
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
File: hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft (raw, json)
Hash identifier: cv8iuFDmB1afvTQxRehC7JGGYrP2Z9gTFDVa/A9aAZ0=
Subject key identifier: 0B:D5:BD:63:65:0E:3E:67:8C:EA:BA:63:D1:AF:05:B2:B6:5E:C4:9C
Authority key identifier: 86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
Certificate issuer: /CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Certificate serial: 0199FAD857752A93DDB43EC9B655413F88AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
Manifest number: 12C4
Signing time: Sun 19 Oct 2025 05:01:45 +0000
Manifest this update: Sun 19 Oct 2025 05:01:45 +0000
Manifest next update: Mon 20 Oct 2025 05:01:45 +0000
Files and hashes: 1: F1oKspcJIA5CxkgGbXIBC4yC3wU.roa (hash: AKm+230ZJqvJyVXgtMkmTb/sN72RWRXH+8ONP+ImAwA=)
2: hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl (hash: F05o63gqOUo7HsDn0NFaoZ2SVb4LteZZzT+G5EMsZ9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:57:75:2a:93:dd:b4:3e:c9:b6:55:41:3f:88:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Validity
Not Before: Oct 19 05:01:45 2025 GMT
Not After : Oct 20 05:01:45 2025 GMT
Subject: CN=0bd5bd63650e3e678ceaba63d1af05b2b65ec49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d0:4d:98:2a:eb:02:73:ce:4b:a9:b7:e9:7d:
37:dc:8b:87:44:49:83:8a:19:b2:72:fd:ca:25:de:
bb:1e:5f:a1:ef:fa:dc:c1:d6:94:ad:84:a8:80:e3:
ff:e4:02:72:cc:8c:bb:50:8a:66:29:5c:cc:d5:fe:
7e:7b:70:37:e2:b7:a1:23:f6:70:28:65:77:66:7e:
25:6b:05:8a:25:ba:72:78:1b:0c:c5:e2:20:09:6f:
f6:e4:48:b6:94:bc:b1:23:d9:9c:10:c9:3f:55:2e:
4a:4a:1b:88:fc:e0:3e:c4:84:2e:ac:4f:92:16:cb:
e5:0d:18:45:70:8a:ec:37:39:51:5f:75:99:bf:6d:
83:c0:18:cc:07:68:d4:f2:d9:8e:aa:a0:a8:78:44:
0d:0f:af:c6:4d:8c:25:20:39:5a:9f:45:4b:79:22:
01:a5:e3:8d:10:b5:f0:33:f7:59:38:6a:be:59:c8:
51:d5:42:26:a3:24:f7:81:68:24:fe:fe:2f:35:a3:
bb:58:e8:b0:bc:53:da:92:6e:10:44:4e:27:cc:11:
cf:1d:1e:9f:93:53:d8:15:78:95:b6:98:78:cb:97:
de:87:1f:36:6e:a0:a9:63:d5:78:62:d2:d2:72:bc:
5b:c0:f3:7d:28:c6:98:1f:32:ac:c7:6e:32:e1:f8:
f4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D5:BD:63:65:0E:3E:67:8C:EA:BA:63:D1:AF:05:B2:B6:5E:C4:9C
X509v3 Authority Key Identifier:
keyid:86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:f8:ba:37:93:3a:f4:1a:b8:e0:9a:fb:ce:d7:eb:5c:8f:b1:
4f:76:6e:b9:22:81:e8:77:27:e8:6b:54:c3:09:4c:6e:57:c8:
bc:48:a6:3a:29:32:7d:05:0e:ea:09:1e:26:4c:a2:1b:9a:43:
21:be:1b:94:5c:16:90:6d:fe:82:78:7a:57:38:4e:5c:21:28:
d2:6b:9e:e6:a0:32:e3:87:54:62:fe:60:3f:be:ba:37:eb:be:
de:98:4a:c2:31:ac:e7:6b:b6:34:81:f5:87:c5:be:f5:c4:a8:
b7:f7:32:a0:a0:76:57:70:1c:62:dc:91:13:03:25:de:00:d0:
0a:2e:94:a8:ce:23:f6:25:29:9f:68:d7:ab:76:ba:54:43:c7:
60:66:ce:87:2a:b4:c6:83:73:0c:fa:e9:de:45:68:de:1d:22:
9b:8b:f6:60:c7:0d:2e:19:fd:30:e6:22:21:39:d0:87:b0:88:
a8:a7:af:61:46:3a:be:78:8a:b1:31:e2:7f:20:d3:ba:3a:24:
cc:ef:13:40:a0:3d:a4:0e:60:0b:b7:5e:bd:51:df:18:cc:3d:
2b:f3:ac:ff:5d:e2:63:85:76:5d:f9:64:2f:fa:0e:7e:60:a5:
5d:ea:07:84:5c:b6:b3:79:31:9a:84:e2:2c:db:78:ff:fc:89:
f4:a4:f6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:49 2025 by rpki-client