Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json)
Hash identifier: hg3USjcY+O++BE9unOjQPY/bgVdLmzf7+XuxUCOxQ4E=
Subject key identifier: 60:C1:9C:DF:8E:9C:9A:70:21:7F:8D:19:8D:25:D4:F2:BD:17:81:D6
Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Certificate serial: 0199FB0ED9D0F7F1EA732ED6C63DB598A3C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
Manifest number: 0793
Signing time: Sun 19 Oct 2025 06:01:18 +0000
Manifest this update: Sun 19 Oct 2025 06:01:18 +0000
Manifest next update: Mon 20 Oct 2025 06:01:18 +0000
Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: RgMJuYL3QZMdTrvvZo9TgKutjzb6K+1GkK6/GsVdZVs=)
2: qARNDLbWZGpXclqzpXtzfvYP72c.roa (hash: yeRNjTwXDaIWE/tdw8m2d67pmit4bLUSMZLje7zj8IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:d9:d0:f7:f1:ea:73:2e:d6:c6:3d:b5:98:a3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Validity
Not Before: Oct 19 06:01:18 2025 GMT
Not After : Oct 20 06:01:18 2025 GMT
Subject: CN=60c19cdf8e9c9a70217f8d198d25d4f2bd1781d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:97:2a:4c:7f:08:67:c1:f2:25:33:44:ce:9f:
9b:cd:bb:d5:a5:36:0e:a2:8a:f9:d5:49:c2:4b:08:
64:42:7b:fe:f1:66:1f:56:6d:d4:ae:6c:32:7a:2c:
de:f2:24:e8:69:0c:81:08:2e:66:f2:00:d4:64:ae:
9f:90:f5:dd:4f:ff:48:b0:33:9d:68:08:c4:14:d7:
09:05:ea:57:2a:8f:45:47:b4:2f:9a:e3:dc:bc:59:
a0:5f:db:81:18:97:58:c4:64:5f:e5:53:16:a4:e4:
88:96:d6:77:cd:13:02:eb:6e:5a:67:47:bd:a9:00:
29:76:7a:2e:3d:cd:e7:5f:fb:a9:ee:35:01:24:96:
d5:2f:54:5f:fc:13:6e:a8:73:6e:5c:da:06:2f:08:
3c:15:18:b7:5b:77:7f:75:7b:77:fc:a6:99:15:e7:
0d:44:17:26:0c:1b:4c:fe:26:d2:0d:cd:47:a3:ef:
65:6f:d4:75:ba:e2:d8:f1:5b:ca:3d:a5:a0:e9:ed:
c6:fb:f4:80:6d:cc:3c:6a:00:ec:9d:de:b2:10:15:
8a:26:84:b8:45:8a:2c:3a:00:27:ed:e2:42:92:55:
ae:38:10:8d:85:97:ac:62:25:e2:c8:3c:b7:02:f6:
77:b7:c2:01:1a:1a:e8:8f:3b:09:3f:18:ef:3e:30:
38:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C1:9C:DF:8E:9C:9A:70:21:7F:8D:19:8D:25:D4:F2:BD:17:81:D6
X509v3 Authority Key Identifier:
keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9e:24:96:c1:fd:df:d0:cb:3a:7b:60:8c:a1:f2:d5:50:aa:
ab:09:c8:c3:9a:7b:5d:df:00:26:66:fc:74:2a:68:4b:ab:35:
83:43:df:7d:d6:53:79:32:cc:62:e7:4f:a4:2a:86:54:65:9b:
8a:c0:b8:2d:35:67:f1:f1:3c:c7:68:aa:74:60:b8:68:3c:a1:
99:f2:7c:79:b9:a0:64:9a:fd:bc:df:86:ef:ff:32:f7:5c:cc:
ca:79:0d:db:a4:29:55:ba:97:0a:2d:05:57:d5:2e:0a:2e:10:
a9:ce:8e:c8:ce:48:c3:d4:5e:14:f5:dd:4c:b3:3f:04:4c:7c:
0c:e4:ed:ec:ba:9d:66:6c:57:2a:ca:a5:19:6a:86:23:08:3b:
c9:ad:d4:2b:4a:9d:9e:8b:d5:50:1a:ee:8a:e1:28:c9:75:31:
43:76:cc:ab:e0:d2:75:1a:58:26:08:3a:ed:61:7a:fc:3a:59:
15:9d:ec:1e:b2:53:0b:4d:6d:19:2e:39:45:7a:7a:6f:52:03:
4a:f1:bf:c4:14:8f:86:85:48:b9:30:3a:bb:76:7c:9d:7c:04:
b3:be:68:86:8e:5d:f3:89:8e:b5:05:ad:ec:1f:41:57:0d:42:
d2:0f:c5:71:9d:7d:60:60:aa:54:c1:aa:e3:0f:d1:b0:4f:78:
da:a4:0e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:29 2025 by rpki-client