Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: EXPQGA8Y60UJm95h0RyZSP170fbbq6wVwy2eJvdYy58=
Subject key identifier: 2A:F0:4D:9B:73:71:8E:A9:A0:86:E9:9B:F4:DA:AE:49:68:23:7E:AD
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 0199FD3479B56F61902492D28920D5ADC92D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 0385
Signing time: Sun 19 Oct 2025 16:01:38 +0000
Manifest this update: Sun 19 Oct 2025 16:01:38 +0000
Manifest next update: Mon 20 Oct 2025 16:01:38 +0000
Files and hashes: 1: T0aOPCX5XYSn6JrgCpyyjqzOUBs.roa (hash: Srj8f3rTN/EncvR1RaIO7Y8ZljiDCWASxMYbAln2gsk=)
2: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: Chdx4kfe2rOY2hU/a1gsrAUqQPP9HgQpXYeJtPtJzIg=)
3: ppcuybJ2dVTx8Oi4Rb_BK3tcepQ.roa (hash: kVGDPxLEKz3xBW5mOWtq1nIn17YH7foWW8L0WvSguOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:79:b5:6f:61:90:24:92:d2:89:20:d5:ad:c9:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Oct 19 16:01:38 2025 GMT
Not After : Oct 20 16:01:38 2025 GMT
Subject: CN=2af04d9b73718ea9a086e99bf4daae4968237ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:02:97:ff:8c:2d:55:36:b3:2b:2f:9c:6f:19:
71:9a:42:a4:e3:2f:f3:16:9f:d7:8b:11:fb:8a:f1:
75:cc:66:ab:25:c0:87:1e:6c:5e:ef:43:35:d8:61:
e6:6a:83:0e:88:d3:53:ae:0a:4e:0b:1f:4f:11:bc:
48:94:05:f8:17:0d:32:23:af:81:9c:0d:2c:cc:e7:
11:d1:d5:6c:fd:3b:49:94:16:61:80:90:68:06:d8:
01:25:59:77:4a:14:5a:69:f3:61:c8:a0:c3:31:b5:
58:c6:63:7b:84:cb:cc:87:15:38:bf:dc:fe:6b:f8:
31:aa:c7:7c:2e:43:e6:46:32:d5:16:65:ac:db:ef:
4f:c7:4d:cd:9b:20:4d:39:0d:7b:fa:5c:5b:71:20:
01:56:4c:8f:df:fb:34:cb:1d:7d:52:b7:be:af:2b:
42:33:f3:55:ce:3b:b1:5e:1a:5c:bb:15:de:20:1c:
52:36:0a:44:26:f6:71:4e:69:74:dd:60:70:f6:bd:
72:91:a6:1f:07:c2:b5:a0:d8:ef:1a:c1:23:84:9b:
73:d3:12:eb:94:63:90:d0:e3:ef:70:d8:9f:df:8b:
75:7f:01:11:d8:38:cf:0a:c9:b6:a7:c7:28:02:1a:
b3:aa:57:2f:5e:f2:56:21:3e:7a:63:b4:bd:2c:77:
99:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F0:4D:9B:73:71:8E:A9:A0:86:E9:9B:F4:DA:AE:49:68:23:7E:AD
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:15:b6:0c:5d:87:85:0d:e3:b9:d0:3b:c8:50:58:93:4d:43:
b8:50:d8:51:25:e7:15:39:c4:db:09:70:3c:ef:38:80:23:65:
26:25:29:f9:86:1c:86:ed:89:a7:2d:e2:a4:70:af:c5:7c:fe:
80:77:db:96:b3:15:eb:4f:bc:14:00:68:67:b9:49:55:25:3f:
62:db:50:4d:1e:32:67:d3:80:ae:13:87:af:4c:04:23:5b:0b:
29:39:16:7d:04:12:91:7b:96:d3:13:9e:84:c3:f6:65:7c:9b:
9b:35:f1:3f:21:71:2c:79:09:a3:b0:06:2a:a4:ef:d8:57:d4:
fb:c2:76:90:4b:fc:30:55:f2:86:e1:7f:47:a2:5b:b5:2d:b7:
a5:36:f7:76:dd:95:e0:eb:ca:e1:62:d2:98:ad:c2:ab:c7:c2:
ff:15:7e:61:2e:97:52:b5:f4:e3:01:46:49:8b:fc:ea:31:10:
d9:f7:75:0a:51:c8:f0:d6:cc:38:94:09:11:15:68:3d:c2:52:
7e:4b:fc:07:1a:30:df:a8:de:f1:55:e0:1e:72:7a:2a:4a:b7:
42:63:da:69:77:d8:06:b0:1d:39:b8:71:0b:bb:17:86:4c:a3:
39:50:3e:74:77:37:56:35:b5:bc:d0:a4:3c:e2:14:67:db:44:
30:39:cd:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:36 2025 by rpki-client