Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json)
Hash identifier: BFEBQOEOhimiWZ6gju5/m8pcEXfQnBjsyhFyKBVvTds=
Subject key identifier: 5E:AB:F3:78:14:03:49:8A:C7:07:2A:36:12:3F:05:86:F4:87:CB:E0
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 0198D4E0893E72E8552AC1803FE7D05E2FCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
Manifest number: 1282
Signing time: Sat 23 Aug 2025 03:02:21 +0000
Manifest this update: Sat 23 Aug 2025 03:02:21 +0000
Manifest next update: Sun 24 Aug 2025 03:02:21 +0000
Files and hashes: 1: V4HzyqT3UdFuM-GyIseILy4xTfQ.roa (hash: 1TwXBA5f5XgP5uZG5yeFX6kZqTX4W9t72jbcfsBpAgw=)
2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: 4aaGrww47ZjKydCl2MyaMdJzF529nNtcglcYz/kpuJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:89:3e:72:e8:55:2a:c1:80:3f:e7:d0:5e:2f:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: Aug 23 03:02:21 2025 GMT
Not After : Aug 24 03:02:21 2025 GMT
Subject: CN=5eabf3781403498ac7072a36123f0586f487cbe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e4:ed:24:b0:f2:bf:69:90:ab:c2:d7:b6:26:
73:b4:03:ea:6e:72:2b:8e:45:e9:bc:be:ef:8e:93:
5a:7c:71:4a:7b:90:fc:4c:1d:06:2f:e5:20:d4:40:
ab:e8:06:73:3c:80:8c:66:76:e8:f8:dd:dd:06:c9:
49:9b:ff:3f:f3:f7:3e:bd:de:a5:4b:b0:c4:7d:8f:
76:9c:6d:32:17:ed:ad:92:58:33:a1:01:3f:df:4c:
65:ce:c3:d9:42:b4:1f:76:01:98:06:4f:d8:55:e0:
9d:6a:56:53:f5:86:ba:25:4e:44:0b:a0:c7:8d:f3:
e9:76:45:3e:a7:c6:3a:10:5c:f2:98:9b:a2:7f:02:
a0:37:82:2c:e6:60:69:8c:35:90:8d:6e:40:1c:4f:
aa:0c:c7:48:c9:3a:d4:cd:4a:3a:e2:33:3a:84:aa:
78:71:a5:7c:16:3e:1a:77:6b:9d:b2:32:78:f0:88:
8b:20:f5:7c:0c:0b:6e:71:35:7b:55:a7:6f:a2:54:
82:f9:d5:74:a8:d3:59:34:b5:81:fb:de:53:be:41:
f6:15:09:56:f0:2a:17:99:4e:b7:0f:53:8a:93:c1:
3b:3e:d7:e3:15:cf:15:90:e7:66:64:28:13:b7:fa:
1b:1b:42:67:47:11:f9:ad:f2:3d:1c:c6:70:6a:cd:
3f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:AB:F3:78:14:03:49:8A:C7:07:2A:36:12:3F:05:86:F4:87:CB:E0
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:82:02:4a:3d:0f:9a:fa:52:cf:58:6c:8e:e7:52:a8:f4:b3:
bf:10:ee:8d:5b:45:8d:a3:d7:9d:63:9a:36:d1:bc:9b:e0:0d:
86:2e:96:f7:89:4a:f6:85:29:26:0d:19:bc:23:85:40:2f:5f:
af:0a:34:5e:a5:6c:ac:7b:bd:db:5a:9b:35:dd:cd:23:51:b5:
30:29:5e:70:76:dc:3b:15:83:74:62:8b:db:a6:6e:6f:6d:f5:
60:c0:08:0e:2a:d4:d1:cd:d6:5b:29:bc:be:77:76:94:2a:2c:
d7:de:94:6b:13:a5:79:96:78:ff:00:21:cd:d1:b4:a6:cc:ec:
66:3f:34:ff:be:c2:b6:0f:0c:26:87:de:4b:2b:0f:aa:80:e6:
aa:a5:94:be:22:0f:d6:8f:87:9d:14:90:be:5c:03:70:5c:74:
a8:29:bd:b8:13:7b:a6:a0:d0:f1:34:2e:d1:c3:19:21:13:e3:
09:fd:b7:1d:45:12:c6:56:45:cb:f2:2d:20:25:df:fb:a5:07:
82:d7:ef:2f:3d:1f:02:b8:3a:5e:13:42:4e:a3:5d:75:ad:c3:
71:a5:8f:14:fa:a2:74:04:3b:0f:e8:a3:b2:2d:60:aa:63:9a:
c0:d1:94:da:12:c6:38:e0:69:16:df:92:27:36:61:06:37:47:
80:34:05:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4Ik+cuhVKsGAP+fQXi/OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MDI5MjQ4NjFjYmMwODhjNjU1YTg3MjUzNWE5MDMxMDhh
MDdiZjEwHhcNMjUwODIzMDMwMjIxWhcNMjUwODI0MDMwMjIxWjAzMTEwLwYDVQQD
Eyg1ZWFiZjM3ODE0MDM0OThhYzcwNzJhMzYxMjNmMDU4NmY0ODdjYmUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmOTtJLDyv2mQq8LXtiZztAPqbnIr
jkXpvL7vjpNafHFKe5D8TB0GL+Ug1ECr6AZzPICMZnbo+N3dBslJm/8/8/c+vd6l
S7DEfY92nG0yF+2tklgzoQE/30xlzsPZQrQfdgGYBk/YVeCdalZT9Ya6JU5EC6DH
jfPpdkU+p8Y6EFzymJuifwKgN4Is5mBpjDWQjW5AHE+qDMdIyTrUzUo64jM6hKp4
caV8Fj4ad2udsjJ48IiLIPV8DAtucTV7VadvolSC+dV0qNNZNLWB+95TvkH2FQlW
8CoXmU63D1OKk8E7PtfjFc8VkOdmZCgTt/obG0JnRxH5rfI9HMZwas0/mQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF6r83gUA0mKxwcqNhI/BYb0h8vgMB8GA1UdIwQY
MBaAFIQCkkhhy8CIxlWoclNakDEIoHvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUt
MGFjOWIzYmFlNmY1LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUtMGFjOWIzYmFlNmY1
LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfoICSj0P
mvpSz1hsjudSqPSzvxDujVtFjaPXnWOaNtG8m+ANhi6W94lK9oUpJg0ZvCOFQC9f
rwo0XqVsrHu921qbNd3NI1G1MClecHbcOxWDdGKL26Zub231YMAIDirU0c3WWym8
vnd2lCos196UaxOleZZ4/wAhzdG0pszsZj80/77Ctg8MJofeSysPqoDmqqWUviIP
1o+HnRSQvlwDcFx0qCm9uBN7pqDQ8TQu0cMZIRPjCf23HUUSxlZFy/ItICXf+6UH
gtfvLz0fArg6XhNCTqNdda3DcaWPFPqidAQ7D+ijsi1gqmOawNGU2hLGOOBpFt+S
JzZhBjdHgDQFuw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:17:21 2025 by rpki-client