Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: 1UVyC+9jcAnw3Uj3Cxb6Is4N8G0qjbxa948dZMP/Ebo=
Subject key identifier: 55:B2:61:16:60:46:68:F4:81:99:AB:A0:2B:12:A1:16:34:D0:23:A3
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0199FD6AD0D356312EA18925B4BA267BCDA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0764
Signing time: Sun 19 Oct 2025 17:00:59 +0000
Manifest this update: Sun 19 Oct 2025 17:00:59 +0000
Manifest next update: Mon 20 Oct 2025 17:00:59 +0000
Files and hashes: 1: HYrkvDrpfrVGKAcaIbn8RvGgwng.roa (hash: kLdog1pfyl1ivWrdhRaD9T/MX0DUf8jLwgmi9P1eRT8=)
2: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
3: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: xXhbwor9V2aUnU6qH2jBJZrlsXYbmzTuv0Pi7ch7LAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:d0:d3:56:31:2e:a1:89:25:b4:ba:26:7b:cd:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Oct 19 17:00:59 2025 GMT
Not After : Oct 20 17:00:59 2025 GMT
Subject: CN=55b26116604668f48199aba02b12a11634d023a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:03:a7:da:15:04:96:63:45:5a:2c:5c:4a:
6c:08:90:87:14:cf:07:58:4b:b0:57:27:5a:32:5e:
c7:d7:80:fc:70:be:89:5e:d6:c2:3d:11:cd:2f:36:
5a:f3:a8:a5:8c:f1:c5:08:2e:46:5a:3e:6f:31:88:
7d:7c:6b:e7:62:52:1c:b0:ec:47:1a:f0:ba:66:1f:
3d:c3:aa:cc:c1:80:95:a5:ac:39:31:35:be:20:3e:
b1:b4:22:be:78:a3:ce:ef:2a:0e:f3:74:63:2c:94:
b0:41:74:a1:62:c5:fb:33:88:25:a1:82:e0:c8:82:
52:2b:ce:27:b1:5e:7a:f2:b3:d2:a2:a5:15:14:03:
7e:bd:fc:6f:21:81:4c:22:2e:03:51:08:8b:97:24:
dc:3f:a0:33:f2:df:82:e4:0b:27:1e:28:dc:84:47:
5f:71:99:03:2f:f8:24:55:f3:3b:e9:4f:c7:4b:b2:
9c:e5:7e:b2:4d:dd:13:10:50:9c:b1:c0:a7:84:2e:
7b:6b:37:61:6e:77:fe:bb:42:84:95:54:dd:6c:17:
15:e1:dc:6d:39:30:a2:86:05:7d:38:50:f6:13:32:
73:1c:c3:ba:e3:07:7c:51:42:1f:ea:56:41:31:14:
1c:6c:a3:2c:57:52:8f:7b:9b:f8:33:9f:7f:86:10:
bb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B2:61:16:60:46:68:F4:81:99:AB:A0:2B:12:A1:16:34:D0:23:A3
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:9d:e0:bb:58:3b:c0:09:07:3b:fd:bc:e0:a7:60:47:86:f5:
3c:40:c6:d6:27:4b:c4:f1:63:70:a7:11:90:5c:b5:d9:da:a1:
6c:c3:06:75:46:f0:a7:b8:66:db:bb:55:e7:b9:32:65:0f:9a:
2d:36:19:6b:76:be:b8:23:37:a5:64:6c:85:14:a3:0f:d1:90:
a8:2d:20:de:ce:ff:e4:b6:b2:86:55:ee:47:2e:5a:96:66:99:
64:b4:c7:6e:9d:fd:dc:1f:31:29:b2:cf:ee:a3:c0:c4:cb:38:
32:8b:0b:a7:c7:39:20:2e:28:09:90:72:8c:72:05:aa:04:cf:
79:97:e8:c6:d4:67:70:96:09:ff:42:a0:32:2e:34:05:e7:d9:
c6:ef:0b:74:d5:10:87:02:2b:98:4f:65:2a:0b:af:75:91:f4:
7d:82:12:87:a3:68:52:f9:30:cb:61:f6:73:ba:15:45:28:56:
20:d9:68:c5:ac:b1:c6:a9:63:4a:d2:20:23:e6:f3:4c:83:73:
7c:e7:98:53:fa:11:96:36:a2:ec:5f:ce:dc:d0:de:97:ad:0f:
84:3f:9f:9d:ea:11:91:52:90:1f:6f:88:af:4d:08:41:8a:8d:
59:9e:a6:84:2e:e5:72:d9:01:bc:cc:07:a0:bc:b1:e9:09:c7:
b0:de:2a:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:35:18 2025 by rpki-client