Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: H9mTnEibNDVJHL6lAHw4kgzVu6jkeBApWMLwApbczEE=
Subject key identifier: BF:9F:B7:9D:0D:DE:CA:87:21:9D:64:CD:8D:12:A3:B4:4C:8C:C6:D3
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 01974A0CE18060B2432A6900A47417743B69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 11:00:47 +0000
Manifest this update: Sat 07 Jun 2025 11:00:47 +0000
Manifest next update: Sun 08 Jun 2025 11:00:47 +0000
Files and hashes: 1: RIDaaDvlCW6kZ_Qmkvg7iHhvkxs.roa (hash: TtEPT7gUdS6PVf0+fJoFxhyGOnl72shQIlFVnXWjJd4=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: 8wkQsKnPn5PPfrdndNfzAn0EbdANhwUmZUKVmDc/AbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e1:80:60:b2:43:2a:69:00:a4:74:17:74:3b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Jun 7 11:00:47 2025 GMT
Not After : Jun 8 11:00:47 2025 GMT
Subject: CN=bf9fb79d0ddeca87219d64cd8d12a3b44c8cc6d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b0:2d:84:c4:c0:c9:38:07:38:6f:a0:1f:32:
66:94:c6:61:b5:5c:c1:2a:71:89:c1:c5:80:fb:0b:
67:1f:79:7d:8c:7a:db:ed:36:76:8a:55:27:fb:06:
17:9f:57:fc:2d:9f:79:4c:41:fd:b8:59:c2:fc:8d:
29:30:8c:70:79:a1:3b:b0:5c:42:40:e6:70:2d:3b:
60:a6:b9:32:6d:81:10:84:ef:5c:03:5b:c9:75:81:
cc:df:7b:41:65:91:1d:22:d5:0e:55:86:42:a1:89:
42:2b:e9:55:b5:5b:52:76:f2:46:02:89:5f:ff:b5:
0d:a9:03:14:d9:01:29:b0:c7:8f:11:d4:0a:9a:59:
ec:80:e1:97:ae:f6:e0:13:16:82:81:33:63:48:d0:
7e:22:5b:a1:81:ea:14:e3:8b:f3:e6:19:a3:e6:bf:
5a:86:08:1f:07:fa:c8:64:20:e0:c6:dc:a0:15:45:
93:86:59:0b:45:b2:25:bd:56:c8:ad:da:f0:29:4c:
d0:2f:5e:05:4c:9b:a8:f1:90:2a:47:26:d1:49:fe:
98:7c:25:84:47:68:2a:28:d6:85:49:3f:53:85:51:
79:09:af:0f:82:9a:6a:4a:37:b8:d1:c7:96:02:d2:
21:e7:85:0c:9d:bb:cc:f1:9f:52:d1:8d:9b:08:60:
87:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9F:B7:9D:0D:DE:CA:87:21:9D:64:CD:8D:12:A3:B4:4C:8C:C6:D3
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:7a:92:f9:bd:4e:0d:22:34:f9:95:92:16:1e:ea:25:fb:0b:
44:e4:a2:1d:77:82:9a:72:36:46:a6:3d:90:24:7a:96:0b:6d:
59:ab:9e:43:e1:2f:48:45:ea:eb:27:8c:50:79:23:df:8e:81:
4e:d1:2b:0d:cd:10:1f:9a:e7:a8:81:52:c6:83:9b:23:f4:84:
f7:5f:5d:9b:b1:c9:a3:b6:01:e5:2a:ae:e0:13:9e:68:dd:e8:
22:d6:60:4a:b2:47:f0:e0:6e:1f:52:73:62:81:ac:bf:5d:64:
16:f9:f6:99:f9:27:5a:b0:ee:eb:8e:ed:cb:d8:9f:c0:87:60:
78:3a:a2:9b:5f:ea:65:6a:fb:9a:09:16:63:44:af:6d:92:f2:
d2:95:7c:47:5c:b7:79:89:3d:2e:d0:ca:54:61:2c:8c:4e:e3:
75:51:9b:c3:88:f5:fc:76:c9:21:29:3c:b2:a0:51:07:2a:31:
d6:a2:c8:2b:0c:a3:4c:a1:9e:64:88:93:e5:34:e2:51:b5:16:
c7:5e:a2:f0:52:01:83:5f:b8:9b:32:27:64:df:18:51:54:e3:
e0:42:2b:12:73:b1:d5:5f:f4:e8:b9:a2:f7:67:f0:e1:33:23:
15:a4:c1:b0:4e:f8:fb:a1:73:71:be:9f:cf:50:e0:9f:26:66:
3b:be:44:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:47:31 2025 by rpki-client