Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: TycdNk4f17XUwRhh0lHJoqRpK4+GAwW8an+Gb09TlYU=
Subject key identifier: C9:0A:F0:3E:59:EC:A9:87:D2:67:D1:EF:A4:48:B9:63:F0:32:92:07
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 0199FE4732D2D350123635563FCF84BA172C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 16EE
Signing time: Sun 19 Oct 2025 21:01:42 +0000
Manifest this update: Sun 19 Oct 2025 21:01:42 +0000
Manifest next update: Mon 20 Oct 2025 21:01:42 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: +L707/l5UNFSLwSMvDuXAG/UA/cCjCCkOo7eTRG+M9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:32:d2:d3:50:12:36:35:56:3f:cf:84:ba:17:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Oct 19 21:01:42 2025 GMT
Not After : Oct 20 21:01:42 2025 GMT
Subject: CN=c90af03e59eca987d267d1efa448b963f0329207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5a:7d:f4:8d:a6:be:5e:92:1c:79:22:13:6f:
4a:54:e2:9b:d0:85:c7:ca:87:11:6b:53:cd:17:60:
e3:79:31:80:d1:99:34:e9:97:a6:75:df:a0:55:70:
9d:36:db:b7:e6:5d:db:81:e8:0a:02:22:61:b7:53:
f6:cc:49:a9:f0:64:26:b5:63:74:e5:04:e7:79:73:
a3:1b:59:97:92:b7:ee:e1:bc:65:fa:34:33:e2:89:
5b:49:19:60:f2:16:c9:bb:94:24:ed:f4:80:f4:5d:
c9:13:ef:a3:d2:35:ee:aa:82:e6:94:2b:1d:f2:c0:
7f:6b:d4:88:cd:86:f3:a6:04:54:e0:a2:da:f1:a5:
8e:26:fd:e3:a1:f2:f4:d3:d9:3d:20:6e:69:67:55:
65:25:2c:29:e3:70:32:3d:e2:2e:2b:f3:4c:98:0b:
28:eb:76:ee:cf:a4:67:e1:64:8a:d4:fd:d0:79:c7:
8f:12:ac:71:52:76:68:b8:01:67:b9:e2:90:24:35:
ed:fe:9f:a8:14:99:78:26:63:86:1d:2a:85:ce:ad:
21:60:2d:ac:8c:48:39:84:f0:08:b6:86:92:24:02:
71:72:eb:2e:15:0c:94:1c:49:57:ac:76:74:c6:c1:
e4:b6:e1:a4:ba:26:5c:dd:5f:57:ef:4a:47:04:97:
43:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:0A:F0:3E:59:EC:A9:87:D2:67:D1:EF:A4:48:B9:63:F0:32:92:07
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:99:17:a9:7b:f2:65:d4:47:85:98:c3:d3:cb:22:a3:72:3f:
78:5d:b2:b9:69:72:6f:89:4d:83:2a:53:83:26:86:a2:46:62:
7c:88:7a:2c:9a:52:bf:39:46:ec:07:c3:bf:e6:27:f6:a7:70:
df:d6:e0:b1:89:27:b5:aa:c6:95:f7:56:3f:b1:3c:04:40:3f:
aa:07:0d:7e:4a:62:3e:05:0c:83:29:cf:f9:07:8f:5b:18:8f:
0e:21:34:0a:d0:87:44:8e:56:2d:c9:81:33:a5:96:d6:33:6f:
0d:48:0e:9a:87:0e:f1:64:9c:b6:9c:6b:8a:d7:73:8d:97:36:
9f:b3:78:49:59:6b:e7:36:1c:a2:a7:b2:42:95:c1:c1:05:9d:
03:01:d8:23:97:82:dc:4f:12:ed:f8:09:44:1b:8b:a9:0a:f5:
9b:93:bf:ed:40:72:c1:9b:76:3f:1f:30:79:97:7c:17:e4:1d:
fd:ee:28:c1:b7:78:5b:9d:b1:a3:b9:59:dc:ad:a7:61:06:4c:
d8:f2:c9:2b:82:9f:9d:f5:4f:e8:b6:14:59:6e:a4:bc:ca:26:
65:17:02:2b:e4:17:03:5b:7a:f4:e1:70:35:02:32:dc:dc:3a:
52:36:a4:f0:15:12:12:6b:d0:be:19:5a:01:43:d5:59:e7:a2:
ac:e7:df:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:09:27 2025 by rpki-client