Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
File: hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft (raw, json)
Hash identifier: PIqlP3eFPK9lPTS7hrLilS7dMi1jK+uBGZ5pMQzsFBc=
Subject key identifier: D0:77:B8:9C:85:70:29:DF:C5:06:56:07:A6:9E:85:2B:10:4E:CA:B5
Authority key identifier: 86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
Certificate issuer: /CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Certificate serial: 0197B77CC654100F8EE881B507B9F2658BD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
Manifest number: 1198
Signing time: Sat 28 Jun 2025 17:01:37 +0000
Manifest this update: Sat 28 Jun 2025 17:01:37 +0000
Manifest next update: Sun 29 Jun 2025 17:01:37 +0000
Files and hashes: 1: F1oKspcJIA5CxkgGbXIBC4yC3wU.roa (hash: AKm+230ZJqvJyVXgtMkmTb/sN72RWRXH+8ONP+ImAwA=)
2: hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl (hash: tGvTsKddl+rdVw1qS1Wy0s1d9QxW8t56jtDWl1e0xKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:c6:54:10:0f:8e:e8:81:b5:07:b9:f2:65:8b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Validity
Not Before: Jun 28 17:01:37 2025 GMT
Not After : Jun 29 17:01:37 2025 GMT
Subject: CN=d077b89c857029dfc5065607a69e852b104ecab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:63:de:f7:3a:86:cf:15:55:6d:75:68:d0:
e8:7d:70:6e:a8:d6:fd:71:91:8f:d1:23:7f:98:50:
54:1c:6b:84:39:61:92:85:72:ab:bc:20:5c:cd:d9:
34:13:61:1b:f6:10:00:fc:a0:5b:91:12:e1:db:3b:
40:cd:d9:d1:6d:fa:b3:2c:4a:59:f0:59:38:08:36:
c8:d0:aa:b4:89:51:e0:ea:af:f0:80:a8:8d:71:e2:
89:b4:b5:c8:c6:9a:66:16:ea:f0:c2:28:dd:7b:85:
e9:4e:6f:88:34:f6:09:d7:10:be:0e:7c:12:54:df:
cd:1e:26:09:8b:1c:ad:c7:36:ca:bd:c4:df:ea:40:
27:53:42:8e:7e:51:66:92:eb:72:9d:52:24:ad:0f:
c5:23:dd:5d:98:bc:30:70:09:f2:90:f2:92:46:03:
d4:17:3a:59:68:3a:34:bc:f2:7d:68:f5:fc:69:f1:
48:dc:42:a4:c2:38:8b:24:96:8c:28:e5:e4:bb:b1:
1d:b8:57:7c:7c:0a:9b:aa:da:ab:38:6e:0b:6e:22:
fd:e8:55:c0:c6:03:38:59:30:ae:82:9e:bc:cb:3c:
13:01:7b:3d:21:9e:14:77:93:32:23:f4:eb:90:e5:
8a:2a:b6:cc:c1:ac:3c:d8:21:f4:d2:f2:7e:81:60:
24:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:77:B8:9C:85:70:29:DF:C5:06:56:07:A6:9E:85:2B:10:4E:CA:B5
X509v3 Authority Key Identifier:
keyid:86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:67:2c:5e:83:88:a5:f4:b3:33:af:e7:09:68:19:fa:d1:65:
50:ce:14:47:d0:9a:e8:9e:00:ac:48:ce:58:4c:a1:da:7f:0a:
af:fb:05:91:13:fa:b4:83:84:2c:56:2f:0b:7f:ac:6c:1b:c2:
91:5b:d2:41:10:f1:60:29:52:27:cb:43:b5:fe:17:07:94:d5:
fe:e3:29:e3:d2:cb:31:c5:b3:eb:34:22:57:2a:40:0d:b3:c4:
96:b7:2c:4e:78:59:f1:1e:8f:ed:66:e2:d9:e3:ac:92:bd:44:
d1:9f:38:f2:6a:2a:c5:4f:c3:81:d2:f4:17:6f:23:f7:93:25:
03:84:a4:5e:e6:22:ef:53:77:ef:8d:75:f4:66:fa:dc:ed:5a:
d0:5b:c0:df:de:cd:f2:af:3c:3f:69:54:5d:c2:04:89:9d:38:
0b:ac:55:6a:07:04:dd:5b:db:dc:4c:eb:9f:1a:cc:81:bf:e0:
79:e8:84:4a:46:5e:3d:54:93:0e:49:44:44:55:11:6a:b8:f4:
81:69:57:09:ba:55:bb:4b:39:ac:a1:b0:7a:bd:29:28:94:17:
38:58:a0:48:99:3f:4e:ff:fa:ae:b6:44:91:e2:f6:c7:7c:e0:
04:fd:f5:b0:c1:5a:4a:b3:23:7d:1c:6a:45:a4:18:50:5c:9b:
7c:81:bf:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:58:15 2025 by rpki-client