Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: Ts0eBZsloKyudqQtq2n5hbOxQ5XjEuF8OULlNIkeCxc=
Subject key identifier: 96:13:47:54:72:59:43:67:69:DB:D6:03:1F:58:B8:72:C1:53:6B:06
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 0199FC8FBFF4815091A6A1827A5A0EF14266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 08F7
Signing time: Sun 19 Oct 2025 13:01:43 +0000
Manifest this update: Sun 19 Oct 2025 13:01:43 +0000
Manifest next update: Mon 20 Oct 2025 13:01:43 +0000
Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: j7HwjaDYoUUya8hqSTm9TpXip1xPtZFHxN401P7XZ+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:bf:f4:81:50:91:a6:a1:82:7a:5a:0e:f1:42:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Oct 19 13:01:43 2025 GMT
Not After : Oct 20 13:01:43 2025 GMT
Subject: CN=961347547259436769dbd6031f58b872c1536b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:35:96:93:12:44:60:77:01:09:25:9b:c6:f9:
3c:25:7d:93:e3:ae:c8:98:d1:e1:d4:66:e8:a1:5e:
c1:a0:58:88:1b:a6:ee:2a:c7:ab:a6:91:0f:cf:e0:
7c:6d:6e:7f:1e:93:27:0f:a6:78:13:f9:03:42:51:
64:da:0c:5c:8b:2f:62:eb:d2:53:b1:ba:b8:62:67:
c7:7f:5a:7e:21:90:e0:6e:9c:cc:54:09:be:30:29:
bd:59:d8:e5:73:89:4f:49:31:a3:ac:63:36:64:db:
24:c7:cf:ca:89:f4:ef:0a:6d:0f:71:2c:64:a6:19:
a4:44:33:bd:1e:c2:f7:e5:97:ae:cd:af:0a:55:cb:
90:2f:08:f1:3d:9a:95:5d:59:03:10:f0:8a:89:a0:
c5:7f:60:fe:cf:ef:0d:c7:5a:f8:60:17:ec:4a:98:
1e:b6:fd:6b:65:f7:cd:57:f5:79:24:7a:da:04:d9:
c6:8d:1e:7a:ea:b1:0b:38:42:ff:da:3d:25:d1:80:
9a:5e:3a:12:19:10:de:66:4f:74:bc:38:f3:70:c2:
80:26:d4:21:d5:e6:ad:89:28:ef:8c:ef:de:b7:b9:
62:58:3c:57:b1:55:1e:ab:9e:9b:11:04:9d:e8:b0:
41:1a:8b:58:a1:6e:1e:23:00:0d:7c:e0:ae:eb:76:
5c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:13:47:54:72:59:43:67:69:DB:D6:03:1F:58:B8:72:C1:53:6B:06
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:79:e1:7c:2b:ad:bc:b0:bc:b9:f9:d1:db:83:1a:71:b9:d8:
f4:f7:64:42:f6:34:02:9a:02:dd:33:45:0e:0d:ab:20:06:cf:
5d:1d:4e:ba:44:2b:55:4f:f3:cd:60:65:ff:9b:44:ca:a1:2d:
a0:a0:a8:8b:8b:ec:f0:31:2f:fc:fd:a2:f9:ac:bc:f4:b8:60:
58:54:bd:dd:b8:d3:cb:8e:55:fe:42:af:cb:7e:ed:87:4b:4f:
bb:08:19:d5:45:67:13:bb:77:8d:b0:15:f0:79:c3:13:4a:4f:
3a:48:fb:46:e6:b4:1c:9e:9e:7c:5b:23:ba:ea:f8:90:1a:66:
32:63:d0:30:e8:38:c9:7d:f1:7d:fe:82:74:b5:a2:73:61:c8:
76:15:47:84:0a:14:07:c0:f3:18:b4:dd:c7:44:27:d0:c9:bb:
00:bc:4c:a2:89:67:ec:65:e6:67:f3:9c:61:28:a7:c6:a3:de:
88:47:1b:c4:9f:e8:c9:92:51:b0:59:40:85:c4:77:d4:06:a2:
66:c5:2c:df:bb:51:a7:2f:5e:4e:6f:9f:c1:00:6a:d0:d6:b1:
ff:c5:b6:8a:ef:14:5a:b7:59:ae:e7:72:3c:5b:d2:a7:af:88:
6b:79:de:ef:6a:4a:9e:24:72:04:ba:21:24:59:e1:37:e3:dd:
c6:ae:aa:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:26 2025 by rpki-client