Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
File: hkEGVA8wqdzfjvm-cv_vi9inLlw.mft (raw, json)
Hash identifier: JG12IMMkc+ma8QX44tI78wVyJxPaKWeryc3Xi05pKUs=
Subject key identifier: 8E:68:8D:D1:D8:2D:E6:5B:C9:AA:C1:14:5F:6F:F6:AE:97:44:53:E7
Authority key identifier: 86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C
Certificate issuer: /CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c
Certificate serial: 01984A4182478FDFA817FB982DDD93721398
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
Manifest number: 1604
Signing time: Sun 27 Jul 2025 05:01:03 +0000
Manifest this update: Sun 27 Jul 2025 05:01:03 +0000
Manifest next update: Mon 28 Jul 2025 05:01:03 +0000
Files and hashes: 1: JzMC6J-x27UinyjGPkrtJtPKKbM.roa (hash: MM6S0DzqbOgEC1Eeh2U4n74HZ5Ntf2dFAQc2wkIxZDw=)
2: hkEGVA8wqdzfjvm-cv_vi9inLlw.crl (hash: /+ONvxTHxJEUw4JgwcB6ip/L9W4G9m9jf5Labe4+1Rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:41:82:47:8f:df:a8:17:fb:98:2d:dd:93:72:13:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c
Validity
Not Before: Jul 27 05:01:03 2025 GMT
Not After : Jul 28 05:01:03 2025 GMT
Subject: CN=8e688dd1d82de65bc9aac1145f6ff6ae974453e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:61:6c:63:24:b4:a3:48:7f:a6:95:83:39:be:
d7:f2:6d:bb:3a:d4:d6:59:2b:bb:36:a6:12:88:52:
3b:1a:3e:dc:04:01:79:8c:c3:1e:8d:8e:c2:77:5c:
eb:85:87:42:f6:57:4d:b6:f2:58:ea:0d:ed:0f:86:
4d:52:26:ba:cf:19:11:0b:c9:ef:8b:c6:61:1f:44:
18:a8:3e:d0:de:9a:f1:9e:05:0c:e8:2e:cc:47:d0:
3d:b8:90:9f:ae:7d:e6:c1:c6:30:96:e1:ac:55:6d:
74:97:b7:ca:bc:5f:15:75:31:2b:40:63:0e:d6:6c:
54:5e:58:4c:70:48:7b:c9:24:fe:27:da:a9:de:bd:
25:d3:25:22:86:81:03:10:30:61:ff:44:62:4d:af:
b4:4e:1d:d5:48:68:84:3f:97:41:d6:cb:d7:52:35:
c2:6d:fb:80:48:25:1b:7e:b9:94:bb:a7:7f:d8:80:
b3:68:63:d2:15:34:89:2d:6c:93:da:dc:de:f1:78:
16:51:cb:1b:65:23:c5:45:b0:9d:93:bc:14:42:be:
5c:f0:ab:c5:01:e7:b2:d5:aa:cb:23:3a:e2:31:d0:
25:fe:d6:d9:70:a9:b3:01:2d:9f:89:2f:42:aa:48:
42:de:23:80:4a:f2:28:f0:2a:88:d2:1f:ec:b5:56:
78:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:68:8D:D1:D8:2D:E6:5B:C9:AA:C1:14:5F:6F:F6:AE:97:44:53:E7
X509v3 Authority Key Identifier:
keyid:86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:96:b0:10:9f:6d:f0:83:a2:15:a3:1f:0d:24:66:46:02:b1:
9f:8b:84:d7:6b:91:a4:45:2d:62:84:dc:3e:68:1c:78:e1:10:
c4:c8:e4:fd:a3:2c:76:a2:79:be:29:ee:db:f8:7d:30:12:b8:
b7:a0:ba:04:04:7e:f2:32:5f:0d:4c:17:11:9c:e4:0e:ad:bd:
32:28:0b:8f:c3:0d:7d:f9:63:ff:2d:60:23:b1:9f:a2:4e:09:
32:c3:97:3b:6c:31:f0:81:2d:d4:96:41:ed:3c:09:82:3a:79:
c1:e6:d3:c8:7e:15:0d:bc:8e:c8:97:10:b0:de:42:cd:ff:bc:
0e:3f:3b:ba:39:df:b0:bf:11:18:d0:a9:ae:93:17:7f:52:ba:
35:1a:a0:42:df:52:c2:d3:1b:a0:30:94:23:96:ba:29:0e:e8:
9d:78:03:c1:19:48:6b:a8:0e:9b:3b:dc:94:4d:45:63:82:c0:
01:7a:7b:ca:10:15:23:03:dd:df:35:62:31:bc:2c:44:9f:fe:
e7:35:f1:11:1c:07:94:00:1c:73:e7:31:44:fb:20:bb:ff:a7:
99:c5:69:a2:c7:8b:ce:48:e9:e8:82:8f:90:bd:ee:b6:33:8d:
d1:f6:3f:de:32:ed:ab:1f:dc:55:22:04:bb:85:19:73:63:7b:
a9:92:ef:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:12:17 2025 by rpki-client