Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: qFDPeUk8zcElom3vFjLRPI56HD15h9HpwmGMCNbLaQE=
Subject key identifier: 48:DD:13:94:AA:84:89:BF:F1:0B:7C:83:98:AE:66:F1:CD:59:98:96
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 0197B89056083E3BD5A967D540DF011831A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 0F92
Signing time: Sat 28 Jun 2025 22:02:36 +0000
Manifest this update: Sat 28 Jun 2025 22:02:36 +0000
Manifest next update: Sun 29 Jun 2025 22:02:36 +0000
Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: w900OYgyLn36PwRuCbRgZSmoWTBJ4su2bO3jRfvzWmI=)
2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:56:08:3e:3b:d5:a9:67:d5:40:df:01:18:31:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Jun 28 22:02:36 2025 GMT
Not After : Jun 29 22:02:36 2025 GMT
Subject: CN=48dd1394aa8489bff10b7c8398ae66f1cd599896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7a:74:3e:e1:ce:e8:7f:fa:34:4c:b6:78:28:
e9:f8:24:98:cb:d7:38:2f:ee:df:03:ef:ac:58:11:
3d:fa:34:62:30:a3:cd:4e:98:4f:1b:b0:6a:bc:64:
1e:0e:8d:29:9d:31:55:e7:9d:7f:f2:40:1b:3b:92:
61:22:36:5e:17:67:35:36:f8:0b:aa:18:a7:65:ef:
29:74:43:d6:73:c1:d6:3e:32:a2:c5:da:0d:a4:13:
d2:e2:26:75:74:c8:0d:60:4b:02:0e:44:52:3f:66:
5c:cc:8b:8e:f9:85:34:c1:d8:04:9a:3b:7f:3e:48:
ac:16:30:6d:53:35:17:fd:1c:b4:9c:8b:c3:7f:3e:
20:09:ae:93:17:55:71:7c:4a:7a:ba:49:bc:0b:30:
59:b0:2d:41:81:b1:11:27:ce:86:19:e1:1b:99:30:
1e:a3:fa:0d:74:7b:74:9f:ea:23:8e:88:fd:67:8f:
94:b8:99:35:62:2f:b7:05:6b:bf:c6:d5:61:d5:c9:
e3:e9:5c:68:41:ed:89:f7:10:28:f6:55:7a:f9:36:
cd:35:3c:65:a5:b4:87:f6:a0:d1:c0:f7:71:f1:38:
9a:19:45:82:87:bb:f5:20:f9:5d:23:8e:a3:e3:b7:
53:78:dc:59:a0:82:7c:67:03:08:be:a8:b0:3b:a4:
b5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DD:13:94:AA:84:89:BF:F1:0B:7C:83:98:AE:66:F1:CD:59:98:96
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:bd:a7:28:15:4a:10:af:96:40:7c:d6:12:94:4b:e0:48:5e:
4f:4c:57:2b:39:66:76:74:a5:bb:35:b7:5b:16:e2:29:e2:b1:
24:03:6a:e1:b1:bd:0b:7d:57:03:0e:85:32:8f:f8:15:67:50:
4e:d7:43:10:81:c5:96:68:24:8d:7c:69:11:3e:1a:08:6a:7e:
3e:dc:cc:3a:13:20:b2:55:e4:17:55:b3:0a:89:c6:66:1a:94:
e0:1a:fa:a9:e4:de:44:b2:54:33:5c:3e:30:0b:7f:d0:61:18:
86:9d:9e:04:9e:0d:2b:1f:67:26:e3:0c:02:0b:39:09:3d:1b:
55:e5:c6:50:fa:64:37:03:d2:67:d2:11:74:f7:0b:dc:0d:ae:
86:1c:f5:dd:30:f2:bc:64:d0:d9:6e:b1:27:33:4b:98:dc:eb:
6c:6d:df:18:c5:ca:f2:a0:5d:66:85:ee:29:f4:15:67:48:36:
d4:33:4f:ac:d9:7f:68:99:51:2c:c3:90:87:64:60:42:60:d6:
b6:6b:d8:ba:c1:c9:c6:6d:99:f4:ea:9e:0e:48:68:4c:e1:65:
96:b6:4b:2d:c7:11:84:c0:45:ed:98:b3:13:6f:87:a6:5b:3b:
de:65:68:6c:f9:27:a3:43:26:8f:57:26:c4:76:a8:f1:b4:a5:
a3:b7:dd:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:31:15 2025 by rpki-client