Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: BtoxxZnH/C241Kfz7xazlr6lIxgx3ZrxzPj0JTw5SmY=
Subject key identifier: 19:A8:B2:3B:91:CC:7B:25:F0:00:3D:90:5C:F6:81:2A:2A:02:00:97
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 0198D5F1D673F729D339391E61E0C62CF7E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 164C
Signing time: Sat 23 Aug 2025 08:00:52 +0000
Manifest this update: Sat 23 Aug 2025 08:00:52 +0000
Manifest next update: Sun 24 Aug 2025 08:00:52 +0000
Files and hashes: 1: RIDaaDvlCW6kZ_Qmkvg7iHhvkxs.roa (hash: TtEPT7gUdS6PVf0+fJoFxhyGOnl72shQIlFVnXWjJd4=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: 3HgoepRUH9NyvPpiybzkyL4kofOSvwUM6mofNCXh1t8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:d6:73:f7:29:d3:39:39:1e:61:e0:c6:2c:f7:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Aug 23 08:00:52 2025 GMT
Not After : Aug 24 08:00:52 2025 GMT
Subject: CN=19a8b23b91cc7b25f0003d905cf6812a2a020097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b9:89:44:b7:58:3f:5e:5b:86:0d:3c:4d:49:
cb:73:e4:7c:e5:57:a3:a2:4b:8c:81:17:ea:56:c5:
c4:42:01:02:76:87:fc:d6:c4:33:21:b9:df:3f:12:
8c:a7:bb:a1:03:ca:27:ed:5f:b1:dc:0e:8a:26:6e:
8c:f6:c7:ce:1f:88:f6:61:70:da:4d:18:7e:ac:65:
fa:63:83:dd:a5:41:95:b4:43:17:56:fb:f4:d8:76:
27:9d:90:5a:35:84:be:35:f1:9b:79:54:c7:cf:95:
4c:ad:0f:fe:35:73:b5:61:c1:12:a3:3e:53:9f:25:
e4:eb:aa:8b:65:b0:93:0c:fb:1e:a3:28:fd:30:76:
01:ef:1a:1c:90:fe:07:43:09:ff:60:a6:e9:25:9a:
07:b0:4c:5b:cc:ed:92:df:11:47:54:6b:fe:68:dd:
c1:f2:06:e9:b1:b2:be:13:0f:e0:7c:45:6f:fe:6a:
b9:79:0a:ed:12:54:59:57:d1:4f:a2:f0:c7:75:56:
8c:65:be:c1:3a:34:17:b0:f3:80:f7:9c:da:d5:c5:
a5:c5:84:2f:19:51:31:bb:5a:df:9a:c0:d3:98:15:
b2:6a:bf:60:88:22:fa:89:de:b3:6e:c1:44:7a:09:
8f:42:c2:4c:de:1e:6e:59:01:c1:87:51:4f:14:de:
f1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A8:B2:3B:91:CC:7B:25:F0:00:3D:90:5C:F6:81:2A:2A:02:00:97
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:39:05:f8:cb:3a:b1:9a:a7:d8:99:46:88:34:9c:a1:c3:5b:
d3:de:88:6d:80:1b:35:d1:31:17:8b:03:ce:b8:b6:89:64:f4:
f6:f6:09:3a:57:04:34:b6:9e:c7:db:7a:47:eb:9f:3e:f5:00:
9b:14:d8:c5:58:15:e5:f1:06:8f:b8:1e:1c:21:6e:fe:1b:27:
5b:09:e1:11:69:43:38:27:e4:23:e3:2a:d5:3b:c3:a8:57:8f:
2c:c4:df:7d:26:2f:e9:c9:9f:4c:7e:33:36:22:72:f5:a9:23:
d9:12:63:1c:10:d9:7e:11:16:82:4c:14:6a:e1:a3:44:cc:7f:
d4:0c:91:00:87:af:ab:6d:5d:70:dc:21:03:d1:50:f5:e6:79:
3e:b8:50:02:dc:b6:b9:92:cd:78:2c:98:d2:3c:95:7d:e8:93:
ce:a8:d1:3d:47:4e:70:de:91:d1:67:e8:d8:1d:8d:c8:0c:d5:
e7:92:76:be:1d:81:a4:10:06:3e:4f:00:6c:75:3e:ee:50:d5:
be:79:6f:35:b3:16:3f:38:4c:d7:d3:99:5f:f6:ad:0e:d1:bf:
03:55:2a:0c:6b:a4:01:5b:b7:59:27:62:96:50:14:ad:e8:af:
66:28:97:3c:73:be:e6:aa:60:7a:6b:ea:14:a0:01:97:b0:9a:
85:21:1b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:46 2025 by rpki-client