Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
File: hnkOzbhqxvqivMfusg0nTPpGULA.mft (raw, json)
Hash identifier: bnzMYbLEVD/pcK7yEHFuP6HTTXZtz3y26i8jvozK4rw=
Subject key identifier: 20:8C:E5:C3:09:D7:22:71:49:F2:D1:3D:B4:78:DD:1B:9E:2F:C8:77
Authority key identifier: 86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0
Certificate issuer: /CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0
Certificate serial: 0198D8166E90F07E1D68C02379615399D332
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
Manifest number: 24
Signing time: Sat 23 Aug 2025 18:00:05 +0000
Manifest this update: Sat 23 Aug 2025 18:00:05 +0000
Manifest next update: Sun 24 Aug 2025 18:00:05 +0000
Files and hashes: 1: hnkOzbhqxvqivMfusg0nTPpGULA.crl (hash: AOMKyWtdDkL/nCLiyJ54B242xVmfJY7Inhf0XuzIjRI=)
2: tR9T-2FvtEGouyPVT6CL-0oJmZs.roa (hash: oiTzhXBQqy2Mz5Nqrcv/ZCMdCONRk6F6wZpQ15vc3o0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:16:6e:90:f0:7e:1d:68:c0:23:79:61:53:99:d3:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86790ecdb86ac6faa2bcc7eeb20d274cfa4650b0
Validity
Not Before: Aug 23 18:00:05 2025 GMT
Not After : Aug 24 18:00:05 2025 GMT
Subject: CN=208ce5c309d7227149f2d13db478dd1b9e2fc877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:60:f0:81:93:e2:1a:27:9f:a7:dc:be:1e:ce:
6c:da:fa:9c:73:d5:9d:2c:f1:7e:ff:1c:02:0e:19:
cd:77:6c:3f:35:fb:b5:22:fb:4b:bc:b0:68:3c:7b:
17:9b:d3:77:cf:63:4e:ce:ab:29:ac:32:6f:42:0c:
00:bc:0f:85:b3:85:4e:ae:27:64:ef:ff:47:0e:99:
93:b9:a2:e6:a9:e7:2c:cc:2c:5f:53:a6:f3:ec:d1:
36:6c:fa:ae:98:77:55:9d:54:0e:11:2b:d3:cf:51:
98:89:eb:24:90:11:08:eb:0c:cb:74:8d:44:d8:cd:
29:93:54:ce:f3:72:d5:ef:ac:60:33:3d:6f:b3:16:
6f:bc:5d:37:52:e9:49:9e:4b:23:fc:b2:a5:a7:76:
83:4e:69:e7:e6:f5:c0:1b:b9:fa:4d:e0:35:28:32:
23:21:69:5a:30:cf:ef:08:35:df:93:98:ca:7e:ab:
cd:ef:e6:e8:18:45:26:16:af:c4:0f:43:4b:d5:89:
21:c0:58:49:0d:2e:40:60:7a:5f:6b:6e:ec:a2:48:
41:e0:a8:b7:c6:d4:8f:7b:7c:a3:8f:9d:e2:ff:52:
6f:de:3b:ce:ea:57:7f:01:23:de:ad:21:6b:bb:a0:
b8:93:f6:d7:09:34:a5:74:f9:55:d7:c8:d7:c5:b1:
4a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8C:E5:C3:09:D7:22:71:49:F2:D1:3D:B4:78:DD:1B:9E:2F:C8:77
X509v3 Authority Key Identifier:
keyid:86:79:0E:CD:B8:6A:C6:FA:A2:BC:C7:EE:B2:0D:27:4C:FA:46:50:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnkOzbhqxvqivMfusg0nTPpGULA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/32be63-eb23-4505-abe0-e0f6e315f5b8/1/hnkOzbhqxvqivMfusg0nTPpGULA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:e4:f8:ac:5f:0e:33:a5:cd:03:dc:5c:6d:01:ac:81:d6:0d:
c4:c1:a5:76:5b:30:cf:c5:a6:ce:8a:9c:de:cf:b3:69:da:a4:
1d:e2:00:ae:a6:ad:42:a6:47:88:67:df:7b:bc:6f:ab:2b:30:
ee:d2:52:da:e5:c3:f3:f8:da:2f:4c:bc:1b:0b:91:da:2e:c7:
85:ff:39:86:a0:a6:3b:21:2a:9e:ea:f3:5a:28:a0:e1:b8:67:
2b:7e:1f:2f:cb:ca:83:5f:97:dc:05:20:9c:d0:b9:f4:7c:37:
d4:ac:b7:e3:7d:a8:50:ca:eb:1a:21:56:55:00:81:5c:fe:21:
02:96:48:21:d4:99:e1:8d:d5:41:6f:01:4e:89:3a:b4:46:4b:
79:bd:a0:02:1f:fe:95:e7:d1:ac:77:9b:e2:f2:f6:e2:12:7d:
47:a6:9f:22:55:e8:93:45:02:26:0d:71:fc:e3:46:a7:92:6c:
31:ac:75:82:8c:5c:f6:99:d1:d3:d3:4e:a7:f0:4d:63:69:fa:
c0:9a:19:1c:5e:6f:d5:06:82:bb:e3:48:2b:c7:ec:5b:ad:80:
79:06:22:60:c7:00:8f:6d:d3:24:17:ef:8a:6d:9e:4d:58:56:
11:64:32:8c:19:da:69:6e:b2:f1:9e:dc:de:8c:f6:fa:62:ce:
cc:82:59:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:54:06 2025 by rpki-client