Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json)
Hash identifier: stMA2tEqKoRIqFFBzT+ly2F1I+Iant1C+3M8voFoZBM=
Subject key identifier: AB:A0:BB:5D:38:99:C7:D7:10:D1:1B:65:10:4F:43:7E:DA:35:52:AF
Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Certificate serial: 0199FF22BFAF9065279357728C956C4F6CD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 01:01:31 +0000
Manifest this update: Mon 20 Oct 2025 01:01:31 +0000
Manifest next update: Tue 21 Oct 2025 01:01:31 +0000
Files and hashes: 1: E7w56iH6n62Qtx76-l21Wicx0tI.roa (hash: mYbpZ2jovxydBfbzCm7J8lBecdgedCJGDSbz9EY1aRY=)
2: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: MfpM8FsFjNgTxs51IOMcBEtgxQ1i3aw27nqrVJ09UrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:bf:af:90:65:27:93:57:72:8c:95:6c:4f:6c:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Validity
Not Before: Oct 20 01:01:31 2025 GMT
Not After : Oct 21 01:01:31 2025 GMT
Subject: CN=aba0bb5d3899c7d710d11b65104f437eda3552af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d4:e3:11:71:36:a8:75:9e:a4:7b:c6:ea:13:
6d:b0:2c:94:a5:f8:26:b5:e6:f4:f6:9a:a5:41:70:
28:ae:12:aa:58:d9:7f:1d:81:bc:e6:80:c4:ae:d4:
29:ca:be:35:35:13:ba:cf:4e:1a:78:32:46:d7:3f:
09:9f:8e:83:80:53:bc:01:61:0c:a7:4c:8e:fe:cd:
ac:f9:77:ab:d3:3e:b7:60:de:c3:a4:3b:ee:07:90:
86:dd:b3:a0:7a:4f:99:c1:99:6f:73:70:ef:4e:7f:
21:86:d7:62:ff:74:05:60:9f:50:7e:4d:40:db:a9:
e9:66:ce:98:1d:de:8d:61:3b:bc:a2:e3:d1:21:49:
1a:9f:12:cb:99:6b:2f:21:12:f1:cf:3b:e7:88:0b:
7d:32:9e:97:7e:48:ff:6b:e9:e7:11:35:6f:ba:be:
6c:8d:d4:1a:95:11:bf:a5:9a:44:d2:bb:19:37:5e:
9e:c8:d4:00:05:04:0b:d8:0b:88:58:4d:9a:4b:95:
c7:c0:1c:35:36:f2:ad:b2:ae:88:93:c0:fc:97:e3:
c8:2e:d9:2b:77:bf:32:ff:01:1a:6e:f9:65:21:6a:
62:06:30:1a:03:da:61:7f:b0:a7:60:0a:9e:7a:99:
28:eb:2d:eb:ec:a4:71:3b:39:02:36:da:77:cf:43:
71:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A0:BB:5D:38:99:C7:D7:10:D1:1B:65:10:4F:43:7E:DA:35:52:AF
X509v3 Authority Key Identifier:
keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:4e:70:25:76:ab:57:f9:6f:e4:65:2f:c6:95:c8:a3:6e:c2:
cd:eb:22:14:86:3f:12:3a:72:c5:4d:1c:b8:7f:65:33:16:0a:
83:8d:93:9d:d7:5e:22:73:86:70:2f:73:27:ef:57:bf:9b:89:
b1:86:71:23:47:b7:f9:5b:3c:1f:ea:74:66:69:fd:71:64:6e:
3b:24:db:4b:ac:10:07:2e:d7:eb:2b:01:37:d6:cf:af:83:94:
a4:f0:98:d6:08:45:e0:3b:a4:e0:19:83:6a:8f:e7:f9:25:ae:
d1:5f:c7:ed:fd:aa:54:e3:1a:f3:b0:1c:db:2d:f7:f4:b7:97:
8f:cb:3f:e7:ef:12:84:e7:ce:96:b1:23:23:8d:bc:d3:8b:f4:
00:6e:d5:c5:b8:37:5e:91:90:69:5b:66:1c:4f:2d:3a:99:39:
10:a8:70:72:5a:6c:1c:e4:d2:82:cc:3b:3d:92:a7:ac:d8:aa:
a2:dc:ae:3d:94:ec:55:88:d0:77:03:07:df:94:74:aa:3e:6c:
c2:5e:68:e2:3f:88:8a:ba:a0:53:ba:ff:7d:5c:a2:e3:ff:d5:
12:68:fc:c0:9a:0b:b2:20:b8:38:41:a3:b6:ca:5c:3c:42:7b:
8a:24:cb:65:ec:88:55:8e:8f:ce:ad:ef:57:76:06:b9:df:f6:
58:a8:ef:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:41:53 2025 by rpki-client