Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: WKgVRPoOW2vAHs0zeskN+0akHQa5nJBzaTX2U3E/X/c=
Subject key identifier: 32:3A:70:22:19:8B:54:1A:10:1A:70:9A:84:9E:E0:AD:3F:BE:08:89
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 019A01B55BBC16CAFDFDB019BDD5F1536D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 16E8
Signing time: Mon 20 Oct 2025 13:00:53 +0000
Manifest this update: Mon 20 Oct 2025 13:00:53 +0000
Manifest next update: Tue 21 Oct 2025 13:00:53 +0000
Files and hashes: 1: gFpuSozNjbiDb1AJzS_liDy9bug.roa (hash: 6uO133mrJEMpg3Zx3fcNRh5poXGtfnp1W9l14JzLY2c=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: C6tuQyxoNdYLvfJAMnZQSn6SHErxWKge4r6Xc9J1Low=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:5b:bc:16:ca:fd:fd:b0:19:bd:d5:f1:53:6d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Oct 20 13:00:53 2025 GMT
Not After : Oct 21 13:00:53 2025 GMT
Subject: CN=323a7022198b541a101a709a849ee0ad3fbe0889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7a:56:08:91:1c:50:a2:ca:55:6b:82:88:26:
b1:49:e3:de:9d:76:96:2a:05:d5:3e:a8:73:f8:be:
7d:ac:d9:3e:29:b6:16:f8:30:b7:c4:51:b4:b9:0d:
9e:71:1c:95:9b:b3:9b:76:4a:b4:7d:78:17:ba:70:
ce:b7:bc:b9:cf:0a:bc:ce:aa:f7:22:cd:d0:57:dd:
33:ec:0e:0d:ca:21:96:32:6b:4f:4d:6c:a0:9a:db:
89:93:e8:2f:c3:6e:d7:0e:5b:8d:8e:ce:d6:15:66:
1e:ae:cb:e8:b5:c0:9f:37:b5:72:08:29:79:ed:9a:
b4:31:b5:cd:1b:f8:bf:b0:ec:1f:33:b8:55:d2:1e:
ce:25:87:cc:0b:75:ab:05:60:0e:b7:74:36:45:67:
01:49:a6:32:b6:9e:8f:2f:c9:5b:9d:a0:e3:dc:9e:
20:47:f1:66:79:74:6c:cd:dc:d8:54:c4:99:58:b6:
8a:9d:db:4f:24:bb:e0:bf:df:c5:5e:12:5f:8a:28:
47:a9:3a:85:7a:63:1e:6b:61:29:6e:57:99:02:52:
75:62:c6:85:c0:33:32:81:e0:73:89:a6:94:36:4b:
c2:14:bf:a0:fa:9f:79:59:a0:62:49:35:e0:a9:9e:
2e:55:76:f0:fa:b6:83:11:69:5b:fe:4e:d7:4e:6a:
52:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3A:70:22:19:8B:54:1A:10:1A:70:9A:84:9E:E0:AD:3F:BE:08:89
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:e7:bf:24:f1:a0:92:c2:56:03:37:e7:fe:98:2f:15:3a:08:
15:25:c5:a1:30:22:b0:81:4c:f8:f9:df:55:d5:76:a8:85:bc:
24:ea:e0:98:38:9a:ff:a9:3f:21:be:e7:14:3f:42:2c:27:4c:
0b:d4:f7:b7:f4:68:78:7a:b4:1e:c5:9e:65:74:59:29:f2:0b:
94:3a:55:89:ff:01:a9:08:71:88:0a:48:9e:69:31:10:3c:60:
89:dc:a4:13:7f:72:a3:26:5e:f3:ef:1e:35:5d:66:db:2f:1c:
5f:3c:8c:41:cb:d7:97:07:6d:22:15:ac:95:51:f6:24:47:2e:
c6:88:21:bf:c4:c0:f5:d9:43:99:cc:a5:92:49:4d:b6:a4:bb:
9d:74:c0:66:81:c0:da:4c:9b:97:07:2f:f3:0d:23:e3:e1:3a:
9b:24:e5:48:9d:c0:9c:85:31:71:a0:9d:3e:39:2b:1d:36:8b:
c7:3e:f0:dd:fa:76:3d:82:44:ed:d7:d5:48:b4:b3:49:dd:95:
20:05:f1:87:8e:ac:28:37:70:35:83:3b:9f:10:e8:c7:d7:62:
ef:3b:b7:ce:e6:90:1b:30:c1:fb:d7:3f:01:5b:86:10:6f:86:
55:77:40:82:ea:6a:15:da:56:b3:f4:6e:ba:db:87:97:b9:46:
98:03:86:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:16:45 2025 by rpki-client