Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
File: hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft (raw, json)
Hash identifier: fOuICGRzdcMHUiTDY6bosIYTrD2pVl4ig7AqrYdCO7A=
Subject key identifier: 71:49:72:01:0B:CB:C0:E1:6B:32:38:BE:44:C9:40:FB:E3:A4:D5:C2
Authority key identifier: 86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
Certificate issuer: /CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Certificate serial: 0198D54E9DA20153908E680F18A416548CDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
Manifest number: 122C
Signing time: Sat 23 Aug 2025 05:02:35 +0000
Manifest this update: Sat 23 Aug 2025 05:02:35 +0000
Manifest next update: Sun 24 Aug 2025 05:02:35 +0000
Files and hashes: 1: F1oKspcJIA5CxkgGbXIBC4yC3wU.roa (hash: AKm+230ZJqvJyVXgtMkmTb/sN72RWRXH+8ONP+ImAwA=)
2: hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl (hash: O5VheYkmcJSt9942ns9l/T+3cai37S89Xb2RJ9SwMlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:9d:a2:01:53:90:8e:68:0f:18:a4:16:54:8c:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Validity
Not Before: Aug 23 05:02:35 2025 GMT
Not After : Aug 24 05:02:35 2025 GMT
Subject: CN=714972010bcbc0e16b3238be44c940fbe3a4d5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:05:50:79:14:dd:20:e5:eb:f8:02:60:a1:0f:
5d:cf:c8:69:0d:63:7e:24:9f:d6:83:43:fc:d5:68:
b2:d9:07:9e:20:29:6b:65:93:78:b1:48:c2:1f:23:
00:82:64:a8:6a:d1:9f:4f:9e:34:82:30:ab:b2:de:
08:98:80:ac:97:a6:6e:15:f4:f9:6a:bf:aa:72:e7:
36:f4:02:aa:36:6d:38:f2:92:2d:07:7a:1c:e0:6b:
45:43:41:36:ce:ad:6f:87:06:5b:86:64:17:56:21:
35:da:79:a9:73:fe:2d:33:9d:e6:06:43:9d:97:81:
8d:7a:27:06:c1:76:1e:24:b4:c8:58:7e:a7:ac:c4:
e6:9d:ac:f9:e6:d0:cf:a8:5d:8d:82:a8:68:37:78:
ad:97:23:b8:d8:a1:fb:72:af:6e:24:2c:46:36:44:
39:ba:b5:ec:3e:76:3d:95:a3:41:f4:f3:d0:9a:7c:
37:65:8d:fb:36:e7:68:0c:4b:04:48:db:2c:b0:b6:
be:a1:b7:48:ad:b5:d2:df:9b:cc:eb:da:61:d5:02:
2c:99:f3:5a:c0:39:e8:5e:c8:20:14:94:1f:d3:72:
ba:85:48:f6:b4:8b:11:3a:ac:50:50:c5:26:20:13:
27:7a:c2:8a:c7:4c:e7:6f:10:32:ba:43:8e:4f:8a:
6a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:49:72:01:0B:CB:C0:E1:6B:32:38:BE:44:C9:40:FB:E3:A4:D5:C2
X509v3 Authority Key Identifier:
keyid:86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:5a:95:e3:02:97:88:9a:81:43:15:91:c0:6c:fd:e6:d5:24:
93:80:d4:58:dd:73:31:78:3a:46:6f:d4:1b:0e:39:6a:31:9b:
93:38:c3:c8:4f:15:06:04:c0:42:fa:2c:14:99:20:8b:b4:82:
53:0b:b7:eb:a1:6c:d4:83:88:55:48:43:c9:97:fe:19:ab:8a:
5f:2a:e7:7f:95:2e:31:de:4c:05:fc:a9:d8:87:f4:a8:0e:16:
48:0a:75:92:2d:de:b3:84:67:e4:67:39:51:44:9d:dd:c1:60:
15:67:a1:d2:fe:41:df:68:48:ac:b7:f0:89:bc:4e:1a:f0:10:
29:2a:40:d8:de:e2:83:e8:e2:6e:97:f4:a7:a4:bb:7e:32:a0:
62:80:54:e9:48:5c:77:3c:9d:29:d4:ec:9c:e4:92:d7:bc:16:
75:de:9a:8c:4d:2b:c6:11:e8:43:4b:78:c9:a5:ac:bb:e5:21:
05:3a:ab:90:3f:e6:55:3b:3d:78:80:ce:aa:b2:6e:bc:d8:26:
4d:47:d9:b9:8c:fc:66:c0:e1:2e:92:32:45:b4:f7:db:b4:1d:
a4:03:a1:64:fa:fe:75:5f:2d:d9:47:a8:fc:1d:e5:fc:22:72:
bc:e2:da:97:af:c9:5f:a2:da:db:57:9c:b0:af:d2:9e:a1:da:
ad:f3:24:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:10 2025 by rpki-client