Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier: WnUMK1/w8CFSyVV2MNQ0oiTKgKI32pHNUQk2wbM/gjk=
Subject key identifier: 4A:C3:F9:EA:06:83:0A:D0:85:D2:30:4E:8A:B1:A0:A2:0F:CD:C6:C4
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial: 0199FBB35AA144F595AE44D7AA0B8C79CB59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number: 16F2
Signing time: Sun 19 Oct 2025 09:00:59 +0000
Manifest this update: Sun 19 Oct 2025 09:00:59 +0000
Manifest next update: Mon 20 Oct 2025 09:00:59 +0000
Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: TKcGfgGsLYMw7BlyJmzXNXrBVe58taCq7obBFcxXIBE=)
2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
4: L76bfs9TWWZl8Bl96EFZVlzxzoE.roa (hash: +NZoC7IOVINwP2lksSDULnc4emaNPZnnMnAXhFL6IOo=)
5: Rbk5PVjqlkpGo1SxsQ_tSeJLPbo.roa (hash: BRLtcU6d3bxk4bV/7KHF4XZmiUFqH8jja8emVx8VywY=)
6: biONUDB1iLS86N-lmaqB6_yoBtQ.roa (hash: 5maaRfHknlsWIxQOJIJbyzAegwgxyX3Q4OIbKY62ook=)
7: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
8: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
9: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 09:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:5a:a1:44:f5:95:ae:44:d7:aa:0b:8c:79:cb:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Validity
Not Before: Oct 19 09:00:59 2025 GMT
Not After : Oct 20 09:00:59 2025 GMT
Subject: CN=4ac3f9ea06830ad085d2304e8ab1a0a20fcdc6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:6a:0c:96:78:7c:b7:5a:57:89:08:17:3e:b3:
46:af:eb:f9:b0:74:db:38:b1:8d:0d:2a:3c:3e:6e:
88:aa:f6:c1:04:5f:2e:62:4e:5a:37:2c:ba:27:7b:
95:f1:32:dc:11:6b:c3:7e:d8:82:ef:ce:a0:40:67:
5a:a6:a3:ea:e3:bb:46:1c:d6:6d:10:e9:47:6f:12:
5a:b3:55:c8:d2:dd:cd:b9:b3:e9:86:ee:3d:bc:f8:
ce:7f:c1:18:27:5c:ad:c4:3f:cb:50:b5:73:52:71:
08:43:b8:d6:2f:1f:71:78:53:fb:a0:a6:ee:c6:45:
f1:cb:df:70:83:97:f0:fd:b3:e7:99:9f:66:14:3c:
6e:95:c3:59:8a:2c:dc:9e:39:2d:f3:db:43:08:24:
de:47:94:04:2e:21:17:63:21:62:9a:73:c9:27:b5:
ad:6a:e5:44:e1:1a:56:a7:c0:f5:4b:36:ac:15:ee:
5c:73:6f:c4:5e:e7:f0:f1:6e:69:53:43:25:dc:49:
72:4a:7b:76:35:cd:17:41:e6:b4:40:47:4a:ef:45:
00:e3:10:e4:5f:bd:2b:0c:ca:2a:5c:e7:5f:d4:6c:
51:b1:ac:19:f5:6f:8e:be:3f:49:04:eb:5a:5a:30:
d1:96:bb:df:5a:18:62:52:a2:be:b5:7c:14:54:86:
f2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C3:F9:EA:06:83:0A:D0:85:D2:30:4E:8A:B1:A0:A2:0F:CD:C6:C4
X509v3 Authority Key Identifier:
keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:ed:86:23:1d:45:ab:06:b4:ec:7e:05:5c:8d:18:10:b7:b6:
da:41:fc:7d:9d:e3:37:ab:bb:ee:11:e0:8a:98:7c:e5:77:9f:
2e:15:7d:89:8b:6c:e8:88:33:0a:b7:0f:01:ce:4d:7c:a9:47:
9c:72:5a:f4:e3:a2:73:46:9f:c5:70:29:98:c8:5b:35:2c:04:
94:b0:9b:3e:ef:6e:9d:0e:6a:a8:af:de:eb:7e:63:64:27:b1:
b6:39:99:d6:86:ab:7f:34:fb:21:84:37:d9:e0:fe:ec:b0:87:
cf:47:07:37:93:31:db:38:ba:a0:60:45:b5:11:2a:85:62:b6:
16:1a:be:ff:d1:ee:53:d1:67:71:29:7a:12:d1:7c:e8:53:2a:
ab:30:2e:a2:82:a4:fa:a9:0e:38:eb:0a:fc:22:ec:62:92:19:
41:f5:77:de:0f:56:d7:cd:2f:03:d7:19:08:23:ff:38:59:2e:
e3:ec:f3:8b:42:c8:22:ad:8a:5e:7e:55:6c:9b:6a:f8:8e:5d:
90:59:f2:ac:fd:d8:86:db:5b:4b:e6:d4:79:5d:62:f4:75:fb:
d8:3a:28:dc:c4:b0:3a:8b:db:d3:2e:98:cf:bf:91:f8:d4:36:
ee:eb:d5:e2:a8:f9:e9:b4:d6:03:d9:87:47:fd:08:96:6c:d9:
58:f7:cf:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:43 2025 by rpki-client