Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
File: hst0KgO8nIVQcheiUgTf_4L8zfk.mft (raw, json)
Hash identifier: VRrlSDamuVKTqxLvlC30gPNZmFMac5bGL53USB93+14=
Subject key identifier: 8B:E4:A1:86:31:90:FC:EA:B9:1D:BC:EB:60:42:16:1C:9B:C4:1B:82
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 01988BEA1F937E2DB278B0E29D955365F058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
Manifest number: 0F30
Signing time: Fri 08 Aug 2025 23:00:33 +0000
Manifest this update: Fri 08 Aug 2025 23:00:33 +0000
Manifest next update: Sat 09 Aug 2025 23:00:33 +0000
Files and hashes: 1: 1-TKHNCKbZE8g4XJcuPLU9wUNwXw.roa (hash: 4YE3N5IWvrJIb1gbK5UKUvbBqNqAEHWjC5reIu6mjb8=)
2: KPSPKR5CERt24RgHkaAIVOQ-_3Y.roa (hash: /B2g+d8SvUFH1wq4gYFhblNg4apBCw0hfFmzBcRbekw=)
3: bFD1sjNrlT8-Exv5RMapq_1KPJ0.roa (hash: dms0tmgxNyDbB9rboVPonFSAfotpbIdMya/cvQRCIY0=)
4: hst0KgO8nIVQcheiUgTf_4L8zfk.crl (hash: UYAMw/YDwthYLWYHiE1Npq6UUYoFnJksbuKKRFic+fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:1f:93:7e:2d:b2:78:b0:e2:9d:95:53:65:f0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Aug 8 23:00:33 2025 GMT
Not After : Aug 9 23:00:33 2025 GMT
Subject: CN=8be4a1863190fceab91dbceb6042161c9bc41b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:94:93:6f:03:1a:46:02:1d:cb:ac:8b:2a:
74:45:1d:36:6f:a5:db:08:ee:5d:64:41:e2:c8:74:
4b:45:c2:2b:87:1a:fb:9e:79:53:8f:64:d2:bf:34:
10:9d:f7:a9:af:d8:55:bb:7d:5a:07:1c:f4:61:42:
23:b0:34:5b:17:c3:4b:55:b6:1d:25:45:7c:c0:a1:
63:5a:25:f4:a5:6e:4e:f9:b3:d8:f5:62:14:66:d7:
11:ec:27:24:b4:79:e6:a7:cb:72:0a:da:bd:9f:f3:
c3:b6:76:06:d3:fd:5c:57:c0:68:37:17:82:05:64:
6f:0d:cf:cd:0b:0c:64:42:51:24:07:c9:83:20:49:
3d:22:c7:f4:03:73:b4:a2:25:e7:3b:ae:5e:5f:e1:
5a:76:64:ae:2f:e0:17:ec:12:68:41:b3:90:a1:90:
6f:ce:31:4e:29:bf:0f:c6:c5:94:4a:42:68:9c:07:
a7:47:cb:7f:62:cf:de:db:5d:a9:01:2d:52:ba:4a:
e8:76:6a:76:2b:bf:27:33:28:e6:49:48:e0:f5:f6:
3a:2b:13:11:a0:7a:f0:12:0b:b7:34:b3:56:7f:91:
ea:47:48:c8:eb:55:27:29:fc:83:93:22:98:6a:ac:
19:01:b4:c0:f8:41:74:de:89:c4:7e:ce:07:44:39:
d3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E4:A1:86:31:90:FC:EA:B9:1D:BC:EB:60:42:16:1C:9B:C4:1B:82
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:53:81:0d:4f:3e:32:91:8c:7e:6e:ac:74:b9:ca:9b:bf:2a:
3e:5e:99:78:6f:bd:1c:30:de:9f:7c:fb:15:b9:c6:40:4c:7a:
7f:31:6e:42:60:b1:c9:77:3f:d8:b0:82:32:c4:3f:da:6a:22:
12:8b:1f:78:c3:ad:3a:3a:3d:6b:ea:ff:8f:d7:79:2d:c2:d5:
e3:8b:9f:be:90:cb:9c:f8:7a:c0:cc:fa:34:4f:2e:3e:66:57:
3a:e9:72:0a:18:0c:96:b7:c7:27:39:2e:2f:ab:ef:1b:d7:36:
83:8b:25:5f:80:a9:b4:d5:48:4a:9a:c3:2f:23:d6:4e:3e:36:
1d:27:77:dd:3a:dd:37:f9:0d:44:2c:94:19:6d:49:ff:d7:08:
da:05:56:d7:56:d2:65:30:8e:dd:5f:5d:13:d4:41:e4:bf:5b:
a2:5a:a5:c1:e6:16:53:29:88:57:eb:f9:03:f3:b1:44:28:da:
dd:ea:8f:94:e1:f2:e7:d9:02:cf:fd:00:79:c3:93:4d:6f:fb:
d2:3a:f8:a0:b4:84:1e:42:0c:95:2d:6c:86:07:c5:ab:21:47:
54:b4:45:7c:93:27:f9:1f:df:1f:db:85:d0:86:52:32:a2:51:
c3:1f:52:ef:7a:0a:e7:43:f5:29:4e:28:3b:2c:76:93:de:bc:
73:03:1a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:11 2025 by rpki-client