Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: pVuXXbRygmv5XAfOY3bJsnLq0oFDBCGG8PutSb4IqqU=
Subject key identifier: 62:F8:EA:42:6C:59:FC:6E:F0:29:36:0F:3F:87:B4:1D:7E:64:CB:1F
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 0199FBB35B71DA41849008AA0C7114F7A288
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 16E7
Signing time: Sun 19 Oct 2025 09:00:59 +0000
Manifest this update: Sun 19 Oct 2025 09:00:59 +0000
Manifest next update: Mon 20 Oct 2025 09:00:59 +0000
Files and hashes: 1: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
2: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: h/TC4a82osb4fhZ1/KX+57dJlTieUy3ngitPAFQoHdQ=)
3: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
4: vMt7TQ-qRZJTqOxHDMRDIZs6N9Q.roa (hash: 3Jk3Icytf7EIaMHCfe+p0xudth/qPlKoWzoPX62k9oA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:5b:71:da:41:84:90:08:aa:0c:71:14:f7:a2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Oct 19 09:00:59 2025 GMT
Not After : Oct 20 09:00:59 2025 GMT
Subject: CN=62f8ea426c59fc6ef029360f3f87b41d7e64cb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:83:6f:87:c8:53:aa:05:b2:13:4d:7d:30:02:
f7:11:00:6c:be:60:bf:ff:a1:e2:8e:22:4f:6a:f1:
dd:68:e0:25:8f:a3:d8:1e:aa:d9:24:97:0c:57:35:
9e:cd:16:5f:cb:ea:36:3f:fa:f0:d2:bd:b1:a1:65:
1a:25:23:32:dc:e1:b7:f1:ef:45:b1:79:7d:2a:b9:
0e:17:44:e5:87:e8:81:fb:4f:0b:65:a8:6e:6a:00:
a8:f3:ad:c3:6e:ba:ef:92:bd:df:e0:07:06:36:bc:
d7:bf:06:4f:5a:b5:d9:53:7d:f2:08:e1:70:f1:88:
15:8f:16:49:67:3c:a9:bf:ef:27:e4:3e:3c:50:f0:
7a:c0:cd:ee:b4:50:ab:a2:ec:61:f4:9a:2d:c4:8c:
b0:4b:75:87:99:ae:4f:38:ef:88:de:0d:3c:c3:81:
6f:2f:ad:e6:e7:6b:55:2b:1b:8d:eb:ab:30:ca:ea:
4f:b5:43:f2:99:67:5b:94:3e:d6:1b:49:9e:50:ad:
fa:fd:39:2c:35:90:a9:1e:83:50:c8:eb:58:fc:26:
0a:ad:e1:90:48:58:29:2b:b9:ae:fe:c6:ed:d3:cc:
7a:68:98:b2:22:09:e9:55:90:0e:4e:11:14:61:64:
a9:09:16:a0:25:cc:5f:77:4c:42:49:83:ee:41:8d:
1f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F8:EA:42:6C:59:FC:6E:F0:29:36:0F:3F:87:B4:1D:7E:64:CB:1F
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:31:7f:1f:91:4f:ae:72:47:28:5e:bd:7c:36:8a:92:10:8f:
c9:8b:1c:29:8f:93:73:7c:eb:da:43:90:99:b1:3e:63:d0:e5:
b8:9d:14:33:8f:da:fd:fa:40:66:67:eb:65:ec:9d:d8:0a:05:
b6:f1:48:bd:d4:79:bd:3b:43:92:94:a7:0d:ca:86:4a:e8:e4:
1d:0e:b2:77:bb:7e:8a:d5:60:f6:30:c4:c5:54:d3:ef:b4:9f:
45:f0:61:e9:0f:e5:b1:d3:9c:9e:4d:67:e6:cb:a4:da:e3:fe:
d0:2b:c2:71:67:7f:36:e4:16:4c:09:57:d6:48:92:71:94:49:
33:95:b5:9d:de:0f:de:78:06:49:03:d9:f2:8e:4f:51:2f:b4:
cc:98:ef:b3:15:3f:f8:04:6f:64:70:8c:d0:96:9a:b6:1a:44:
c1:f7:6e:20:2a:1d:68:bd:37:76:20:17:17:0e:94:e5:f5:83:
cc:de:7c:77:4c:82:62:76:54:6d:0c:67:da:29:63:22:7a:c8:
51:9e:9c:b0:f4:ca:d7:b0:07:bc:c7:6a:c1:78:69:ed:8c:91:
b3:66:9a:10:e4:ce:0f:15:30:3d:d0:65:f7:7d:eb:73:46:af:
f7:b9:4b:7e:2d:ad:c0:9d:5c:70:ac:85:9d:bd:98:47:6f:72:
04:5e:88:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:10:05 2025 by rpki-client