Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json)
Hash identifier: Pm+L2QD5/GPqdaRTsnWva3rT9m/CV4cccJo17jkn+/Y=
Subject key identifier: 1E:F8:BB:B9:02:53:C5:81:5B:3E:44:8F:61:0B:DD:FC:9F:5E:40:17
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 0197B8FD34C86C17E0EB1EB0D6ECA6433488
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
Manifest number: 11EF
Signing time: Sun 29 Jun 2025 00:01:31 +0000
Manifest this update: Sun 29 Jun 2025 00:01:31 +0000
Manifest next update: Mon 30 Jun 2025 00:01:31 +0000
Files and hashes: 1: V4HzyqT3UdFuM-GyIseILy4xTfQ.roa (hash: 1TwXBA5f5XgP5uZG5yeFX6kZqTX4W9t72jbcfsBpAgw=)
2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: 6NJzNc/iVC1FVnuOV2BDZc19uW6UsTllzOdjQmPTx34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:34:c8:6c:17:e0:eb:1e:b0:d6:ec:a6:43:34:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: Jun 29 00:01:31 2025 GMT
Not After : Jun 30 00:01:31 2025 GMT
Subject: CN=1ef8bbb90253c5815b3e448f610bddfc9f5e4017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:56:13:f1:71:c4:d1:4e:c7:9d:43:2e:7e:87:
67:02:be:a0:90:b4:c1:a3:77:0a:d3:7e:39:7c:c7:
68:47:bf:aa:7d:57:32:7c:4d:08:95:35:6d:5c:23:
08:85:81:73:c9:5d:8a:95:53:d0:0b:1b:3e:63:fb:
1f:20:db:cf:86:5d:e7:86:f4:67:cd:62:5a:54:a0:
d1:4b:ef:8c:87:05:32:93:d1:0d:33:35:b4:74:fe:
61:1b:bc:27:8e:de:49:6f:ed:24:9d:be:82:d7:82:
5f:e2:9d:79:4b:8a:4f:a9:6f:62:3c:5b:75:08:53:
8b:4b:82:6f:9d:ee:78:d7:17:f9:fa:c8:00:ed:20:
45:3b:de:a9:b6:ac:ed:03:e7:e1:5c:37:86:e1:f7:
2e:76:9b:d1:e6:d6:c6:16:9b:9d:94:83:71:fe:b5:
7b:98:92:2a:62:92:07:0e:4f:09:07:27:a9:7d:e2:
07:ce:62:73:d5:d5:7a:fc:d3:f2:88:e5:d5:be:24:
28:cc:69:77:41:ca:78:1a:45:84:e6:12:8a:af:cb:
ac:be:fb:53:2c:00:52:71:94:71:d8:d0:eb:7f:eb:
7c:58:b3:65:0d:2a:38:a3:9a:aa:67:4c:93:9c:f8:
46:6e:1c:89:cd:62:21:c7:40:eb:25:53:f1:d0:bf:
dd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F8:BB:B9:02:53:C5:81:5B:3E:44:8F:61:0B:DD:FC:9F:5E:40:17
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:3a:ab:bd:ed:57:5f:72:ed:63:c4:cc:4f:f5:d3:0d:08:0a:
ea:5a:8b:ba:1f:b8:28:da:12:83:0d:db:81:5d:d8:88:8c:e4:
c7:54:cf:9d:f5:24:ea:13:68:4a:4f:72:33:86:c5:c8:60:12:
c0:f7:a6:16:e1:2d:0a:5a:99:0a:6f:ac:a8:59:cf:98:a4:5e:
02:e5:db:d2:7c:40:d1:6d:f1:f8:d8:c1:4b:14:a8:be:81:a9:
47:c5:ff:d4:8f:ed:f8:e1:00:a2:6c:ca:90:57:f7:7a:5d:c6:
91:fa:1f:ff:5f:42:d8:a4:e4:2b:a9:bb:de:76:53:d0:9f:6f:
8d:86:9b:e1:f9:89:f0:e5:82:fd:79:9a:df:4a:b1:f4:11:77:
b4:5a:1c:86:3c:8f:ae:9a:89:fe:99:5d:3c:d0:f0:98:11:32:
75:38:1e:c4:fb:6f:7a:cf:e1:06:aa:5c:ff:85:63:a8:4e:53:
ee:0e:76:3b:3a:f8:6a:b7:db:cb:d5:98:67:26:33:d6:b5:02:
25:da:b3:2f:b8:2a:72:68:9f:4f:51:02:77:93:77:ae:d8:32:
84:5a:31:30:ce:86:3d:8f:21:2e:d1:a5:71:a3:ca:65:98:73:
7d:7d:83:ed:91:0c:8a:d4:88:f9:00:b3:52:ca:5a:35:7b:d8:
eb:95:64:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:56:33 2025 by rpki-client