Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: e8bACc86FQeIn6gVKhsxIzDAN1BUaiW5Ux3cKuQSk2I=
Subject key identifier: 59:C3:F7:3D:BD:11:D0:CD:7F:A5:33:D6:6B:22:B3:E9:29:7D:B4:48
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0199FB4639BC5EA1B0BFDEAEC80AC083D5E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 16F0
Signing time: Sun 19 Oct 2025 07:01:47 +0000
Manifest this update: Sun 19 Oct 2025 07:01:47 +0000
Manifest next update: Mon 20 Oct 2025 07:01:47 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: L3jkkx+FZ+XyIBVrAttLvTlSVZ3q5idiaOtO/C1QyBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:39:bc:5e:a1:b0:bf:de:ae:c8:0a:c0:83:d5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Oct 19 07:01:47 2025 GMT
Not After : Oct 20 07:01:47 2025 GMT
Subject: CN=59c3f73dbd11d0cd7fa533d66b22b3e9297db448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:bd:09:7f:ab:8d:69:01:c6:0f:08:ec:cc:29:
53:f0:31:48:3d:7d:55:79:fb:63:f0:17:f1:ee:2b:
04:8b:1d:05:37:7e:0d:bd:c7:c7:58:48:8d:91:65:
cc:e7:c9:5c:ba:e9:d8:89:0e:43:c9:3a:37:70:f5:
58:d1:0e:6f:52:84:b6:f3:05:27:62:04:e2:c5:99:
eb:1c:75:e8:30:d4:cb:78:56:d5:db:c4:11:32:64:
9e:e5:c9:b2:59:7e:27:f2:38:ba:64:03:c0:92:88:
d7:a4:f4:c9:11:03:72:1a:8c:05:cc:80:14:35:4b:
23:65:2e:13:0f:9d:46:42:a9:91:02:0e:15:a0:c7:
b1:08:fd:6d:c3:ff:ea:7d:45:c4:7d:8d:89:0a:0c:
55:f4:a2:e8:32:20:33:73:0f:30:5c:49:c3:23:dd:
bf:14:a3:18:f1:8e:36:05:de:87:ee:8e:c6:4d:bf:
c6:b7:d3:fb:41:9f:59:55:18:96:31:4d:07:63:c9:
b4:46:ec:68:68:f3:68:44:0b:fc:46:45:32:69:5c:
f6:fa:5d:58:9b:4c:4d:4e:c1:58:6b:e2:d9:88:35:
1c:d7:c3:ca:57:a0:4f:fc:34:07:ce:f5:c2:19:16:
34:0c:40:1e:80:cf:c7:ca:7a:61:63:b7:0d:b0:f9:
91:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C3:F7:3D:BD:11:D0:CD:7F:A5:33:D6:6B:22:B3:E9:29:7D:B4:48
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:b2:aa:1b:b4:15:53:02:c1:cf:36:5c:c4:5b:f3:db:f2:36:
34:e9:54:d7:1c:d1:50:32:29:f3:10:aa:f1:75:cf:a4:42:7e:
62:a6:a4:64:9d:e5:3e:cb:75:6b:de:ea:ab:b8:a8:80:63:25:
52:b6:11:ff:90:31:1e:3a:63:96:38:0e:2a:8e:40:fd:54:36:
5c:95:49:e0:f3:7f:a5:80:31:c7:09:bd:ae:1a:4e:80:73:e3:
01:4d:92:cd:34:40:4b:9b:b0:ac:18:0c:ab:6d:c2:26:85:03:
fc:41:83:65:63:74:92:85:8b:9b:19:db:79:40:65:be:34:08:
e3:66:f1:ef:e9:17:ab:53:bc:3d:e6:f4:67:8f:10:6c:b4:66:
71:3b:4d:d2:59:38:e8:17:39:f6:2a:22:4f:6f:c8:e6:21:f0:
90:e8:e1:9c:d7:6d:2b:6a:82:9e:37:29:64:a5:3f:27:82:ff:
70:c0:59:2b:09:1c:55:02:49:cf:9a:e4:53:82:f4:d9:85:c3:
c4:12:61:0d:89:ae:fb:88:5b:bd:0d:12:37:5b:5f:dd:b7:ab:
27:7a:0f:b8:3d:17:6f:55:a1:c7:a0:0f:bf:92:c9:54:0d:14:
52:b4:86:31:1a:93:04:05:f3:c3:a5:8e:c7:0a:70:c9:bf:59:
9c:a3:f9:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:45 2025 by rpki-client