Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json)
Hash identifier: uVPknbjQ2AZGF11A4ATTrhd6NIrGGumzurvtJQkpgLo=
Subject key identifier: E8:EB:AE:10:5E:6B:12:87:46:B9:FB:18:F5:FD:CA:1E:66:31:E1:6F
Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Certificate serial: 0199FD347513C67743B31DF5733794B43625
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
Manifest number: 09FC
Signing time: Sun 19 Oct 2025 16:01:37 +0000
Manifest this update: Sun 19 Oct 2025 16:01:37 +0000
Manifest next update: Mon 20 Oct 2025 16:01:37 +0000
Files and hashes: 1: O7atMXtEIJm5vQz7W8heifIaCbA.roa (hash: co8lkj6ZmcMmS3fIL6FgljEMwizloNQj3S6Ye0V5Fow=)
2: _v0NtmG5_yKo9LL9efw9jEUpiWQ.roa (hash: WV8iO5bnkC8NMndORk/JEXPjs9aVxMgYQxrcXgM1XWk=)
3: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: cPnaiAiSkeSl9PSkBKf3tfBLBpPCAFzPDO+r7Qs3VWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:75:13:c6:77:43:b3:1d:f5:73:37:94:b4:36:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02
Validity
Not Before: Oct 19 16:01:37 2025 GMT
Not After : Oct 20 16:01:37 2025 GMT
Subject: CN=e8ebae105e6b128746b9fb18f5fdca1e6631e16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:23:93:c6:33:b0:b1:1d:07:ea:fe:a8:47:37:
09:52:44:75:58:8f:67:a4:b6:5d:eb:29:ed:80:8e:
f1:37:eb:5a:d9:be:b4:8c:85:8b:45:ce:cb:df:cb:
51:cc:9a:26:ee:c3:d1:ba:72:7b:7c:bd:f5:7d:6e:
e5:d5:2e:4d:1c:8e:82:00:9b:e2:23:31:e7:30:ce:
a0:53:dc:b3:17:c1:e6:5b:a0:81:5b:5b:61:af:30:
83:3f:13:02:22:54:36:a7:b3:0b:0f:79:86:7c:58:
0c:87:ad:7d:95:cd:88:b9:82:cf:d8:0c:4a:53:67:
94:34:59:1e:65:c7:3d:2c:9a:59:47:89:4d:d7:83:
99:eb:f3:c0:a7:c8:f7:b2:36:70:ba:90:26:a2:e7:
4c:43:6a:24:63:59:df:d7:eb:a9:72:b9:ab:c9:fa:
8d:a3:4f:f8:c4:23:69:b4:61:93:15:11:18:91:70:
79:e3:92:27:ed:8f:9f:eb:ff:80:69:1d:5a:3d:a2:
cb:68:d9:44:4a:09:f7:d8:8e:59:bc:1f:fd:23:ed:
a0:49:94:84:20:a5:dc:ab:4b:15:fc:58:a4:35:e5:
62:b0:01:ec:5d:52:2f:c2:ea:0e:0d:65:ed:38:17:
11:8b:69:c8:14:11:9b:12:29:96:4e:d5:7d:e0:06:
f4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:EB:AE:10:5E:6B:12:87:46:B9:FB:18:F5:FD:CA:1E:66:31:E1:6F
X509v3 Authority Key Identifier:
keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:4c:bc:b1:d4:72:01:d5:2c:dc:a1:b5:33:cc:1d:62:62:64:
a4:48:35:c7:5d:23:36:33:0c:aa:c9:28:19:9c:13:10:d0:b0:
ab:59:7b:8f:fb:19:d6:f9:f7:34:7c:e4:4f:87:35:1c:61:68:
e0:d9:9b:70:2f:4a:80:ca:8b:81:71:20:bc:bd:11:18:1c:1f:
9a:b6:b4:96:8c:bc:c6:1b:ba:ee:1e:12:bc:33:cc:30:18:57:
5e:d5:c1:02:85:ae:de:fa:6f:11:dc:c3:34:15:e7:92:27:84:
d6:38:f6:0c:4f:55:51:9f:e6:41:ce:7b:71:a9:a7:92:20:c6:
36:37:49:31:ce:fa:5e:9b:91:17:57:64:51:4f:a7:00:f4:94:
6f:c7:2a:d8:99:7b:55:95:78:21:67:07:bc:87:a3:c5:e4:c8:
e2:87:3f:50:e4:94:b9:20:d9:6d:bc:2d:eb:82:44:f0:57:ee:
60:66:b4:3b:8b:de:03:23:bb:02:d1:62:a0:78:f7:bc:af:a1:
43:37:29:a9:71:e5:e8:63:68:28:a8:1e:7b:8b:0f:56:cd:03:
6f:80:aa:a1:15:c0:d6:ad:96:aa:4e:99:58:c4:b8:a9:1d:cf:
63:ea:8c:19:10:3f:36:da:56:7d:8f:5e:d3:8a:64:a1:1f:fe:
e0:70:94:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:03:18 2025 by rpki-client