Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: Cd3MCS1PgbDmOAynOMX78dMjH5157vCDvxY3XkeW4xY=
Subject key identifier: 00:9D:81:85:91:52:5A:B6:45:90:63:6D:1B:14:89:D2:B9:FB:22:74
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 0199FCC66B37D1D48EF8935B3F8CDA85B706
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0B96
Signing time: Sun 19 Oct 2025 14:01:25 +0000
Manifest this update: Sun 19 Oct 2025 14:01:25 +0000
Manifest next update: Mon 20 Oct 2025 14:01:25 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: BpJa00jXbh8hTwfl7DsgNXdfUWGIUVzkVqbezz4iiRw=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:6b:37:d1:d4:8e:f8:93:5b:3f:8c:da:85:b7:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Oct 19 14:01:25 2025 GMT
Not After : Oct 20 14:01:25 2025 GMT
Subject: CN=009d818591525ab64590636d1b1489d2b9fb2274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:17:9e:e3:24:65:1e:43:63:62:e8:20:20:34:
16:7a:78:d0:0d:c1:2e:82:96:0f:e3:71:64:07:ad:
0f:cf:ad:ae:cb:66:a1:cb:2a:6f:d8:f2:9a:51:0a:
1b:9f:1a:a9:59:3d:65:6c:d2:49:42:29:0f:75:96:
76:0d:f6:d4:46:5e:c6:48:c3:fa:d3:98:a9:c1:b0:
77:c9:ce:40:aa:bd:e3:36:34:c9:ea:fe:32:3b:74:
aa:bc:ff:e0:6a:9b:36:b7:81:57:70:1f:34:73:5a:
7b:8d:d9:da:11:ae:d0:95:34:f8:20:3b:84:e3:df:
e2:cb:f5:db:09:0f:1a:e0:c4:8e:9d:18:43:fe:9d:
77:4f:6e:a2:60:bb:2a:dd:79:a2:b7:28:9d:4d:30:
93:47:2e:1f:69:a8:eb:02:9a:39:1c:bf:05:7c:a5:
b6:b6:4a:e2:5a:9e:28:2a:69:2a:a6:48:e6:48:6b:
e8:57:44:74:2f:ec:78:4e:c2:f8:cb:3b:eb:8b:5d:
91:23:c7:48:bb:39:e4:be:cd:af:b0:a4:cd:9f:53:
e5:02:57:18:a0:8d:73:d3:21:91:85:ab:21:d1:2f:
ef:3e:e5:de:8d:85:70:f1:18:31:84:5a:25:b8:1d:
78:2f:35:a6:df:b8:14:a2:6a:6e:18:6a:0c:fb:5a:
1e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9D:81:85:91:52:5A:B6:45:90:63:6D:1B:14:89:D2:B9:FB:22:74
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:eb:39:e2:0f:02:f7:45:15:a9:20:b9:fa:47:2a:1f:13:ea:
d3:d4:c7:bb:b6:50:a8:93:e7:19:92:ee:e4:c3:94:e0:4a:7d:
86:3f:3b:64:25:d5:49:60:e5:fe:45:61:7e:37:c8:76:1e:de:
16:19:06:2b:52:37:1b:31:54:d4:ae:6b:b7:40:e3:82:78:9b:
ad:16:24:1a:89:35:8a:c8:c3:52:33:a3:bf:fb:70:92:18:3e:
83:6b:4b:83:f7:30:42:40:f6:a9:a5:0a:8c:69:46:c5:5e:13:
a3:85:d9:11:6b:e5:45:02:45:84:54:d4:31:50:33:53:a6:86:
56:ad:77:71:17:d3:80:c3:a8:27:48:32:71:b6:31:4f:88:68:
0e:2e:93:a0:b8:6c:fc:ec:bb:36:a8:4f:ff:02:d0:41:7d:77:
4f:bf:f1:af:d3:d9:3d:18:80:76:0d:37:54:23:e2:f8:44:f7:
54:f2:78:e5:89:1f:9d:2c:03:80:b0:02:93:a3:9f:6f:7c:59:
da:53:34:bf:a0:66:12:b3:85:da:29:1f:2f:13:a7:00:fb:df:
2d:f5:1b:60:92:b0:22:64:ed:2d:3b:60:b4:57:17:a6:d1:ff:
0b:ba:24:1a:60:95:4a:60:61:0a:43:0b:f1:f5:94:38:56:f6:
0b:f8:6c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:33 2025 by rpki-client