Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: Zrj4s94ODIWsi+12njC5U/WN9K3+3c7FjeEXReZQde8=
Subject key identifier: A8:0E:E4:D7:1D:01:E0:26:96:29:F2:B7:BA:73:34:10:A0:04:5E:7E
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 0199FC8F7EC0898E541D2DDAEB876CEEDDD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 13:01:26 +0000
Manifest this update: Sun 19 Oct 2025 13:01:26 +0000
Manifest next update: Mon 20 Oct 2025 13:01:26 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: GvC/tLJicKRyhkDmpJqnSmUAjjEerh76iLw/Uegw0Ow=)
2: zYnN-i8U1PX-vVy0Kko-kLxeBsU.roa (hash: SDcPgjrr8y9zPr3/XTNgtJ+0oZH17N4IYV4VzMId4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:7e:c0:89:8e:54:1d:2d:da:eb:87:6c:ee:dd:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Oct 19 13:01:26 2025 GMT
Not After : Oct 20 13:01:26 2025 GMT
Subject: CN=a80ee4d71d01e0269629f2b7ba733410a0045e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:54:54:27:7f:bc:8b:cc:3e:63:a8:aa:bd:05:
df:25:f0:f5:c4:76:9f:aa:3b:8f:59:a8:88:a1:8f:
ca:fa:d7:c3:fc:a2:25:6d:6a:da:8a:12:cd:d8:b8:
2c:b7:1f:73:ee:ae:f3:04:a2:82:68:f3:23:28:52:
cc:8d:7d:ae:b0:f7:da:3c:53:7b:e5:3d:f0:1a:03:
d1:24:f0:ff:4c:ca:d8:e9:bd:d9:75:a7:89:dc:26:
0b:b9:d1:59:55:4f:eb:7c:1f:bb:68:8f:8f:c9:fe:
ec:3f:3f:77:f7:e1:56:f7:79:fe:5d:37:39:f1:cb:
27:1c:98:38:00:01:fb:7e:10:11:91:64:69:54:70:
51:43:42:10:85:46:d1:dd:d9:1a:ed:31:e2:55:39:
e7:08:00:fc:87:b7:65:09:77:3f:bd:39:a6:07:de:
21:75:93:6e:d0:a8:13:c4:9d:d5:70:9c:b7:83:09:
ab:a5:f8:b4:cf:e4:94:da:6a:0b:48:1d:72:f8:35:
ac:fd:58:fa:e0:03:22:d4:67:cc:b4:1d:76:11:cb:
3a:c7:d5:56:47:3c:1d:e6:64:a1:0a:90:8c:01:63:
20:46:70:2d:30:d8:38:aa:67:30:69:f5:8d:96:20:
1a:bc:8a:d9:11:bd:04:45:d7:b2:1f:77:fa:c7:1f:
f7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0E:E4:D7:1D:01:E0:26:96:29:F2:B7:BA:73:34:10:A0:04:5E:7E
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:e1:a0:d3:8f:f8:c1:65:ef:a8:97:26:3a:64:15:25:5a:87:
d9:dc:f8:5b:99:c0:3c:ce:41:64:4c:de:ca:c4:44:b6:9c:11:
b7:03:69:5e:48:88:b4:20:c6:d6:10:22:89:a1:10:69:0e:e4:
af:95:53:f1:74:99:a1:e6:1d:ac:e6:68:68:ea:ca:fd:b3:2e:
21:ef:7c:5e:57:ba:a6:a0:35:71:7c:de:cd:36:67:c2:93:1e:
55:65:33:5a:99:34:c9:f1:79:21:a1:71:a2:3b:40:e2:4d:44:
e5:33:56:2f:b1:c5:b1:46:fd:88:f8:1f:23:a0:89:de:65:12:
e9:e8:8f:35:e9:8b:dd:ad:15:b9:e3:25:b2:73:e8:8d:d8:13:
81:2e:43:d6:50:01:a3:6c:92:f9:a5:b5:0a:9e:45:20:aa:06:
7e:10:96:69:c8:55:5a:cf:25:61:c7:9e:cf:46:72:b1:33:ae:
e3:e0:ef:60:0d:78:e6:4d:1e:1f:8f:b0:2b:6b:27:64:92:c4:
d0:38:7d:45:7a:f1:98:b1:be:7a:cd:4d:d7:8d:b1:57:79:78:
02:39:7e:c5:10:78:0a:39:e7:bc:a0:cb:b7:4b:2d:e3:b5:fa:
76:ad:15:12:e1:b9:74:ce:cc:31:a2:ae:b4:6d:ce:62:95:43:
b7:7c:b2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:28:11 2025 by rpki-client