Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
File: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft (raw, json)
Hash identifier: 5Ivy+NQzPqoP/DPmXLAH9l6qQIoEV7R1e70CwlLgFMw=
Subject key identifier: 63:05:2A:85:63:5A:92:B0:45:55:E0:BE:1B:E4:27:D0:C2:F6:D6:5C
Authority key identifier: 84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
Certificate issuer: /CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Certificate serial: 0198A15F7E77CC133E9FA7ABD202FC451CA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
Manifest number: 162F
Signing time: Wed 13 Aug 2025 03:00:46 +0000
Manifest this update: Wed 13 Aug 2025 03:00:46 +0000
Manifest next update: Thu 14 Aug 2025 03:00:46 +0000
Files and hashes: 1: BZnndlQQXrhtsi1w92QwnbcTVos.roa (hash: xdoIZn2kmQaThra2U5g+oAnP8t2eo6iub1zi69U/YhE=)
2: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl (hash: SRQj8YrXvQxHfEZoyZJ2VLYKlj4Sw/3E8AiYSoG8lIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a1:5f:7e:77:cc:13:3e:9f:a7:ab:d2:02:fc:45:1c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Validity
Not Before: Aug 13 03:00:46 2025 GMT
Not After : Aug 14 03:00:46 2025 GMT
Subject: CN=63052a85635a92b04555e0be1be427d0c2f6d65c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ba:eb:08:63:2b:c4:cc:82:8a:6c:5e:ee:a5:
15:41:69:36:92:b7:3b:54:0f:c6:ca:be:32:96:80:
c5:1d:e6:d5:2f:66:1d:7b:48:53:ec:c8:5d:1e:91:
e5:6f:c6:cf:3e:1e:9d:07:5a:41:c6:54:66:75:1e:
bc:32:47:67:f0:e3:3f:57:d1:18:44:cc:f0:7b:e0:
16:f2:88:08:0c:92:95:d4:a6:b2:c3:b7:eb:13:1f:
ca:04:81:d1:af:3f:aa:2e:9b:d1:a0:e5:81:8f:9e:
48:b4:db:73:8e:d9:44:73:f1:3a:16:05:66:a4:46:
e6:a2:d3:cc:40:e0:57:52:56:43:2f:0f:8a:da:30:
35:d9:e9:78:b9:de:dc:0a:4b:7d:aa:2b:3e:22:7e:
83:93:34:fc:26:63:6d:72:bf:4d:36:05:c1:fe:18:
1d:ea:1d:a0:1a:87:f9:d1:50:ed:84:6f:e5:e7:0f:
40:b9:b1:51:61:b4:24:2c:8f:62:a4:4f:4d:4b:6f:
5a:10:5f:ba:9e:d0:7e:80:15:be:47:87:48:12:bd:
30:68:a8:d3:7b:81:3b:fe:46:c7:6f:ba:12:35:7a:
24:64:88:30:71:0c:4d:c0:70:49:aa:5f:43:4b:0f:
72:4d:b4:41:63:51:cd:3b:99:65:ab:89:ed:17:dc:
ca:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:05:2A:85:63:5A:92:B0:45:55:E0:BE:1B:E4:27:D0:C2:F6:D6:5C
X509v3 Authority Key Identifier:
keyid:84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c2:aa:51:01:be:e5:ed:50:df:02:e0:fc:84:7a:bc:f5:21:
37:d8:3b:56:fe:87:d1:9c:c9:98:6e:49:fe:03:54:43:31:f0:
6d:4a:01:fd:55:f0:1c:c4:1b:25:1d:fc:d8:83:11:3f:94:c2:
fd:16:af:0b:08:d7:99:5b:a6:fd:ab:b4:0f:65:72:da:5e:16:
4b:d8:23:bf:e4:6e:3e:74:18:f9:ed:b6:79:41:36:e7:73:54:
2e:b5:bd:57:e4:64:b3:4d:e2:3a:89:bc:3e:49:8b:18:db:a9:
f7:aa:e8:06:0b:58:0a:8c:1a:5d:ea:cd:62:8f:b6:95:bc:61:
ce:2c:30:29:57:d2:8e:b0:e9:c8:55:63:56:1a:60:94:1b:25:
eb:1c:87:92:95:8e:00:a1:b4:f2:4d:a6:ad:29:8a:64:15:4c:
a8:48:06:a9:bd:2b:d2:8e:4b:c7:64:15:ae:87:c2:49:5b:67:
0d:ae:e2:ef:35:b7:e9:f0:fe:09:ac:60:62:c1:4d:eb:16:55:
67:b0:07:df:0d:bb:9f:6a:cd:fe:77:aa:4a:ca:85:f2:46:e2:
04:3a:b6:e9:d3:9c:4b:6d:63:49:6e:72:41:1d:ba:83:34:25:
43:9a:64:fd:f4:27:e5:12:d1:05:cd:72:93:71:a6:fd:ea:18:
87:df:e5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:56:20 2025 by rpki-client