Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: XRRSA5KEvV2AgNR7pG2Kqo5nqgVsGx+sk1uV+xpck0c=
Subject key identifier: 33:C7:84:3F:FE:C7:6F:CA:D3:CD:DB:65:E4:A9:2B:39:62:F9:39:B7
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 0199FD346A142180200B18DA2E98B313D7C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 1117
Signing time: Sun 19 Oct 2025 16:01:34 +0000
Manifest this update: Sun 19 Oct 2025 16:01:34 +0000
Manifest next update: Mon 20 Oct 2025 16:01:34 +0000
Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: 2PSmTY/ULq/nbZVAe2JMtMeNpHG/LHTd+204vu2x30k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:6a:14:21:80:20:0b:18:da:2e:98:b3:13:d7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Oct 19 16:01:34 2025 GMT
Not After : Oct 20 16:01:34 2025 GMT
Subject: CN=33c7843ffec76fcad3cddb65e4a92b3962f939b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a0:13:de:e1:1f:3d:bf:c2:f1:d6:76:45:a5:
3a:19:6b:6a:90:c3:ee:2f:a1:b1:03:e3:24:4c:4a:
e0:40:58:56:70:20:40:14:ce:01:02:d9:0d:1c:0f:
de:49:75:f4:21:82:11:0f:e8:a1:96:2c:04:12:5b:
ed:3a:f9:b0:71:5b:d4:ec:62:03:98:26:0e:a7:a3:
08:a8:72:d2:6a:8d:0f:c4:44:7c:ed:b8:21:80:4d:
7c:19:a2:46:a0:a2:b6:4e:61:0c:7d:55:3f:15:f1:
8c:45:50:94:c2:8a:cc:65:fe:d9:dd:be:cb:cf:6f:
71:50:c9:09:e6:3e:c9:0c:9a:11:87:b9:73:eb:76:
e3:5b:cb:9e:0a:16:9c:ab:9c:99:b7:fd:7d:fa:fb:
b5:03:c0:95:49:a1:d2:64:8f:ce:31:85:15:79:48:
b6:e2:41:a2:ce:d4:73:94:18:74:35:bd:a7:fc:fb:
03:80:09:31:44:65:ba:c1:de:84:77:49:23:1c:23:
ce:aa:5b:25:eb:af:d9:47:a9:63:a4:43:57:b1:fb:
15:47:2f:5c:84:72:9c:c8:4f:a1:a1:c4:54:49:9f:
86:85:89:8e:4e:18:2b:01:58:4f:05:e0:99:51:76:
e5:84:86:f2:5c:bb:82:93:a1:8c:da:44:eb:b5:79:
21:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C7:84:3F:FE:C7:6F:CA:D3:CD:DB:65:E4:A9:2B:39:62:F9:39:B7
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:48:c2:bd:e8:9f:f3:5f:83:a0:36:c4:a8:85:d8:bd:c3:c3:
ee:9d:77:74:73:81:96:4f:2f:0d:d8:9e:5d:33:80:43:9a:11:
b5:0b:94:ff:80:b5:1f:1d:1b:3e:f3:6c:84:9b:13:aa:9a:e1:
23:ca:0f:9d:2c:b0:55:8d:c9:1d:cd:ba:d7:09:c3:d2:8a:bf:
78:73:76:6a:9d:7d:9b:7f:d2:03:38:5b:5d:ae:06:a8:c8:4f:
86:0c:76:71:92:69:68:07:d1:53:2d:fd:70:e8:f4:ed:ea:58:
fb:e1:f8:e6:a9:0e:b5:75:df:af:5b:0c:e3:05:dc:f1:7b:43:
d8:f3:95:48:52:7a:c6:69:8b:33:69:30:42:12:4b:48:98:a3:
24:27:41:2b:67:fe:2c:06:38:7f:43:ae:8f:44:42:d5:4c:04:
16:61:8a:da:0a:cd:d1:d6:15:26:1e:e7:d2:ee:8f:b5:ab:1b:
4f:c5:22:21:e4:25:33:79:ab:63:36:95:3b:c8:15:f7:ed:be:
f7:cd:88:b5:6c:52:39:5b:c3:fb:fe:8e:cb:ae:78:8b:41:4e:
4f:33:85:e1:4b:51:99:33:6f:5a:8c:94:ea:80:b8:5f:90:5a:
2b:f1:2e:0b:16:9f:48:de:6c:16:a0:5c:3c:c7:eb:ff:e1:70:
be:ba:f8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:49:39 2025 by rpki-client