Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: zn0FjvLR7P3fNbb0H+80ICOFVcDbhr0DVYSSRj6b0wI=
Subject key identifier: 9E:DD:37:2E:6F:E2:F0:B2:09:EA:EE:DF:9E:4A:5F:A2:03:DC:96:83
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 0199FBEB111C445C3015B77A51B7CB7960C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 086C
Signing time: Sun 19 Oct 2025 10:01:50 +0000
Manifest this update: Sun 19 Oct 2025 10:01:50 +0000
Manifest next update: Mon 20 Oct 2025 10:01:50 +0000
Files and hashes: 1: 0K5GjqLFd-gDt5ZKucB58DrHcF4.roa (hash: ZSi/SazrmD05aFXIwhjXofb8ZyWKGPGKoVBhBJoxyz4=)
2: 9ZZlEoJ6DOwFDIJbfzBhtXucSCo.roa (hash: e3MsAliQl7R+w6WCs9Je3nF/3YOrMW2JU+QDq2FQ+FM=)
3: JqCwXNSsIA5GmOAqVij5xtyCNdo.roa (hash: QdmrseC1ST0f5saIZ/JDQWioFap1TFhdMiZ17k2Nqbw=)
4: Yz1nqnWdktBLCf-4upLjmxtc2c4.roa (hash: J/e8pwliu2ZJzstQArsqHThwEBlwW9xmmljRrojzK28=)
5: cPyQ54eHZNRhOo_g5NkIJCYJuFs.roa (hash: c5YmCvHhLyzqtoi7Yd/RgqKsKk6lvDCNHO1nQEKzWWw=)
6: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: eYyPXtNfITGtAIWKE6yuf0fhRizRIr/EK/rMwNFoN7k=)
7: l6j2aX0QSLWVCzZDpMtGz8W4wjo.roa (hash: AigJG7f6f5V64toLqhPhGUD+Okr3C21xM3JcJXAk2jE=)
8: o5MQ_aMK7jefmZE6oPWihY-kiig.roa (hash: GwxLFOZ2rnFVptkhZAQW3B9urbn7oWI6excYOIPPHzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:11:1c:44:5c:30:15:b7:7a:51:b7:cb:79:60:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Oct 19 10:01:50 2025 GMT
Not After : Oct 20 10:01:50 2025 GMT
Subject: CN=9edd372e6fe2f0b209eaeedf9e4a5fa203dc9683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0e:9a:fd:46:91:bd:25:04:de:36:38:2f:83:
08:c5:ef:98:59:da:33:a7:8f:3f:a2:9c:7f:e5:89:
2a:e2:f3:14:6b:c9:05:15:7d:0d:ef:3f:cd:76:e3:
89:99:49:1e:a7:5d:2a:e0:ed:d8:b1:91:0c:5b:5f:
0a:5c:fb:15:d5:ab:53:25:b2:77:57:ef:56:1f:77:
ca:06:08:c3:ab:9e:a6:9c:d4:1f:67:d8:1f:f3:91:
5b:32:21:66:10:18:f3:b5:f7:46:9c:0d:9d:76:e7:
6c:2d:3c:b6:3e:23:e5:d6:43:e2:35:a4:55:fa:15:
91:6b:75:6f:39:94:05:d9:ef:1c:23:fd:70:c6:aa:
33:6c:5c:55:c8:f1:99:32:54:26:96:73:1b:24:13:
27:a2:00:1c:11:5a:40:af:ed:42:20:30:81:9b:76:
ec:54:14:29:57:2f:2d:c4:62:57:07:3a:3f:fb:28:
8d:64:67:e9:ff:92:0d:7c:20:60:ab:47:91:99:38:
1a:0a:88:7f:ea:b4:3d:0f:eb:4a:20:6c:94:23:69:
ec:96:95:a3:92:57:88:27:b2:d7:bf:d9:18:38:58:
2d:7b:0c:38:17:f1:b2:38:cb:09:30:ae:e4:59:fa:
8d:08:15:c7:ea:17:22:c8:1b:12:28:22:1c:9d:0c:
5b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:DD:37:2E:6F:E2:F0:B2:09:EA:EE:DF:9E:4A:5F:A2:03:DC:96:83
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:66:68:84:84:b0:ad:e6:2f:bd:5c:23:02:6c:37:91:08:7d:
7c:56:8a:4d:23:d3:b1:2a:ba:0d:fc:fc:10:3e:90:51:08:3c:
ae:02:cd:ca:c5:be:90:61:d4:9f:c9:f7:df:cb:f0:32:45:b3:
39:d6:b3:aa:30:60:4f:7d:9f:72:99:e4:88:25:db:e5:ea:e4:
ee:d9:b9:3c:f8:c0:4e:09:f4:5f:0a:a9:d7:1a:35:c5:67:c3:
b6:93:28:2d:25:ff:79:5d:78:46:32:22:23:c4:75:57:2b:86:
a9:95:ef:cf:99:3d:cd:91:3f:2f:3a:af:c1:28:cb:d0:f1:82:
29:72:a5:eb:fb:b2:91:cd:c5:68:fa:fa:f1:ba:5f:79:dd:b6:
0d:d6:0c:59:14:33:bd:a4:92:dd:98:2b:2b:d2:49:dc:f1:2c:
c9:24:37:ff:48:b0:7c:77:63:bb:ca:6f:7f:f7:b8:61:fd:a4:
7b:89:fa:36:4c:13:37:29:d6:a8:7d:05:a1:ed:a9:c1:64:2e:
21:47:a6:5c:1c:67:7a:18:d8:a3:1a:fb:52:9e:4e:03:dc:b3:
79:73:7d:81:fa:a1:ff:f4:22:de:75:b2:6d:fb:a1:92:26:b4:
11:3a:3c:81:ef:98:13:83:b9:97:24:c1:b2:da:40:3a:8e:04:
b5:70:a6:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:30:29 2025 by rpki-client