39:d3:77:76:05:4c:
24:5b:68:ba:9f:f5:df:c8:93:47:52:80:b2:0e:b0:
96:da:7e:6c:18:e8:30:94:e7:43:36:c8:44:c8:66:
23:35:d8:91:5d:26:6b:f0:9e:aa:6f:2c:4f:52:a1:
70:e5:fd:3f:c5:ad:10:c7:1b:b2:09:41:16:8b:73:
e4:05:7f:c5:18:8b:ab:46:24:c7:fd:3b:38:eb:24:
b1:c6:0e:b3:cc:ac:fd:e3:30:6c:62:3b:a6:fc:44:
e3:bc:42:8f:36:c8:21:7d:c1:27:dc:56:95:52:79:
11:b6:98:0c:04:00:77:6a:16:3d:53:ec:32:bc:62:
87:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6F:8E:0A:15:C9:A5:7F:97:30:12:DF:01:7D:B3:A6:E2:00:C7:B0
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:89:a7:7c:66:1c:e1:01:27:49:48:c7:f7:68:ee:eb:13:0f:
02:69:4c:ef:f3:01:36:b5:42:9a:3b:0c:28:2c:a5:55:35:8f:
95:74:6c:e2:59:58:5e:7c:20:0f:9d:67:9f:ba:88:6b:1b:67:
36:f1:08:b3:e5:ce:d0:a6:36:ba:e1:58:96:9e:38:3c:83:45:
ed:a9:ec:96:7e:73:bc:36:4b:fa:76:1a:16:8b:68:ac:11:1e:
b5:66:d2:be:6c:eb:80:68:10:38:a4:97:67:9f:a9:ee:4f:3b:
d9:b5:5e:ab:05:ad:e6:ae:c5:10:50:71:03:43:c9:f7:2a:0f:
54:6f:4b:12:6d:bc:1d:89:66:04:71:3c:5c:16:92:07:f9:27:
a0:fa:c7:72:00:4d:6f:da:77:a9:58:4f:28:3b:e0:33:24:5f:
99:90:45:3c:41:2e:65:e4:1c:ef:b7:ec:2c:1c:d7:39:d6:b4:
08:b5:f0:65:d5:35:7d:c3:70:28:65:5d:3d:cc:69:03:d0:72:
35:f5:d6:4d:ae:43:c1:6f:f7:08:a2:37:5d:0c:2c:23:05:07:
31:1c:62:ad:9f:cd:0b:fc:4f:c3:ae:e5:41:5c:8d:cf:5d:a1:
7f:39:09:d1:44:a1:4f:5f:09:ea:95:5b:0d:4d:42:81:ba:4b:
cf:c6:2f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:11 2025 by rpki-client