Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: kyXG/uKZWzmq7+0nGSLhe4EO62hLlUYKdcbmHnZnLCo=
Subject key identifier: 55:9C:60:DE:2A:26:6D:01:9E:B4:E7:E4:E8:31:15:10:19:B5:F3:A8
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 0199FBEAE95DF05A87E70D4ABD845FB0D6CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 11EA
Signing time: Sun 19 Oct 2025 10:01:40 +0000
Manifest this update: Sun 19 Oct 2025 10:01:40 +0000
Manifest next update: Mon 20 Oct 2025 10:01:40 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: WN6MSnDI75bsS1gy8IQvuBdNoWgRMVaGwu2fQjBDtVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e9:5d:f0:5a:87:e7:0d:4a:bd:84:5f:b0:d6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Oct 19 10:01:40 2025 GMT
Not After : Oct 20 10:01:40 2025 GMT
Subject: CN=559c60de2a266d019eb4e7e4e831151019b5f3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4e:7c:d8:f6:7f:54:a1:96:c8:49:5b:32:f3:
d4:be:13:34:d7:8c:24:0b:c5:53:54:76:7a:41:98:
d7:b2:f0:97:b0:f4:cc:80:5f:b6:d4:6d:96:58:89:
12:32:af:a7:9b:15:14:f5:92:14:c0:dd:9c:94:34:
e4:9b:5b:da:9d:60:50:21:8c:fc:5c:8d:c1:4c:2f:
7f:52:ce:59:7d:a7:2d:46:f2:5e:b6:34:a5:d3:b8:
c8:14:4a:eb:16:51:fe:7f:10:55:2d:aa:02:b5:00:
cb:3c:ca:bf:e7:dd:1e:f0:35:ff:a9:a6:c6:24:0e:
fa:65:14:df:fd:5e:8c:7c:45:ac:ca:eb:ef:76:3e:
a9:36:bb:5e:1a:72:64:71:d6:a4:9a:f8:3c:82:52:
c1:4b:51:35:f7:56:4e:39:a5:96:b6:15:ba:88:d4:
0e:bb:21:b3:13:c5:e2:59:c4:d8:f9:31:cc:9a:86:
f3:9b:12:5f:4c:ef:24:5e:23:31:05:f9:30:65:d3:
cf:81:4b:73:b3:5a:1e:a7:bb:ea:a0:3b:93:7d:ca:
a4:67:ad:03:8e:ae:3a:a2:32:e0:3a:45:92:87:65:
51:f1:34:45:01:8c:d3:40:ac:24:3c:f5:9f:46:e2:
57:93:84:d0:95:3c:20:78:89:4b:f5:d2:af:dc:af:
83:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9C:60:DE:2A:26:6D:01:9E:B4:E7:E4:E8:31:15:10:19:B5:F3:A8
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:56:5e:11:fb:1c:58:9a:86:fd:eb:4a:13:fb:a5:72:58:7a:
6c:f4:f9:46:52:b2:21:21:42:fb:2a:f2:13:d2:ae:fa:70:78:
dd:c1:37:a6:1b:3d:56:01:f6:41:01:cb:28:ee:5b:21:0c:43:
13:3e:4e:4f:c7:fc:58:9a:46:c8:e6:45:28:57:e3:ec:5f:79:
9b:4b:66:3d:9c:d1:23:d1:03:67:da:ce:54:05:fd:b0:b1:38:
d8:a6:62:9b:48:8d:bf:b8:3e:c2:46:de:b3:37:eb:93:ec:63:
2c:9b:58:e6:a5:54:b4:2d:01:c8:6d:ae:14:7a:38:00:7d:db:
69:c1:24:21:7a:10:82:63:88:03:b6:6e:26:9b:dd:1f:3f:c9:
a6:a0:81:4a:9d:c6:11:c5:84:9b:1a:dd:6c:af:13:ee:81:5d:
7d:f1:72:b1:1a:10:e5:f6:bc:d7:6a:0d:f7:3d:b6:a4:a9:c6:
a7:92:f9:1e:91:55:a4:14:00:98:60:94:c4:3b:80:c6:5f:81:
fa:79:b8:c0:6d:1d:24:34:0e:05:6e:b9:aa:da:7a:02:1b:99:
1a:09:dd:fc:9e:ae:1f:9b:04:e6:3b:47:e9:a5:80:29:b2:1e:
74:df:a0:74:5f:0c:59:56:46:2b:49:80:60:ad:3a:08:8b:7e:
25:60:31:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:40 2025 by rpki-client