Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: +9/F3tBs8j+FRlbkByzTiNh21aQlHVbzRqkEZIvy4x8=
Subject key identifier: 0E:41:33:F4:B6:73:D8:E8:95:5F:49:68:E6:E5:35:7F:A1:00:A3:3E
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 0198D4E0BF20E3BD611FB281CD7572750C0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 09E6
Signing time: Sat 23 Aug 2025 03:02:35 +0000
Manifest this update: Sat 23 Aug 2025 03:02:35 +0000
Manifest next update: Sun 24 Aug 2025 03:02:35 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: gVFQ4fH+Spy6aM9LVUamz9+c+Y9/OnVpcQD3it0xmcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:bf:20:e3:bd:61:1f:b2:81:cd:75:72:75:0c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Aug 23 03:02:35 2025 GMT
Not After : Aug 24 03:02:35 2025 GMT
Subject: CN=0e4133f4b673d8e8955f4968e6e5357fa100a33e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:27:36:23:e1:21:b4:e6:7e:b0:7c:c7:b2:5c:
7c:90:7c:37:ff:85:13:6e:6e:bf:19:c2:67:51:63:
9d:fc:40:f6:e4:7e:52:49:a3:1a:33:b4:77:fb:a8:
5d:a7:44:2b:71:4d:bf:3c:93:92:27:a8:dc:d9:38:
68:af:00:65:6e:8b:40:c3:5e:56:de:58:da:81:5b:
35:c4:65:ed:69:e0:c4:be:ab:94:65:90:e3:3b:90:
ce:fc:bf:db:31:9d:80:92:26:07:37:f9:34:27:b5:
53:9d:2a:8f:99:b5:df:f1:f1:fb:25:32:e6:f3:49:
bf:4b:50:71:25:d1:c3:f4:67:79:07:23:4a:d3:8e:
dd:f8:47:e6:f0:d6:fc:3d:51:50:4e:ec:bb:53:61:
ce:be:05:17:36:4b:13:b8:25:c8:76:70:46:30:44:
52:dc:99:9c:e6:56:b9:0a:ae:ca:b3:61:19:ae:b6:
92:3c:c9:62:3f:60:80:66:24:f6:41:eb:cd:22:32:
5c:a8:dd:5a:a1:db:e7:18:f1:a3:e3:aa:48:4b:4e:
38:58:49:2f:7e:3b:b6:65:0d:69:59:3a:97:56:31:
0f:eb:46:01:22:0b:36:d5:72:76:57:c4:0b:5b:38:
90:09:b6:bc:11:c6:19:c8:77:7e:a4:4d:59:f7:d3:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:41:33:F4:B6:73:D8:E8:95:5F:49:68:E6:E5:35:7F:A1:00:A3:3E
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:fb:78:09:26:99:56:9a:b8:80:5d:24:2b:32:f9:2b:16:35:
66:c7:ec:40:00:fa:96:0d:24:b3:d5:be:ce:9f:76:6e:b1:3e:
5f:cc:de:d2:67:4d:86:db:6b:b0:79:f7:04:06:1d:ad:3c:1d:
48:2d:f0:93:43:5c:c8:73:8f:8b:2d:28:d2:fb:62:56:98:81:
1b:ac:8c:2f:6c:c7:27:b1:f0:8c:03:12:aa:7f:62:36:9d:e4:
79:28:20:6c:44:82:97:0d:bf:cb:c2:c2:81:bb:c4:62:90:3c:
41:d4:10:e1:81:bd:d0:32:71:9b:95:cd:8d:f5:95:e3:c7:63:
92:ed:91:8f:82:6b:21:e4:70:24:95:8e:fd:66:d4:f5:1a:16:
0a:91:3d:53:f6:92:2d:03:40:f9:01:87:41:e1:f3:c2:8e:9c:
d6:83:05:f6:c3:ce:67:99:81:02:75:61:2e:1e:e1:59:47:b9:
fe:3d:90:e9:cc:7b:f1:92:3d:52:21:45:95:b0:2a:5e:fe:53:
30:78:39:de:3b:81:f4:84:19:44:90:b1:4d:04:14:02:9b:aa:
f2:9e:eb:cb:5e:bd:6b:58:3d:e6:ca:2a:d7:16:59:c0:0d:2a:
b4:e1:c6:53:5d:0d:97:a6:f5:b1:8d:9c:d5:d9:2e:1a:d6:a6:
a7:e9:56:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:07:29 2025 by rpki-client