Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
File: hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft (raw, json)
Hash identifier: iihkQCCvGz8CUtiE+gWMztKDmpeQ2f8KMQ1roli2e+w=
Subject key identifier: CC:FE:9B:54:04:30:C2:3E:F9:56:98:1A:78:5F:0E:C0:A2:3F:E5:41
Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
Certificate issuer: /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Certificate serial: 0198D6CD278C59D3CCD1B52E960F055753AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
Manifest number: 10FE
Signing time: Sat 23 Aug 2025 12:00:25 +0000
Manifest this update: Sat 23 Aug 2025 12:00:25 +0000
Manifest next update: Sun 24 Aug 2025 12:00:25 +0000
Files and hashes: 1: 9IYJ3JT9uAsxxt2lyjGjJVqXG38.roa (hash: Fm2Q+Megk5GLVl9u0EHQZ20RgFMN11FSbY9n50k8CTU=)
2: hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl (hash: fLJlpgXtCO1/xBvDa8ulQIVbfVrMOnc7qH0C9Z67q+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:27:8c:59:d3:cc:d1:b5:2e:96:0f:05:57:53:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f
Validity
Not Before: Aug 23 12:00:25 2025 GMT
Not After : Aug 24 12:00:25 2025 GMT
Subject: CN=ccfe9b540430c23ef956981a785f0ec0a23fe541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:73:3e:82:bb:ad:b0:fc:10:0c:13:ca:0b:81:
92:48:3c:2a:23:44:60:01:08:15:85:38:ee:e5:58:
e1:25:3c:15:09:35:a0:da:bf:5e:de:fa:32:c1:76:
95:10:c0:9a:30:7b:79:12:6c:97:20:3b:ba:59:59:
6a:a7:c5:9c:ee:36:80:b9:7a:7c:35:3f:80:c4:d3:
c8:33:fd:3b:08:f4:8f:70:dc:6a:93:d7:ed:52:9f:
0f:97:67:29:24:b3:0f:3d:75:6c:5b:66:57:fd:32:
e5:96:f3:33:9a:9e:cf:cd:37:85:ca:7c:97:34:ca:
67:d4:ad:11:aa:f2:5f:8b:04:3b:69:c5:0d:2d:4c:
35:18:96:e9:02:a3:62:d4:ef:3c:66:30:7d:b6:4d:
64:fa:2c:f3:18:69:0b:c2:70:12:00:01:d4:f6:6f:
47:e5:ee:01:21:e3:3b:28:0b:05:cb:5c:8f:6d:97:
97:56:2a:0d:6f:b7:ac:90:14:64:e4:97:1c:ca:b2:
07:d4:76:39:0e:7f:a3:d7:8c:82:14:12:c2:75:67:
2d:3f:5b:91:a2:46:1d:23:b0:e8:88:5c:14:3d:72:
fd:3c:6f:b7:05:bf:d4:cf:4e:bb:24:07:de:55:a6:
aa:3b:72:e2:a7:ea:30:4c:1c:71:b8:95:ae:11:6b:
36:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FE:9B:54:04:30:C2:3E:F9:56:98:1A:78:5F:0E:C0:A2:3F:E5:41
X509v3 Authority Key Identifier:
keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:61:be:28:19:b8:be:86:e4:35:16:9e:69:74:ab:20:0b:f9:
ba:2a:64:78:b3:3f:bc:06:ae:fb:20:d8:db:17:44:0f:50:8b:
81:ec:6c:2c:c4:39:6e:e1:87:1c:97:12:fe:e1:04:d1:14:ee:
28:ec:89:5d:87:5f:95:9d:e6:b9:a2:f7:7a:6c:06:1a:f8:ae:
10:ad:c9:b0:40:e2:80:46:21:18:4d:4f:a8:04:a4:22:26:f0:
00:aa:00:2f:71:26:f6:75:94:83:c1:46:5b:e1:92:32:19:c3:
f3:58:87:91:bf:13:f2:70:71:0f:9a:9e:f5:37:14:f2:3b:3d:
1b:1e:ca:8b:2e:51:49:ba:42:4e:72:2d:b4:4f:e7:c4:15:5a:
8a:c0:7f:56:03:88:9b:5c:c4:bf:95:fe:df:f2:db:a6:d2:87:
d8:a3:d0:35:3a:77:96:d2:be:a8:a9:2e:44:e9:a9:d0:4e:db:
60:b0:6f:07:ea:4c:88:85:be:c4:a3:05:2b:9b:26:a4:45:65:
00:93:54:1d:16:e7:59:c6:5a:ad:ae:93:d4:81:78:e1:23:e4:
4c:e9:d3:f7:aa:20:0e:99:91:5c:7c:74:53:c4:d9:75:52:37:
12:b6:36:d1:a9:6a:2d:89:bc:c9:fe:88:32:b4:da:e5:41:5e:
4e:e0:87:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:00:32 2025 by rpki-client