Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: zG4zSGfp3EgmtfJ7eKdcU8t7OAJ95XoIKGsaWG0dktc=
Subject key identifier: 2E:CC:00:DC:05:A4:3C:C3:CE:22:E5:8E:29:C9:59:BE:CA:9E:46:DF
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 01984AE60651C159B903F609E33AA60622CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 1604
Signing time: Sun 27 Jul 2025 08:00:45 +0000
Manifest this update: Sun 27 Jul 2025 08:00:45 +0000
Manifest next update: Mon 28 Jul 2025 08:00:45 +0000
Files and hashes: 1: RIDaaDvlCW6kZ_Qmkvg7iHhvkxs.roa (hash: TtEPT7gUdS6PVf0+fJoFxhyGOnl72shQIlFVnXWjJd4=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: oixV3CpaUUGM33fPXe+lP7a9wDZExYqkHE0U8VrSxVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:e6:06:51:c1:59:b9:03:f6:09:e3:3a:a6:06:22:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Jul 27 08:00:45 2025 GMT
Not After : Jul 28 08:00:45 2025 GMT
Subject: CN=2ecc00dc05a43cc3ce22e58e29c959beca9e46df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:4f:ca:99:48:c6:8a:7f:c2:fa:5d:2c:61:
91:96:39:f4:00:5a:f8:d8:32:5b:df:b1:11:60:e5:
fc:b7:4a:bb:a7:62:cf:20:ae:f3:34:63:a7:c9:7d:
57:24:3a:c0:b1:0b:81:9e:57:6c:f5:38:98:5e:b7:
b2:f4:59:0c:15:e7:ac:76:7d:61:b1:b9:02:8f:4b:
da:41:6b:d1:1b:69:b1:9d:1e:a6:95:27:9b:b7:2e:
5f:d8:46:0c:0e:e0:d4:eb:bd:96:f7:78:49:05:0d:
eb:1c:6c:2e:82:5a:c5:e3:a5:2c:ca:3b:55:ab:9d:
af:11:66:63:6d:fd:2e:18:df:24:c3:a8:67:95:27:
e2:9a:92:98:cb:79:ac:2d:e6:55:8f:73:24:76:6d:
95:fd:02:99:67:41:c3:2a:c2:19:8b:25:1a:25:7d:
d0:72:42:32:21:c4:ef:0d:5b:67:02:c1:61:d6:ff:
ff:ac:b0:60:a2:3d:0c:77:d3:ce:3e:95:8d:1d:c2:
50:8c:b0:8f:bb:1c:89:17:2d:df:ee:6e:67:ab:81:
c5:d0:12:0a:0d:d8:07:0f:12:49:d2:23:5a:61:d7:
0a:98:f4:e7:dc:61:30:a2:3b:d8:b3:d1:88:f1:9a:
b4:84:16:29:1d:45:e8:59:0c:bf:bb:14:96:7d:50:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:CC:00:DC:05:A4:3C:C3:CE:22:E5:8E:29:C9:59:BE:CA:9E:46:DF
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:22:3f:bb:8d:bb:d3:cf:73:4f:c4:99:eb:78:b0:e1:56:0a:
37:ed:13:a8:8f:59:9e:70:3b:53:e6:fe:1f:46:95:8b:42:83:
29:8c:4b:cd:cc:62:e5:c2:72:06:4c:62:35:b4:08:f8:18:6a:
18:eb:9e:f8:12:54:54:8d:74:90:63:5f:df:3b:0f:a4:8a:b9:
05:86:3e:04:14:9d:dc:dc:14:e9:a6:ae:3d:17:6e:47:7d:14:
19:0e:06:a9:f6:69:c3:e1:09:83:5b:f2:07:db:6d:38:11:42:
5c:ab:91:c2:d1:09:a1:9a:8b:89:df:99:97:16:f5:09:0a:c9:
c4:f3:81:0f:55:38:f2:4e:2d:6b:ec:4e:db:6a:a1:ae:ef:36:
a0:a2:7e:ba:7c:6d:0e:d3:d5:e0:cc:05:78:91:92:63:a3:d8:
db:ef:4b:36:56:b9:17:97:e1:e0:b8:a5:74:eb:ae:9f:47:b9:
09:f0:49:37:33:3b:fd:fa:3c:90:2d:8e:b2:7c:0f:3e:33:e0:
b2:65:5a:6f:39:3f:8c:b6:7b:16:05:2f:b2:7e:26:54:e4:95:
8a:ec:bd:0a:dd:fe:2e:e4:2b:35:d6:9d:fd:12:08:07:a6:14:
55:42:e0:18:81:5f:e4:41:f7:3d:25:a7:7c:eb:8e:1d:59:66:
96:d2:77:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhK5gZRwVm5A/YJ4zqmBiLNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YTRhY2EwMjBmYjJiZGM5M2E0NzI2NmU4N2VjNjdjZGM4
ODU3YzUwHhcNMjUwNzI3MDgwMDQ1WhcNMjUwNzI4MDgwMDQ1WjAzMTEwLwYDVQQD
EygyZWNjMDBkYzA1YTQzY2MzY2UyMmU1OGUyOWM5NTliZWNhOWU0NmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEFPyplIxop/wvpdLGGRljn0AFr4
2DJb37ERYOX8t0q7p2LPIK7zNGOnyX1XJDrAsQuBnlds9TiYXrey9FkMFeesdn1h
sbkCj0vaQWvRG2mxnR6mlSebty5f2EYMDuDU672W93hJBQ3rHGwuglrF46UsyjtV
q52vEWZjbf0uGN8kw6hnlSfimpKYy3msLeZVj3Mkdm2V/QKZZ0HDKsIZiyUaJX3Q
ckIyIcTvDVtnAsFh1v//rLBgoj0Md9POPpWNHcJQjLCPuxyJFy3f7m5nq4HF0BIK
DdgHDxJJ0iNaYdcKmPTn3GEwojvYs9GI8Zq0hBYpHUXoWQy/uxSWfVBQtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC7MANwFpDzDziLljinJWb7KnkbfMB8GA1UdIwQY
MBaAFISkrKAg+yvck6RyZuh+xnzciFfFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi82YmIyMjctNWIzNi00ZjJhLWExYzUt
OWVmMzZkMjUxNTE3LzEvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi82YmIyMjctNWIzNi00ZjJhLWExYzUtOWVmMzZkMjUxNTE3
LzEvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcSI/u427
089zT8SZ63iw4VYKN+0TqI9ZnnA7U+b+H0aVi0KDKYxLzcxi5cJyBkxiNbQI+Bhq
GOue+BJUVI10kGNf3zsPpIq5BYY+BBSd3NwU6aauPRduR30UGQ4GqfZpw+EJg1vy
B9ttOBFCXKuRwtEJoZqLid+Zlxb1CQrJxPOBD1U48k4ta+xO22qhru82oKJ+unxt
DtPV4MwFeJGSY6PY2+9LNla5F5fh4LildOuun0e5CfBJNzM7/fo8kC2OsnwPPjPg
smVabzk/jLZ7FgUvsn4mVOSViuy9Ct3+LuQrNdad/RIIB6YUVULgGIFf5EH3PSWn
fOuOHVlmltJ3gw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 10:25:03 2025 by rpki-client