Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: udem+1CpuHsyoY4QmWN46rfDiXRt7S3CJzGvnrMJirU=
Subject key identifier: 9D:E1:17:F4:77:EC:A0:F7:E4:64:7F:52:39:AC:21:C2:7D:0B:73:00
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 0199FEB4E49B9DFAD76C7DD62B472492E464
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: 01E3
Signing time: Sun 19 Oct 2025 23:01:31 +0000
Manifest this update: Sun 19 Oct 2025 23:01:31 +0000
Manifest next update: Mon 20 Oct 2025 23:01:31 +0000
Files and hashes: 1: duguTeW8ErmRr7f5ZEryR3oV58E.roa (hash: q3OOsJ7Kv17p8ez5C5AQYcTLGWf82piJmxtRxe/QdaM=)
2: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: tlNjBbN5MXWAPOUeHYLT0qST+nTevCWTLjHr9q0SKEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:e4:9b:9d:fa:d7:6c:7d:d6:2b:47:24:92:e4:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Oct 19 23:01:31 2025 GMT
Not After : Oct 20 23:01:31 2025 GMT
Subject: CN=9de117f477eca0f7e4647f5239ac21c27d0b7300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cf:30:87:35:32:37:ff:bc:00:8b:25:02:4b:
f7:a2:ae:78:42:b4:f7:bf:08:47:5b:ff:c6:3e:8f:
0a:c9:47:a9:af:3e:61:20:94:00:13:4d:e3:f0:37:
cf:14:9e:30:df:b4:09:92:89:a0:48:ef:fc:a5:c9:
a1:98:aa:0d:0f:c7:a0:14:cb:fb:31:94:36:97:1b:
67:8d:d4:73:e7:fc:0d:35:d3:2f:da:0d:63:c3:79:
5d:17:ab:bf:65:8c:da:0c:75:29:eb:dd:b5:db:1d:
09:c4:48:b2:6c:d1:14:4f:bc:f1:cc:4c:49:1e:3c:
77:6b:2f:e9:fe:71:7f:de:26:3b:0e:f6:c1:78:6b:
39:f6:ca:da:2c:c3:48:d3:4d:b1:21:c4:c6:d6:0c:
85:9a:aa:14:1b:8d:85:31:e4:6d:4b:f0:c6:66:e1:
7c:fa:ca:a0:00:bf:a6:0a:f1:91:18:30:82:2c:95:
dc:88:31:f3:be:d8:85:af:a3:27:07:e1:7d:9f:fa:
1c:cc:63:3c:24:dd:ef:05:b1:39:69:67:d9:3e:bf:
f6:4f:ae:ed:31:63:ec:6f:30:cb:07:06:87:d0:b5:
0a:b7:c9:20:b6:01:93:01:3c:d4:1c:73:5b:88:cb:
cb:b1:00:cb:d7:10:16:cc:5e:cf:1c:5b:bf:dc:f4:
dd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E1:17:F4:77:EC:A0:F7:E4:64:7F:52:39:AC:21:C2:7D:0B:73:00
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:66:fe:5f:71:41:7c:f2:14:0b:eb:16:3c:f4:b6:a0:c4:e0:
af:57:28:03:f8:57:3b:7e:72:4f:72:0e:5e:a1:45:e8:f0:f0:
4b:6d:b3:0a:53:f4:7f:f0:50:e1:eb:eb:1f:3e:23:09:e1:d0:
ed:f2:b4:fa:97:28:8b:85:39:49:70:e2:40:08:11:a1:c8:1f:
a8:03:aa:3d:e6:84:a4:21:70:e2:91:ca:5f:34:c6:cd:01:ff:
59:28:2f:12:db:26:44:e6:e9:aa:b2:f9:f6:a1:d5:13:d5:40:
85:1c:c1:67:4a:89:39:16:62:ee:58:74:a1:85:09:08:16:68:
d6:e2:47:4b:0d:8d:53:a6:15:57:92:02:a7:aa:e6:05:89:8d:
a3:32:59:47:ad:a1:9f:dc:ed:b4:57:8f:7b:89:28:64:16:ef:
ca:66:e5:e3:9c:4a:2e:7b:a8:23:04:be:b9:ee:5b:bf:8c:f1:
15:21:27:47:df:58:1c:4c:d7:2a:d0:30:18:2c:11:2c:a1:f7:
1c:1e:f9:67:e0:1f:64:96:48:59:06:8e:b6:8d:15:cd:db:2e:
0d:0b:96:dd:5c:c1:c2:2c:c0:1e:53:16:bf:92:66:ae:85:b8:
7f:fd:fb:5c:d5:43:f0:1d:dc:bb:71:79:9a:c4:e9:fb:df:2a:
a0:cd:52:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:41:50 2025 by rpki-client