Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: 7kLRa2pi+bhPOUT3gGMrRdb00+pgeM+NJz2pCtSlX1k=
Subject key identifier: 09:80:C9:4C:51:41:5D:06:7C:BC:53:DF:60:32:04:07:8E:95:90:A5
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0198D6298EAEF19C293DBB57582F4618357B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 06CB
Signing time: Sat 23 Aug 2025 09:01:44 +0000
Manifest this update: Sat 23 Aug 2025 09:01:44 +0000
Manifest next update: Sun 24 Aug 2025 09:01:44 +0000
Files and hashes: 1: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
2: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
3: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: PFANb/0te1pDhVvlPDUtF0VNg42sF1r81sb4l/IHmzg=)
4: wcJ_wqjkpF90dh4pnsLUh2A6UA8.roa (hash: Vle/iazgF/KeRcK8urw8Nfb/AAf+CLF6fd+SxsYrWz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:8e:ae:f1:9c:29:3d:bb:57:58:2f:46:18:35:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Aug 23 09:01:44 2025 GMT
Not After : Aug 24 09:01:44 2025 GMT
Subject: CN=0980c94c51415d067cbc53df603204078e9590a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b8:89:de:42:bb:94:13:bf:1b:47:d0:c5:93:
d3:55:cc:00:14:f2:4f:23:09:6f:93:be:ac:d0:60:
b8:64:e9:38:87:fe:9a:aa:ca:06:28:4c:6c:b9:c8:
0c:f1:38:07:34:97:6f:7e:67:d9:db:3d:63:df:09:
97:04:4e:d2:33:bb:2c:df:52:28:b4:91:46:d9:e3:
56:b0:8b:b9:f8:83:bc:11:5a:bb:ec:34:0b:50:24:
34:f0:c4:1d:58:2c:b8:85:08:4c:8e:d6:90:9e:40:
9c:88:91:92:7a:6a:29:74:42:55:fd:a9:45:64:6d:
52:58:16:94:47:ea:83:40:6b:6e:60:50:03:1d:aa:
5f:bb:90:fb:94:eb:0e:ba:8f:98:9c:fd:da:67:3b:
0e:5d:f1:7a:e7:56:64:d6:31:29:c2:50:f3:91:71:
31:d3:bf:e4:fa:9f:65:eb:13:cf:cd:ab:f9:85:90:
47:2b:eb:75:13:d1:c8:12:48:a1:1e:fb:12:60:3b:
64:76:d9:76:19:1e:dd:d7:8d:0b:db:2c:50:27:b1:
23:ab:1b:42:8a:92:0e:73:c8:02:ec:1f:4a:57:94:
b1:7b:1b:16:23:2d:18:06:e0:d7:29:ff:34:c2:95:
68:00:35:56:2c:6f:2c:a8:8e:9c:2b:dc:0a:88:99:
90:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:80:C9:4C:51:41:5D:06:7C:BC:53:DF:60:32:04:07:8E:95:90:A5
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:39:a8:e5:61:99:6b:5b:7e:a3:b1:8b:72:6a:60:2a:e3:7c:
26:2a:53:32:fb:a4:d9:36:9f:2e:dc:32:08:81:25:8d:65:f3:
fd:ed:6e:80:d0:fa:69:01:c0:e3:42:dd:16:b1:15:8c:47:cb:
3b:4c:d2:84:76:a5:77:3a:a1:15:ca:34:4a:5f:38:f9:e7:82:
29:ee:2a:8f:f5:8c:10:b8:06:24:dd:bd:95:d1:e2:45:26:d3:
cc:94:a1:76:15:f7:d2:33:7f:0f:85:de:aa:c1:1d:d8:b5:88:
05:57:79:c1:8d:a5:d5:8f:9d:8a:55:fb:f9:11:d0:b6:96:ed:
3b:03:18:e9:e2:29:f8:0a:78:6f:c3:33:23:bf:88:74:db:12:
d6:ab:75:26:c9:88:cc:c7:6c:2c:4b:63:04:7c:57:38:90:89:
4b:67:e4:93:ce:83:7f:bf:e9:22:06:de:ab:81:64:2e:f2:5c:
74:39:36:da:a3:57:9c:ff:6f:ca:07:4b:b3:5d:19:ac:91:20:
a9:50:dd:9b:6f:11:e0:f3:b2:e0:65:80:7f:64:41:53:1f:0d:
27:17:c6:37:26:2b:3f:6c:3e:2a:4b:29:c6:9f:de:1b:d4:31:
29:85:8d:98:1f:d7:35:d1:f1:e9:9f:aa:f3:b5:4b:60:25:a6:
ba:a4:69:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:56 2025 by rpki-client