Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: MAKIqOs7edU82Em8z6JbYaBuSLK3uanqMCc/AQ9TZdA=
Subject key identifier: 83:9A:25:C8:6B:7F:F0:25:50:F8:06:DE:43:C2:39:24:0E:D4:C2:23
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 019885B223E2580A29E8AB5DA049F4047187
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 09BD
Signing time: Thu 07 Aug 2025 18:01:40 +0000
Manifest this update: Thu 07 Aug 2025 18:01:40 +0000
Manifest next update: Fri 08 Aug 2025 18:01:40 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: 2h0JIYJaGwSHpYjYQmZFT2Wz2J0M3ScsfwuIZ25OdmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:b2:23:e2:58:0a:29:e8:ab:5d:a0:49:f4:04:71:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Aug 7 18:01:40 2025 GMT
Not After : Aug 8 18:01:40 2025 GMT
Subject: CN=839a25c86b7ff02550f806de43c239240ed4c223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f4:e0:f3:2a:db:c9:3f:e2:a6:95:a6:40:d5:
01:47:c8:23:cc:23:41:58:20:a7:01:36:c3:04:33:
82:e5:5d:cd:1f:8e:f4:4c:d2:7e:de:75:f1:b9:64:
dd:a6:a6:fe:4f:77:b2:45:9f:06:9f:80:2f:db:7d:
38:9a:8d:0d:cf:4d:97:ef:83:4b:eb:5a:0a:16:71:
9a:bf:35:c3:4c:77:1e:f5:57:50:92:1b:ee:ea:d7:
b5:6f:7f:4b:9a:17:b4:6b:4e:5c:47:c8:dc:9c:bb:
e0:a7:17:c6:1c:98:42:be:23:19:1d:70:12:59:e3:
c5:04:60:d0:5e:25:49:7f:6c:4b:0f:ee:23:e3:be:
1b:6b:df:0a:af:f6:f8:04:c4:60:ab:46:9d:ef:ce:
df:38:28:07:79:a8:aa:91:80:80:47:96:5d:35:8c:
f9:80:aa:84:af:38:31:a0:61:01:9a:d0:56:42:ad:
16:29:3b:9c:a6:ff:99:65:f8:e9:10:d7:82:a6:0a:
ee:91:c2:28:e1:9d:cb:50:d2:28:e9:2e:d7:ec:f1:
d6:05:a7:22:2c:e0:aa:fa:bf:cf:0b:da:fe:3c:54:
36:1d:57:c7:52:ca:0a:bb:a5:12:68:2c:d8:41:e9:
45:84:05:41:f8:c2:7d:17:65:97:8d:78:98:85:b0:
4b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9A:25:C8:6B:7F:F0:25:50:F8:06:DE:43:C2:39:24:0E:D4:C2:23
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:f3:d5:ff:b7:3b:3c:1b:d5:d9:0c:1e:ae:ff:9c:02:0b:cc:
03:01:1b:95:b4:d9:75:af:25:a0:e1:1b:c7:07:20:14:71:c7:
c4:0f:c3:f1:3f:a4:0d:83:f6:ac:b1:54:ab:ca:55:09:bd:e9:
30:84:57:86:13:81:47:2f:bb:96:29:18:8c:86:c6:d6:19:4f:
67:72:1b:45:58:71:36:94:18:90:42:e1:1d:bc:ff:d3:60:95:
9c:55:e4:9e:d9:18:37:e8:36:de:10:6f:0b:f9:01:d4:18:a2:
65:17:00:3b:fd:ed:87:85:4e:0b:1d:98:69:43:38:c2:51:57:
1d:27:8e:c4:d8:dd:fe:22:6a:2c:02:d5:19:d7:48:f5:4b:2f:
c5:24:7b:f3:5e:d8:65:96:fe:cb:dc:59:86:55:cd:b2:9d:60:
55:52:e9:b5:f8:bb:15:2f:6e:52:f5:22:94:a8:4a:20:2e:f6:
6e:9d:de:e4:64:73:34:6b:86:35:ae:25:fa:d0:e9:eb:5d:88:
1e:ce:64:9c:af:01:ff:60:95:79:ac:fb:78:5c:91:f4:b3:b8:
a2:4b:3a:7b:53:b6:a3:7a:b1:09:4e:4e:ce:3f:0d:c0:e4:96:
60:a6:8b:f7:5b:34:78:89:30:bc:fd:cb:26:8d:e0:00:ee:9b:
5a:c7:f6:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 23:58:59 2025 by rpki-client