Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: MJ8QUzLOhMpQANB3VNqUPFgL4Z8Nnyj7IM2RNdRvHCY=
Subject key identifier: 8C:87:D6:30:E5:1D:07:1E:90:67:E6:E9:12:C6:5F:51:04:59:F8:C9
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 0197B8215199FD2F1AB237318D7D35CA572D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 15B8
Signing time: Sat 28 Jun 2025 20:01:20 +0000
Manifest this update: Sat 28 Jun 2025 20:01:20 +0000
Manifest next update: Sun 29 Jun 2025 20:01:20 +0000
Files and hashes: 1: RIDaaDvlCW6kZ_Qmkvg7iHhvkxs.roa (hash: TtEPT7gUdS6PVf0+fJoFxhyGOnl72shQIlFVnXWjJd4=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: dC1evHc1+IVuuMmvO7bQYrvm8h8oP6OQkd5rJUd03wg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:51:99:fd:2f:1a:b2:37:31:8d:7d:35:ca:57:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Jun 28 20:01:20 2025 GMT
Not After : Jun 29 20:01:20 2025 GMT
Subject: CN=8c87d630e51d071e9067e6e912c65f510459f8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e5:a0:07:50:7a:62:a4:c9:ad:26:69:df:e5:
88:21:60:87:77:f0:ef:ae:35:32:55:dc:09:56:90:
4f:3b:7d:5a:63:5e:dd:c3:48:e5:09:99:c2:1d:0b:
e8:38:1f:25:02:f1:fb:eb:61:b2:fb:df:b3:23:7a:
d0:51:8e:a8:fa:2d:cc:c5:28:a6:03:48:4f:53:cf:
84:cc:60:b0:07:47:5d:da:d6:00:ab:99:9d:7e:43:
3c:7d:49:d6:dd:57:e1:7f:da:01:16:e8:be:6b:3d:
33:b6:a3:e8:7d:1e:4d:e6:66:a4:09:4d:5c:a9:85:
62:15:33:96:69:58:5e:97:80:ab:b7:88:0c:77:14:
ba:35:6e:2a:cf:16:ea:40:41:4d:b9:9b:a6:38:4f:
10:cf:17:69:11:17:9e:50:a5:01:54:94:4b:b6:36:
f1:28:b2:11:a6:e4:1f:42:56:bc:d3:37:1e:a0:b0:
fd:55:35:b2:35:db:85:11:80:66:56:99:cf:f1:4c:
fe:27:d0:eb:38:56:7b:ec:5c:77:fd:09:4d:cb:03:
69:c9:74:ad:77:4a:79:25:14:80:ff:ce:0a:f1:51:
98:88:b2:9d:eb:66:94:3c:6c:2f:27:50:bd:84:bc:
32:dd:fd:21:38:bd:07:46:d9:b0:b5:be:e5:fc:07:
a6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:87:D6:30:E5:1D:07:1E:90:67:E6:E9:12:C6:5F:51:04:59:F8:C9
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:d5:43:4e:81:28:7f:93:2d:2f:27:7d:5c:08:86:4d:ae:7d:
a0:93:cb:e7:f6:87:7d:e2:38:f9:73:dc:5c:8e:74:fb:5f:19:
95:ed:f4:6a:e8:f4:0a:f8:93:ca:a3:aa:b0:76:83:cf:53:1f:
a3:26:99:88:c1:de:54:3b:cd:a3:09:a1:4b:59:ed:3f:ab:f8:
e0:f3:03:c2:f5:fc:be:6c:78:55:71:c3:49:45:ab:eb:33:34:
d7:b7:54:fe:98:cd:f8:29:26:0d:97:ee:a8:a6:1d:8f:01:30:
22:cf:d5:4b:77:3e:14:9f:64:67:77:27:b3:3c:a5:aa:63:58:
a0:94:ae:43:fb:87:3c:ca:11:e2:6a:a5:96:9c:e2:b9:c9:28:
cb:70:33:e0:30:16:d1:a3:03:9d:b5:37:3f:32:ca:a4:78:99:
29:26:36:ec:d9:b7:03:ae:9e:5c:24:53:9f:df:60:bc:a0:dd:
43:98:9c:67:c7:ad:9d:7b:a0:af:05:4f:a4:3d:49:3e:56:24:
3b:59:b3:2e:6e:8d:05:2e:99:9e:22:a8:83:79:b4:c2:e4:70:
52:24:d8:d3:51:78:9e:f1:77:d8:f7:a2:da:14:62:b3:28:7c:
f6:fa:40:8f:09:17:57:c7:3a:f3:77:d6:4b:51:a8:06:69:1c:
58:83:c5:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:10:51 2025 by rpki-client