Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
File: hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft (raw, json)
Hash identifier: l0lZ571YufLJKzrxCaK2vxtcNg8SB2SWmqafm9MD/eU=
Subject key identifier: B0:A0:76:91:06:B6:BB:09:5C:C0:16:DF:41:2C:79:87:B6:F0:1E:3D
Authority key identifier: 84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
Certificate issuer: /CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Certificate serial: 0199FCC68E96C2022BA59E4666A5AAAE8F62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
Manifest number: 117D
Signing time: Sun 19 Oct 2025 14:01:35 +0000
Manifest this update: Sun 19 Oct 2025 14:01:35 +0000
Manifest next update: Mon 20 Oct 2025 14:01:35 +0000
Files and hashes: 1: XLQfftOCYwZhCKWBFvPgcWtM3ng.roa (hash: e5IwRRubP2iih1RAenDvyf84x82YlIWC8mC3l2YoKV8=)
2: hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl (hash: JMNHpYI74TI0kMbh+sp2DpAmDtn3cKV6/a2XYcHMkng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:8e:96:c2:02:2b:a5:9e:46:66:a5:aa:ae:8f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846d45225cf0d4fa9c65aee88861d2261203ad00
Validity
Not Before: Oct 19 14:01:35 2025 GMT
Not After : Oct 20 14:01:35 2025 GMT
Subject: CN=b0a0769106b6bb095cc016df412c7987b6f01e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:15:23:1a:27:72:35:f0:81:2b:e7:da:c3:19:
1b:cf:7d:7e:5e:0b:4e:d6:a7:5f:51:13:53:1e:56:
98:92:7b:6f:f3:c9:01:a8:ff:2c:96:fe:4f:d4:1f:
7a:7e:09:56:04:9c:6e:cb:68:8d:eb:5f:70:ae:cd:
45:86:85:c4:46:cd:85:1d:24:a3:0d:0e:01:2f:a9:
47:91:ab:a9:24:33:7d:69:27:2d:af:ed:1f:a5:d4:
be:07:36:a5:d9:f1:7b:4e:ec:1d:6a:ed:74:ce:53:
8e:ac:15:c3:fd:58:52:0d:8a:55:22:17:fc:05:b2:
a2:a4:e1:a9:a2:1d:7f:6c:08:8d:c7:7e:61:1f:b8:
59:67:3d:59:cb:e9:3f:1a:91:4c:e1:2d:b2:73:90:
3a:23:bb:2a:9d:fb:38:c1:40:72:b9:82:69:44:6c:
4f:49:fc:94:8e:68:0b:00:56:b0:e4:fe:f7:2f:5e:
a1:18:98:d9:4a:2d:2f:f5:fd:8c:61:cb:8a:ce:fa:
42:ad:3f:e8:e8:96:f6:d5:b0:ff:fb:56:d9:06:d6:
53:4d:23:39:59:d0:0b:a7:f8:1b:43:78:81:aa:e0:
94:1a:5c:c9:f4:7b:8c:5f:c6:9f:16:e5:ca:f1:f6:
08:2a:59:bc:da:9c:96:1a:14:7b:d3:03:76:63:4e:
df:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A0:76:91:06:B6:BB:09:5C:C0:16:DF:41:2C:79:87:B6:F0:1E:3D
X509v3 Authority Key Identifier:
keyid:84:6D:45:22:5C:F0:D4:FA:9C:65:AE:E8:88:61:D2:26:12:03:AD:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hG1FIlzw1PqcZa7oiGHSJhIDrQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/163f4b-de59-487a-9110-463531046c7f/1/hG1FIlzw1PqcZa7oiGHSJhIDrQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:b5:64:99:78:34:cc:3c:56:da:58:55:96:7f:56:43:ac:3d:
f7:e8:16:35:6b:84:18:92:9b:c9:04:5f:44:ac:8d:90:08:59:
82:33:7c:c4:65:7e:53:a7:c2:d5:84:1f:0e:b1:a2:29:c7:f2:
28:98:71:df:5f:2b:0a:0a:b5:9d:30:bc:d0:93:80:b3:3b:c8:
78:e8:b7:a6:77:7e:82:aa:b9:f7:5d:12:06:7a:af:3d:12:ee:
a6:b0:d9:7c:3e:db:8c:cc:06:84:70:8e:fc:a1:f1:dc:6a:42:
ad:fd:95:75:73:ac:28:91:94:79:18:29:39:c6:a1:b6:9e:11:
ba:ef:35:a7:6a:a4:29:2c:e3:d8:7b:78:f2:ef:e3:cd:25:90:
03:fb:04:1d:5e:56:a3:d2:88:ee:d8:4a:81:32:ef:96:89:ac:
3f:a5:82:71:1d:c8:ec:3a:04:0b:c4:f0:91:2a:7d:54:6f:22:
26:66:ff:6c:64:0d:0f:8d:62:2d:59:72:fc:ff:f4:36:93:f6:
35:68:36:49:be:c4:8b:c8:fd:c3:bb:57:7d:8d:cf:2e:0d:66:
9a:55:4e:57:19:aa:5c:eb:cd:1f:7c:14:d8:b7:73:5f:e7:53:
d9:55:c8:2a:d7:1e:bf:14:64:cf:46:b2:2a:53:75:aa:a6:e1:
6a:a5:89:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:46 2025 by rpki-client