Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json)
Hash identifier: +xBoicZIx4a99aI8fr+qiVrtWyRmWdZPHe2d4TaVv0E=
Subject key identifier: 4B:BE:08:C7:47:0D:24:C4:C7:73:B1:66:D9:9C:1F:5A:C5:90:7A:EB
Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Certificate serial: 0199FB0F3679341D2BD3AD40EDCB66E6FC61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
Manifest number: 0304
Signing time: Sun 19 Oct 2025 06:01:42 +0000
Manifest this update: Sun 19 Oct 2025 06:01:42 +0000
Manifest next update: Mon 20 Oct 2025 06:01:42 +0000
Files and hashes: 1: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: D8QF9Y2nScW+bWLpVWw2Fnv+hAMpsF7tqS0FPyKb2qM=)
2: uLnIOwRkGxrsBbDo0gQE4-hCZ48.roa (hash: s37fBcagBo3TMxYLMpYCF62YuISi5XxqQMy7wxYlEsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:36:79:34:1d:2b:d3:ad:40:ed:cb:66:e6:fc:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Validity
Not Before: Oct 19 06:01:42 2025 GMT
Not After : Oct 20 06:01:42 2025 GMT
Subject: CN=4bbe08c7470d24c4c773b166d99c1f5ac5907aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5d:a8:2c:65:06:ac:1f:fb:b4:7d:6d:b8:1f:
c9:11:09:06:50:5e:20:cd:d2:78:92:c5:00:e8:47:
1c:2b:fd:0d:18:1f:78:59:99:c4:bf:98:f5:9d:7e:
41:8f:56:ed:c2:4c:22:6c:22:22:95:ed:e0:dc:4a:
ed:55:3d:02:e4:6f:4f:68:ed:47:00:a5:ac:77:5c:
d9:10:36:1c:00:06:8a:92:c3:7e:a5:f3:7b:82:dd:
0f:a9:40:ea:22:60:6d:c7:05:71:43:b7:9e:c4:b2:
88:db:33:38:98:ba:bd:69:c7:01:23:26:3a:7d:91:
c8:e5:06:c3:79:57:99:8e:df:44:b2:61:9d:74:87:
67:05:c4:d9:e0:fb:98:8b:95:1e:60:05:5a:ea:ad:
22:b4:7e:4b:8c:59:83:6e:72:3f:fb:e2:2a:45:72:
24:38:b9:df:df:97:f8:8f:3d:4a:31:5f:fb:82:81:
a4:de:ef:4c:da:03:ad:a1:d2:a4:35:fa:f0:28:71:
6b:eb:ef:e4:a8:c5:94:52:10:87:8a:39:37:72:0e:
0a:4c:02:2b:70:63:89:43:39:e0:70:6b:47:22:46:
f1:b9:57:af:9d:0a:37:04:d8:0e:b6:15:53:f9:fd:
58:bf:a9:cf:07:15:87:54:d6:f8:c8:ab:7f:d7:72:
1f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:BE:08:C7:47:0D:24:C4:C7:73:B1:66:D9:9C:1F:5A:C5:90:7A:EB
X509v3 Authority Key Identifier:
keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:a0:e4:c1:72:98:d3:f4:87:9a:77:50:75:39:d3:a5:00:62:
a3:0a:32:88:1c:94:2f:c5:75:99:fc:13:8b:33:27:f3:55:cc:
86:b1:ad:ca:58:ac:40:88:55:c4:e7:9f:03:38:84:8b:54:47:
75:08:bf:ad:6f:19:00:d2:1b:8a:ba:91:55:91:96:ce:59:36:
ef:3f:f3:0a:ed:8c:3e:63:6b:30:3e:dd:ad:46:61:3d:56:c3:
b1:87:ab:a0:ab:43:27:1f:fc:bb:d4:d7:9b:cf:9c:d3:bb:2e:
12:95:ba:55:7e:4e:aa:47:d9:49:d7:7c:b7:c9:46:f4:48:bb:
68:05:4c:c5:93:50:a1:2e:b2:94:5e:4f:7d:1d:65:0b:4d:f0:
b3:ac:32:18:36:96:a6:e0:58:58:1b:9f:d3:dd:52:2c:7e:eb:
92:d0:cd:bc:74:76:36:95:28:22:40:a0:81:85:6c:16:da:df:
a2:0a:c5:2d:c3:25:6f:0c:ac:a5:15:24:48:c8:ba:73:4b:73:
ff:46:0f:f8:1e:6f:74:d5:b5:b7:0c:20:23:57:c5:5c:c8:7c:
64:c7:df:a9:fc:b3:2e:33:ac:5c:fd:fe:83:2b:c4:41:db:b4:
47:ea:1a:7e:d7:70:f9:1f:a7:0e:96:40:50:68:b1:76:d6:de:
dc:b2:6e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:05 2025 by rpki-client