Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json)
Hash identifier: /dROkwDhKLGlfFVOEb0CsaNOqhQ2jN9wMPYGj7/Nj/A=
Subject key identifier: AC:45:04:9C:0B:4F:E9:ED:03:C2:AE:20:39:D5:BC:B2:00:A1:36:B6
Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Certificate serial: 019A00A387E1AC4A33E7B633206601A1D119
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
Manifest number: 16EC
Signing time: Mon 20 Oct 2025 08:01:48 +0000
Manifest this update: Mon 20 Oct 2025 08:01:48 +0000
Manifest next update: Tue 21 Oct 2025 08:01:48 +0000
Files and hashes: 1: 1a8VrRBxuEM9gIitWA-MTYGiH6k.roa (hash: o75BqB590sV6r1bb5EcguY1B6QE3rDYfVkZNGdgh7Sw=)
2: 5xOfslnPq8-oHcDS47I_csGpD8Q.roa (hash: 4dFQELulj6P8yjTGdV2+DXhC0ieIeLQi8X9meQWips0=)
3: DCocrInE23WH5yhpx0FXxrNY7_Y.roa (hash: O6VU1JCrRAIS6a+yNeHmYk7E8wYytQ8Lu8b/Fc+fOqI=)
4: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: s0TFjl6d+/t9ukD6X/HN2t0utDKE40GRSoeTvzdd1bI=)
5: du6DBdKlb1Cr5Z5mqlctF2rW68k.roa (hash: XaoP28uRsMgk856VCX7c/74Lo2ezwg/z+6hQ43OafIc=)
6: gvR46ytTmKrRi4maCYGnQqf4WI8.roa (hash: ViNC6FNBy9cckM8WILnCXIRpeOOtSFGRhOo8i05WQf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 08:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:a3:87:e1:ac:4a:33:e7:b6:33:20:66:01:a1:d1:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Validity
Not Before: Oct 20 08:01:48 2025 GMT
Not After : Oct 21 08:01:48 2025 GMT
Subject: CN=ac45049c0b4fe9ed03c2ae2039d5bcb200a136b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:aa:29:e2:c5:11:de:3d:fc:c5:d1:b3:06:f2:
e9:14:78:ee:ae:e8:82:ff:7f:2b:ae:ba:b5:d9:0a:
22:58:40:02:ae:7c:0e:23:f1:cf:e1:16:31:5e:21:
76:6d:88:a5:d0:86:49:8a:e8:34:8a:0a:db:d9:d9:
f8:11:04:f2:48:97:b5:d5:43:91:c8:ea:81:f6:f2:
21:cf:17:f2:54:54:99:25:11:a6:c3:27:d6:ce:b9:
41:9c:51:07:c1:54:a9:ca:79:0c:56:68:ea:b8:01:
15:70:16:9e:e1:82:52:0a:35:6c:eb:5e:80:7d:11:
54:ac:e5:be:a0:18:57:12:e3:cc:7b:80:12:0f:d5:
f6:04:ed:4b:a6:a2:f6:c8:45:11:48:3a:41:af:eb:
5b:42:d5:ec:09:6e:ca:fd:68:c7:6d:2b:af:cb:3a:
40:bc:b3:46:54:9a:ce:ca:e6:67:61:e9:f0:24:97:
c5:da:8c:04:b5:19:ff:07:af:35:66:51:31:96:33:
fc:22:d9:b0:46:42:77:92:86:ee:a1:94:e5:f9:34:
41:99:c3:c0:41:6b:48:17:7d:c4:ec:c5:45:e4:86:
40:6b:e6:dd:34:94:86:d3:02:b3:33:0b:a0:10:6e:
ba:a4:1d:e7:7b:b6:35:fd:bf:69:c5:99:0e:18:27:
6c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:45:04:9C:0B:4F:E9:ED:03:C2:AE:20:39:D5:BC:B2:00:A1:36:B6
X509v3 Authority Key Identifier:
keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:03:22:ed:db:ca:c4:6e:39:70:e5:ca:f2:ef:ba:d8:9a:57:
46:ef:e2:64:62:db:db:e7:4b:75:31:58:e3:76:70:85:6e:db:
ea:e1:1c:f5:21:9a:32:e6:7e:69:cd:72:60:bf:44:e5:71:06:
ce:a9:c3:28:aa:c3:f6:23:b2:a9:dc:a0:9a:ed:26:0f:c2:6a:
03:55:3a:ee:9a:9a:35:b8:53:9a:6a:f1:d8:45:5e:2a:73:37:
c5:d8:d6:ef:f7:73:00:8f:15:2c:d8:49:72:a1:ca:b2:36:3c:
72:57:7c:f2:b9:6a:1d:9d:55:52:b0:8f:91:e5:26:c3:ba:d5:
55:c2:f8:db:96:56:02:20:91:da:27:88:cd:77:ee:dd:b1:60:
82:9f:9c:d9:30:e1:03:f6:fa:c7:dd:5a:5b:67:f9:5e:97:81:
66:2e:7e:50:01:75:cb:cb:66:07:d7:b1:47:e4:91:4c:24:e1:
35:91:8c:f5:e9:46:71:84:e2:40:40:80:24:6a:01:fc:25:60:
2e:9a:b1:2c:d8:cb:fb:b4:a2:11:47:22:b5:ff:b3:03:7e:39:
77:49:7a:b4:5e:87:de:87:95:e6:ca:ef:38:9b:4a:5e:91:3a:
a4:6c:dd:5f:f3:fa:81:12:8f:20:87:9a:43:0b:53:9d:da:f5:
25:d3:87:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:53:41 2025 by rpki-client