Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json)
Hash identifier: 1FA4xYyO8+0DYFa1UJLFKZakilllB87DGIVEN/EO2Qw=
Subject key identifier: AA:0D:4A:DB:C6:08:83:8E:D8:6A:76:F2:FF:AD:A2:EF:B4:B7:E2:7A
Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77
Certificate serial: 01976EF4B8F0F278971770B9FB94B2288FD1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
Manifest number: 159D
Signing time: Sat 14 Jun 2025 15:00:21 +0000
Manifest this update: Sat 14 Jun 2025 15:00:21 +0000
Manifest next update: Sun 15 Jun 2025 15:00:21 +0000
Files and hashes: 1: IZeoqEY95eSVV0eYYLX8T3tHlCs.roa (hash: LO4oh4VYMguVhAQpzzJsbYN82/uMVEn2vgRLSpasT1s=)
2: LJnxaD0i6KMHQc1A1Myl7JzH7gk.roa (hash: BOqHp3/8Lrk2VNXTgZj56poMzxkbv3v/wNmy6/SirSw=)
3: NewZ8pp4liRlRqK_bUM9ux7lUdY.roa (hash: e2V20fh5Bna/npvAqL/4q48RnUBDa1PMa1ud3KkuSzU=)
4: OMAWMgjFkntxY9hjh7x9HjopsUQ.roa (hash: fC4Wynjh9RIf9v3k1CSQsuZtxFupNj1veyw3ZlhI/Jw=)
5: QHrhoLDtZR3zPElOqqmMq3qzkao.roa (hash: NXLg9El+SZKbOxc9Fad+2P9R3XvjaMUu4aKcgfvxLco=)
6: VTgIeAjnu6QDITPutn3ZYiX28hw.roa (hash: 1qNSFP6+K7IEMjkOk6A/QLlgZfO6RHOCGRUYacl+A9I=)
7: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: ySPHc2NeF9SqDiIzRQijBh7t38d+ChHrV8g/rjTv0xg=)
8: kYOzNphxQuuMN-KEH5LcxfVfKho.roa (hash: ZqTwzdBEFFNTdg6mPtQfwSsq0u9CJRd378DWfNVX+no=)
9: wYF_ylL7pnBo9OaIzACNhn9RjFU.roa (hash: RTPtjL/eZ7d6GsDAAsmLFavUlJqeMCconuqgqwEBbU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:b8:f0:f2:78:97:17:70:b9:fb:94:b2:28:8f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77
Validity
Not Before: Jun 14 15:00:21 2025 GMT
Not After : Jun 15 15:00:21 2025 GMT
Subject: CN=aa0d4adbc608838ed86a76f2ffada2efb4b7e27a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:00:42:c3:b2:c8:76:41:29:9c:2a:a2:b5:e0:
73:b1:25:95:53:fb:70:3a:6f:9c:55:10:c6:ad:d0:
ab:7a:3d:f7:5a:fa:f4:a6:9e:a7:3e:10:7c:f5:5b:
b3:98:a7:6d:98:c1:91:7c:6d:5a:7e:fe:c5:2b:61:
03:3b:c7:6a:4b:31:c4:62:13:7f:d5:75:68:91:ac:
76:a0:d8:86:9e:73:53:dd:12:34:f0:f3:fc:be:de:
60:4d:86:59:8e:5e:18:91:f4:1f:b8:21:0c:ac:0d:
6b:33:46:db:50:2c:d5:68:91:e0:97:0f:c8:58:16:
89:fd:f6:a1:d3:ab:9c:3f:e5:f1:d9:a5:9b:e5:e3:
fe:6c:a4:b4:32:0b:55:07:4c:ff:6c:0b:17:7e:50:
bd:78:86:4e:81:ea:c2:8b:d6:92:fc:21:9d:24:8e:
23:f3:10:61:d7:27:6e:9d:3e:e9:c2:eb:6b:33:1c:
bd:74:04:f6:ed:fe:96:e4:f7:43:c8:3c:95:ee:c8:
09:23:59:fd:8c:87:8c:4c:cf:f4:da:a3:32:d3:36:
ca:47:8b:0b:7d:05:65:ba:1b:3a:5c:17:d6:ea:61:
cd:44:c6:a8:a5:8c:1c:83:36:af:a7:46:7d:1a:81:
8d:d2:b9:05:a0:fc:69:80:71:cd:47:1b:3c:a4:2f:
4d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0D:4A:DB:C6:08:83:8E:D8:6A:76:F2:FF:AD:A2:EF:B4:B7:E2:7A
X509v3 Authority Key Identifier:
keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:3c:a6:ff:85:3e:ae:7a:8c:ab:dc:c6:80:16:e5:7a:c6:b7:
07:b0:9f:98:a4:c9:a7:27:dd:c6:1e:a7:8e:11:e9:41:fd:c5:
e0:63:0d:44:fd:0a:19:6f:a4:a9:c6:4b:4c:ab:53:37:8d:94:
61:d7:32:fc:0c:01:ba:01:b7:9a:df:d7:f6:e2:c8:59:a4:ac:
28:01:17:d3:1b:29:88:3e:bf:35:d7:17:ec:af:9b:9c:4c:b2:
2e:e5:34:85:9e:ca:c6:06:ab:83:3d:8e:aa:e4:e1:0c:f5:f6:
be:fb:98:79:5c:44:65:72:0d:fc:5c:08:f1:c8:33:ae:22:fe:
de:ce:95:19:c6:4c:8e:fe:d5:8e:38:72:50:6b:90:4c:bd:85:
47:4f:e0:11:97:b4:ed:b6:54:85:f7:e9:32:94:92:33:22:19:
7c:08:16:0c:5b:89:d6:43:31:69:a1:d9:9f:40:66:7e:44:27:
64:23:da:50:75:39:1e:b0:17:23:dc:81:b8:2b:6c:2a:70:88:
e0:b8:93:18:50:fe:3c:2c:f8:60:31:cb:92:9e:65:40:ff:d7:
a0:22:15:db:ed:a8:5d:bc:74:9b:10:3d:6e:b7:c0:0d:e4:93:
8d:1b:54:66:50:db:18:6a:47:7e:2f:a2:63:81:64:cf:47:01:
2a:50:63:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:27:25 2025 by rpki-client