Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: QrhCysEnBOZSsKJUdFkeDiQofISSOib0L667vxx8MrA=
Subject key identifier: D8:6A:6F:DC:20:5D:92:86:0B:5C:D5:0D:92:DA:BA:5F:2B:97:E2:1B
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 0199334926C85DE2764351ED17CB498CA341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 168E
Signing time: Wed 10 Sep 2025 11:00:56 +0000
Manifest this update: Wed 10 Sep 2025 11:00:56 +0000
Manifest next update: Thu 11 Sep 2025 11:00:56 +0000
Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=)
2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: 8Pl0SQ0CHyZRq+gEwf2KBTRrIfXnBg5OfKZV1/C2VjA=)
3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=)
4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=)
5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:49:26:c8:5d:e2:76:43:51:ed:17:cb:49:8c:a3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Sep 10 11:00:56 2025 GMT
Not After : Sep 11 11:00:56 2025 GMT
Subject: CN=d86a6fdc205d92860b5cd50d92daba5f2b97e21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a3:e1:75:d8:74:94:24:18:ee:5a:7a:1b:90:
f5:da:62:90:1d:c2:1a:0c:1a:e9:9c:ad:3a:01:3d:
c9:da:76:ec:fa:24:5f:ff:91:66:0a:8a:16:5e:3e:
cc:08:1c:d9:d8:28:42:a3:40:50:f9:dd:d6:88:3a:
10:2f:c4:17:23:a7:3b:31:4f:bf:01:83:e9:e6:0e:
aa:25:31:05:53:7d:f2:43:6f:6f:22:98:f0:de:61:
6f:ac:b5:e3:ce:3b:aa:f6:2d:54:65:46:c5:00:41:
db:73:e5:4a:dd:c4:8f:2f:04:8b:9a:7f:27:07:e9:
a3:f0:9e:da:7d:4a:66:50:aa:aa:be:27:0b:23:29:
a5:f2:12:6f:cb:94:20:1e:05:d8:f6:16:f3:45:74:
bb:27:b4:2e:23:49:b4:72:05:4e:8d:86:eb:56:81:
fd:fb:69:60:15:09:89:d0:9a:13:97:2e:7e:c4:f3:
cc:f9:9c:28:98:00:54:0a:8c:60:76:85:fa:a0:0d:
8a:49:ea:a8:ec:72:e6:7d:fe:fd:6d:51:c3:bf:ec:
54:c6:24:6e:b6:57:57:26:27:90:5d:34:e6:56:b1:
75:ea:bd:c1:07:1b:e4:61:09:ab:b8:ea:cc:d7:66:
7c:ff:87:21:c7:09:39:f4:98:db:52:74:58:b5:ae:
ef:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:6A:6F:DC:20:5D:92:86:0B:5C:D5:0D:92:DA:BA:5F:2B:97:E2:1B
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:57:86:19:73:7b:d1:32:29:e5:2e:72:e5:79:3a:35:81:78:
a9:88:e8:9f:10:86:7f:e7:05:22:27:d6:09:89:30:44:51:fb:
b0:f6:cb:b0:b9:df:73:0b:e8:db:aa:2e:59:b6:05:84:cd:aa:
ed:78:98:7d:9e:9c:d9:1f:08:9d:cf:63:75:fc:8f:e6:e4:a6:
d3:0b:9e:16:a4:61:b5:51:6a:38:56:27:e6:3a:5f:83:be:08:
4d:a9:7e:77:93:f4:99:2a:d2:d1:01:51:c1:47:c8:2b:5e:07:
63:5c:c9:70:6c:93:7e:21:83:f2:d9:07:08:00:9a:ca:ba:1f:
9b:8d:a1:cc:cf:06:3a:96:ef:7d:71:b3:63:68:d0:d8:c7:76:
8e:98:8d:77:cc:3b:e8:0e:82:64:c5:e3:5a:ec:7e:0c:86:75:
b7:04:be:a5:c0:3b:cf:ab:9e:43:a0:e6:a9:4b:cc:12:38:7b:
d3:34:e4:50:be:23:4f:a2:6c:c6:6e:d2:7c:5e:02:1d:2d:a5:
ba:46:16:48:08:bd:15:c1:6e:20:b5:9d:35:18:f5:d5:d9:ff:
d6:f7:c3:9f:6b:18:e4:fb:be:15:55:a9:5f:7d:7a:4b:7c:7d:
8f:cf:32:4e:af:8c:14:6f:bd:58:49:4a:41:0e:43:78:54:c5:
22:51:1e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 19:21:17 2025 by rpki-client