Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
File: hKafxWiJTLOYXt7yIha9mZdN4lE.mft (raw, json)
Hash identifier: ey/Bh9qeXbViY0pDFGQoz9DSfXolDnjojrXk9ANe9dA=
Subject key identifier: 6C:46:AC:61:F4:D7:70:D0:70:DA:71:D5:E6:05:7C:25:1F:50:A8:D4
Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251
Certificate serial: 0199FB7CD17F5CC0CBF13AEC1126E7C3E58C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
Manifest number: 13AB
Signing time: Sun 19 Oct 2025 08:01:25 +0000
Manifest this update: Sun 19 Oct 2025 08:01:25 +0000
Manifest next update: Mon 20 Oct 2025 08:01:25 +0000
Files and hashes: 1: gTuMJj4zNk4inmWeuwHt2oopg5M.roa (hash: zopPOsMBU8dt9Dr0i+LUD1TPbnQUzJ4uDKxUzfrnRiY=)
2: hKafxWiJTLOYXt7yIha9mZdN4lE.crl (hash: ji66vkkPuiciZoLzU6PHb29kvOYZehGJagrPufY5Fg8=)
3: rnwY-7oYw6V-trqxlfGxfeIKZIY.roa (hash: Yep0/R2aV0HSvC5J3JSqbOslIcQ/KKdPdI5bChqi8Qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:d1:7f:5c:c0:cb:f1:3a:ec:11:26:e7:c3:e5:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a69fc568894cb3985edef22216bd99974de251
Validity
Not Before: Oct 19 08:01:25 2025 GMT
Not After : Oct 20 08:01:25 2025 GMT
Subject: CN=6c46ac61f4d770d070da71d5e6057c251f50a8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b1:c0:38:a2:28:11:24:10:9c:ff:67:c9:9d:
04:97:82:e7:9a:93:da:f6:c8:e1:ed:b0:47:d4:72:
c9:75:aa:90:cc:a6:75:4c:8c:61:e0:3d:24:f6:87:
88:82:8d:a7:e9:a3:1a:09:10:67:7d:6b:bb:5c:f4:
cd:09:c6:21:7c:05:ea:c6:3e:e7:0b:52:b1:02:8a:
03:8c:a9:4f:7a:f1:45:d6:f0:ae:4d:81:b4:57:3c:
e5:5f:0f:db:d2:0a:ab:6f:1c:5f:c2:d2:c9:ff:a5:
92:31:e9:cd:74:3e:14:3e:55:5a:85:b9:70:0e:d8:
c0:42:ee:45:c2:f2:5d:09:4e:e5:32:b8:27:e4:06:
e1:85:d2:4b:ef:3a:58:a0:a0:24:3b:63:74:c6:f5:
26:47:52:a2:97:bd:24:6f:c0:0f:03:a2:2c:a4:ae:
28:4e:fb:8f:5f:38:a6:a9:40:b1:71:79:4b:ac:55:
86:c1:f7:13:94:d2:1c:83:59:14:5f:98:5a:5e:e4:
6e:5f:a9:bc:f7:15:88:8f:2d:15:55:38:a7:86:4f:
2d:95:4e:e6:42:80:e5:71:2f:0a:77:a8:26:b5:88:
2f:56:23:d6:6e:cf:f0:79:47:ef:c4:5a:1e:ed:de:
8e:27:73:99:81:9f:77:79:92:0f:3c:25:b2:af:bf:
b9:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:46:AC:61:F4:D7:70:D0:70:DA:71:D5:E6:05:7C:25:1F:50:A8:D4
X509v3 Authority Key Identifier:
keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:63:5f:f5:e4:61:ad:6d:c7:2d:b5:21:75:6a:41:f9:f8:5f:
81:93:56:f9:d1:23:be:3e:d9:64:59:7e:aa:06:ce:26:c3:0e:
1d:c0:d7:1e:39:fb:33:0c:2d:75:fe:63:da:08:8f:c7:3b:18:
ae:c8:d2:c9:3b:53:f4:37:61:88:d4:9c:14:d8:3d:14:48:46:
9e:7b:59:0c:ad:47:8d:55:6b:24:b2:d1:95:e9:9b:c2:a8:fc:
5c:c0:73:b6:67:d7:cd:ac:a3:67:6b:6d:b1:d7:94:28:f4:49:
52:6d:12:42:53:2f:bc:35:cb:a5:32:8b:4c:69:c4:26:e0:89:
23:ba:64:c2:14:f3:b5:7a:b6:b5:2d:7e:40:cf:2a:51:d5:82:
20:75:20:2a:45:39:81:07:49:f4:73:db:e0:df:0c:85:c7:19:
2a:d3:f6:66:b0:d0:92:82:62:29:ff:c5:13:f0:23:a4:08:99:
5c:a5:42:1a:7c:cf:1f:11:c6:39:4a:67:ef:b2:e7:1b:59:65:
d7:f9:5e:ff:53:3f:91:91:ce:0c:53:de:e0:43:be:7e:89:ef:
03:4e:23:14:91:72:c0:0e:14:8d:81:33:74:6a:93:1a:cd:5d:
de:5e:0a:fe:83:4b:73:e8:08:cb:6c:3d:74:fb:ad:d1:98:92:
95:28:b6:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:38:04 2025 by rpki-client