Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
File: hP-lQvPYybB7926uioaYWj17Tcc.mft (raw, json)
Hash identifier: X8MVVJX1ZSJpF1TPNagoLXJ4gdSDk31SXsCeoAxzqdM=
Subject key identifier: CA:62:BB:FD:A8:7A:FF:D7:43:36:85:83:C1:44:74:35:7F:A6:35:50
Authority key identifier: 84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
Certificate issuer: /CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Certificate serial: 0199FDD902B70C369C04BAC9D180FBBF9FBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
Manifest number: 10AC
Signing time: Sun 19 Oct 2025 19:01:21 +0000
Manifest this update: Sun 19 Oct 2025 19:01:21 +0000
Manifest next update: Mon 20 Oct 2025 19:01:21 +0000
Files and hashes: 1: hP-lQvPYybB7926uioaYWj17Tcc.crl (hash: iVKI6jgL6i/OWFMqa1jUlSxTg2FdtBguqyCviaACy8c=)
2: uVc-YEHIfoCC97dYSAB-pvf1GkY.roa (hash: xpxJQ9Mtn3be8wfSELsmv9qWpA192efhc4xx/FDBoxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 19:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:02:b7:0c:36:9c:04:ba:c9:d1:80:fb:bf:9f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Validity
Not Before: Oct 19 19:01:21 2025 GMT
Not After : Oct 20 19:01:21 2025 GMT
Subject: CN=ca62bbfda87affd743368583c14474357fa63550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:28:f3:8e:23:1a:23:c6:82:3a:47:25:56:a5:
5d:24:e1:b4:d2:ee:82:70:ad:f3:f2:04:33:da:42:
8e:53:7c:5c:f5:fa:65:bb:dc:dd:1b:7f:4e:a6:21:
17:8e:30:b6:1b:81:da:5a:20:b8:20:e2:86:a3:27:
73:90:43:31:b1:50:65:96:1d:95:2e:c3:44:87:06:
9b:77:78:a9:cd:25:82:a9:34:ba:92:a9:2c:1c:75:
0a:d6:ca:89:ea:0c:f3:91:f5:32:37:ef:60:99:76:
40:34:fe:2d:5c:9d:7e:9a:fd:88:3a:4a:43:d6:79:
2a:1b:86:33:c4:f3:34:a0:4e:5b:36:72:22:b2:b4:
b1:89:fe:66:21:be:40:ac:04:72:64:bb:82:5b:8a:
6c:74:d7:85:a9:84:b3:74:1c:d8:1a:b3:cf:39:6b:
8f:7a:83:c8:5a:34:8e:bb:db:a6:41:d6:2f:66:33:
8a:f9:9c:89:cf:a5:a0:01:94:a2:c9:b2:3f:8a:d8:
91:6b:ae:84:5c:b4:ae:59:cd:3d:9e:9d:a7:4e:78:
a6:1d:82:52:b8:26:ab:32:86:43:1d:be:f4:38:00:
ae:43:70:d4:c4:3b:8f:ec:9f:73:19:59:5d:7b:a1:
f6:9c:36:1f:9d:cb:b2:f5:9e:d5:46:d6:ed:ee:27:
d0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:62:BB:FD:A8:7A:FF:D7:43:36:85:83:C1:44:74:35:7F:A6:35:50
X509v3 Authority Key Identifier:
keyid:84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:df:d1:65:a8:1c:d2:18:2b:be:a1:68:8b:67:43:7b:fc:f7:
15:7f:2d:fa:d0:15:23:ff:1b:50:b4:f7:1c:6e:45:da:46:36:
6c:ec:8b:0b:f3:29:7d:d0:3b:c0:49:34:f8:a2:ae:eb:a1:18:
d7:00:d5:39:3c:28:ab:e8:85:71:ed:84:99:99:4c:5f:44:4b:
7c:25:db:13:18:37:30:70:e3:41:d0:60:ee:6a:5a:22:39:8a:
e4:ae:df:fe:6c:3c:b3:bd:e5:92:a3:62:0e:eb:b9:1b:b8:b2:
4a:d9:2b:97:6c:8b:0d:fe:c8:82:c9:ed:6d:37:c7:c4:9a:4f:
74:f3:de:92:e0:82:a7:7b:06:73:89:01:0a:c6:77:2e:4e:99:
a3:aa:02:11:4a:39:9c:d6:6c:a1:12:58:cb:de:cb:83:39:c7:
b9:26:1d:ee:22:e8:24:63:ce:d2:08:13:07:ab:16:bf:11:ad:
c1:2c:cc:43:ea:cf:69:99:58:28:e0:43:74:d6:af:33:a5:22:
f8:3a:2d:3a:a5:43:c3:be:f1:0c:d9:26:31:34:53:1c:5e:15:
bc:df:45:dc:8c:88:b4:38:f5:73:5d:d9:e0:44:61:de:64:92:
e8:df:a2:dc:74:73:78:aa:7d:80:16:fc:9b:12:54:22:40:34:
50:72:be:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:24:02 2025 by rpki-client