Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: HV2s22/c+H9ZIN/VqhVfM8dwYcNzlI9e76ohRYC6tqU=
Subject key identifier: 8C:A0:97:37:E5:ED:B4:47:D6:40:08:3D:BA:9C:E8:64:C7:AC:60:BF
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 01988CFDEC26D19CBF4975AE0E5E5CA23C38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 1000
Signing time: Sat 09 Aug 2025 04:01:47 +0000
Manifest this update: Sat 09 Aug 2025 04:01:47 +0000
Manifest next update: Sun 10 Aug 2025 04:01:47 +0000
Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: Zp6YPSnAhVRGuBMty7a2/IpMK9cDpIGiLjWlhLD57rM=)
2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 04:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:fd:ec:26:d1:9c:bf:49:75:ae:0e:5e:5c:a2:3c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Aug 9 04:01:47 2025 GMT
Not After : Aug 10 04:01:47 2025 GMT
Subject: CN=8ca09737e5edb447d640083dba9ce864c7ac60bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bf:7d:ed:c9:da:31:38:14:10:c4:25:e0:a8:
cc:9d:14:d6:03:cb:5f:d3:50:87:04:0a:e6:eb:cb:
35:06:e7:cd:5d:ef:1d:1d:58:92:26:06:2c:01:d1:
f8:87:02:fe:c8:6b:4b:0f:f0:59:87:43:de:3c:63:
0a:a8:6a:20:f3:29:a7:ac:6a:61:0d:84:ec:2e:b7:
04:f1:ec:43:c0:9c:0d:bd:53:39:27:6e:9c:09:e1:
19:aa:bf:aa:5b:06:ae:7f:7c:4e:0b:70:0b:fc:6f:
60:83:5e:a2:48:e9:49:e8:f2:af:b6:b8:1c:9a:d7:
4a:15:31:dc:00:db:71:3d:6b:e1:d3:0f:8c:e8:28:
4d:67:18:99:1c:c1:7a:ae:48:dd:19:17:0c:f3:73:
41:79:29:c3:83:6a:8c:a5:70:45:67:3a:ce:3f:28:
18:cc:08:46:a6:82:10:af:6b:c2:f1:5e:53:8d:f7:
9a:0b:a0:56:87:c3:1f:75:bb:f2:40:3a:18:e6:df:
fb:50:06:5d:e7:1e:67:9f:1e:fb:e3:49:44:a8:8f:
02:a6:25:08:41:1f:98:f6:0f:15:01:d4:5c:75:3f:
45:75:51:ce:06:00:7f:66:4f:22:97:f0:1e:0c:ec:
e7:6e:c6:0b:d5:a7:fb:b3:3a:d1:79:a2:23:47:9d:
1f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A0:97:37:E5:ED:B4:47:D6:40:08:3D:BA:9C:E8:64:C7:AC:60:BF
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:4e:06:90:34:d8:6c:98:e6:70:da:67:5a:cb:17:a3:27:d0:
76:94:20:ac:9a:cf:8a:08:d2:22:2e:e0:ab:53:54:23:be:58:
20:de:5e:21:19:d6:04:36:da:55:b9:3c:d5:b1:a9:ec:9c:f8:
85:9d:f5:34:6e:01:02:97:40:78:97:1a:69:c9:2c:47:cd:e6:
fe:b4:01:44:16:20:f5:fc:33:d1:4a:db:24:7a:e5:33:43:e9:
11:45:94:e8:bc:63:81:53:8c:00:46:0b:f9:55:0a:2e:08:03:
e7:cb:c3:ff:4a:17:c4:14:5b:27:c7:0c:18:c1:eb:43:36:3f:
e3:02:f1:e2:fc:30:84:16:a8:0d:46:2a:2f:9f:0b:52:51:f7:
15:17:f8:23:bd:a5:46:2d:be:cf:cb:fd:4c:73:c7:84:cd:a7:
0f:e8:fc:f4:6e:9b:b4:09:e2:9c:9d:75:8c:56:40:b7:55:86:
dc:31:98:90:6f:6a:75:09:32:c9:9d:ee:d3:96:4b:7b:2f:7e:
7d:27:45:6b:92:a5:b1:5e:d1:6e:90:eb:a4:83:81:d3:66:7a:
9f:5f:ae:bb:d4:a6:4e:b9:10:b1:08:80:65:56:bd:39:69:16:
35:67:64:c4:2a:51:3b:56:ce:fd:9f:d6:be:45:73:a5:fa:60:
6c:e5:07:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiM/ewm0Zy/SXWuDl5cojw4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YTNjZjExNGJlNGZhNGM0ZmY3NmIyMThmYWQ1MGU1MTcz
OTE2MGQwHhcNMjUwODA5MDQwMTQ3WhcNMjUwODEwMDQwMTQ3WjAzMTEwLwYDVQQD
Eyg4Y2EwOTczN2U1ZWRiNDQ3ZDY0MDA4M2RiYTljZTg2NGM3YWM2MGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7997cnaMTgUEMQl4KjMnRTWA8tf
01CHBArm68s1BufNXe8dHViSJgYsAdH4hwL+yGtLD/BZh0PePGMKqGog8ymnrGph
DYTsLrcE8exDwJwNvVM5J26cCeEZqr+qWwauf3xOC3AL/G9gg16iSOlJ6PKvtrgc
mtdKFTHcANtxPWvh0w+M6ChNZxiZHMF6rkjdGRcM83NBeSnDg2qMpXBFZzrOPygY
zAhGpoIQr2vC8V5TjfeaC6BWh8MfdbvyQDoY5t/7UAZd5x5nnx7740lEqI8CpiUI
QR+Y9g8VAdRcdT9FdVHOBgB/Zk8il/AeDOznbsYL1af7szrReaIjR50fLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIyglzfl7bRH1kAIPbqc6GTHrGC/MB8GA1UdIwQY
MBaAFISjzxFL5PpMT/drIY+tUOUXORYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEtQUEVVdmsta3hQOTJzaGo2MVE1UmM1RmcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS82MDVmNDYtN2Q0Yy00NmI4LWJhYTUt
NTM5MzI5YmVkNDZlLzEvaEtQUEVVdmsta3hQOTJzaGo2MVE1UmM1RmcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS82MDVmNDYtN2Q0Yy00NmI4LWJhYTUtNTM5MzI5YmVkNDZl
LzEvaEtQUEVVdmsta3hQOTJzaGo2MVE1UmM1RmcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApU4GkDTY
bJjmcNpnWssXoyfQdpQgrJrPigjSIi7gq1NUI75YIN5eIRnWBDbaVbk81bGp7Jz4
hZ31NG4BApdAeJcaacksR83m/rQBRBYg9fwz0UrbJHrlM0PpEUWU6LxjgVOMAEYL
+VUKLggD58vD/0oXxBRbJ8cMGMHrQzY/4wLx4vwwhBaoDUYqL58LUlH3FRf4I72l
Ri2+z8v9THPHhM2nD+j89G6btAninJ11jFZAt1WG3DGYkG9qdQkyyZ3u05ZLey9+
fSdFa5KlsV7RbpDrpIOB02Z6n1+uu9SmTrkQsQiAZVa9OWkWNWdkxCpRO1bO/Z/W
vkVzpfpgbOUHlA==
-----END CERTIFICATE-----
Generated at Sat Aug 9 10:41:00 2025 by rpki-client