Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json)
Hash identifier: L9T+fittpYu3X7o8EIUfYCadfJJXjkwzhRLh+khkrMA=
Subject key identifier: 8D:10:8B:37:49:E2:DE:71:71:6E:13:59:6C:8C:8C:8E:12:7D:C8:C5
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 0199FF22A11A07ED2D8D2FD42D9B4637596D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
Manifest number: 1126
Signing time: Mon 20 Oct 2025 01:01:23 +0000
Manifest this update: Mon 20 Oct 2025 01:01:23 +0000
Manifest next update: Tue 21 Oct 2025 01:01:23 +0000
Files and hashes: 1: 0pi9IaQq2fBWcGfcpKeC_IHzvEQ.roa (hash: 7NVRHz/yavsbwJXBgfeDxYrCqDuUxp9nZbgGaZLZ9oA=)
2: 3wW5MOLSStojI9xiPbeDzYTIyjU.roa (hash: 2XAYsLytjrXYCpBJtfGxqKAam2Z4NRRhSRFoEEd4Llk=)
3: bpfV9qpUqRU7ZbL5m4qH_-0K2rg.roa (hash: 4P0zOtuiLjjQhgT/25d48jeUAEanfYakXWIUUX0ljiU=)
4: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: jchAyU61iG7cyuCTSIIn1xpd8i0wL5P8To5+A+i3COg=)
5: mPqcgtGb2yf9In758ERINrkMypo.roa (hash: NIdkZJadBz8qYXRNbhuo0LCb4YMZcnXeOqxZtSChOrc=)
6: yXjHrq-s43_JYr0rLELUWWQUfRw.roa (hash: 4zzMUSCqPCS+1DFvUjbQidVA6cErC1SxAP7lBmahGck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 01:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:a1:1a:07:ed:2d:8d:2f:d4:2d:9b:46:37:59:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Oct 20 01:01:23 2025 GMT
Not After : Oct 21 01:01:23 2025 GMT
Subject: CN=8d108b3749e2de71716e13596c8c8c8e127dc8c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4c:ef:83:aa:1c:2b:be:72:61:d8:0c:aa:90:
79:d7:86:18:04:14:0e:16:ef:0d:7a:60:a5:70:ed:
a9:d6:6c:29:64:f6:10:02:57:93:10:db:5c:08:d0:
f4:f8:cc:f8:af:e5:a4:d1:c9:d3:3b:8a:55:98:20:
ae:32:91:97:6f:23:81:d2:c5:43:73:86:8b:a3:bf:
fa:05:0e:8c:eb:eb:a5:e7:f6:36:aa:92:ed:ec:bb:
47:ee:fb:25:4a:ec:ae:da:54:01:18:20:3e:b2:71:
04:0b:89:ed:df:c8:ff:3b:5f:56:66:a7:d6:ef:e8:
29:03:df:13:7b:37:4a:04:a9:49:60:a4:d7:57:03:
35:f4:28:98:2e:60:ca:d8:a8:04:fb:5c:84:96:78:
d3:cb:82:fb:bf:6f:49:68:4e:5f:16:18:27:2d:a3:
af:9b:0f:c0:98:30:35:02:8c:9d:f9:2b:db:c5:cb:
c7:6d:79:8c:4e:f5:bc:72:a0:ff:85:29:77:bc:b3:
06:3c:b4:95:67:94:82:1d:1b:b5:fb:ea:49:b4:e6:
5e:67:ec:04:d8:f3:e2:b9:de:25:55:eb:67:43:67:
bd:9a:5b:f3:bc:aa:c1:d0:b0:07:3b:39:3a:f6:0e:
49:8a:27:a3:fc:8c:06:bc:7b:96:d6:aa:10:7e:9b:
30:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:10:8B:37:49:E2:DE:71:71:6E:13:59:6C:8C:8C:8E:12:7D:C8:C5
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:51:a4:09:da:18:8f:e9:0e:f2:6a:38:67:84:16:07:f4:fb:
05:9b:30:03:91:49:a2:53:e9:91:96:1a:ba:80:cf:a1:e1:a1:
f1:79:d4:b2:cd:d9:54:73:a3:98:bf:35:2b:66:53:cc:1d:3e:
50:73:52:ac:de:0c:d9:a8:af:f9:44:e7:14:e5:7c:9a:a0:9f:
4d:53:dd:06:a1:14:e0:d3:22:35:dc:d7:a1:20:cb:8a:69:74:
f9:57:4f:ec:f5:b3:01:54:2c:0e:8a:61:a1:15:db:b5:83:15:
11:dc:74:17:56:40:38:42:56:75:56:b8:04:9e:0a:5b:ab:3e:
8c:d2:3b:30:b1:a7:ad:a4:ab:d5:e2:fe:e6:5b:2e:ba:cd:32:
b6:60:98:00:08:73:06:37:f5:a7:b9:84:e2:7a:d1:90:f8:e4:
c9:4c:95:ad:93:87:2a:25:f5:93:30:ba:13:4d:33:ae:14:00:
01:93:57:4b:ec:48:c1:1c:2f:f0:03:e6:ce:21:5a:14:09:20:
4c:f1:e3:f4:19:8d:19:54:0f:32:f1:10:02:1b:cf:b2:b7:da:
93:22:ea:b7:2a:74:86:14:4e:06:72:e9:a1:bc:27:74:d8:73:
b6:24:67:c1:2b:b4:05:df:f4:8e:95:1d:a0:22:ba:7f:6f:e8:
80:a4:91:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 11:31:08 2025 by rpki-client