
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
File: hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json)
Hash identifier: wd5tRaM7k4+/GgLaQZBshoR2/bVQs33VvVPPL+0phWg=
Subject key identifier: AF:BD:59:6A:BF:65:92:EE:84:3C:35:17:51:E8:7E:BC:01:90:AB:39
Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
Certificate issuer: /CN=8466a5dde27f911da8be73c261ff55b5881198a9
Certificate serial: 0199FDDA38983975A99E66EE1228A2D749CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 19:02:40 +0000
Manifest this update: Sun 19 Oct 2025 19:02:40 +0000
Manifest next update: Mon 20 Oct 2025 19:02:40 +0000
Files and hashes: 1: P7kra4ub5VF3YEJjz3ym8CwbAXA.roa (hash: AJEYR0xnzVy6utllNh8R4LIoanjGY6stnMXm+hMmUEo=)
2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: tuXt5YT8KJ1W28lXOM8MhxxuHyunVsWQysrpeQREjLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:38:98:39:75:a9:9e:66:ee:12:28:a2:d7:49:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9
Validity
Not Before: Oct 19 19:02:40 2025 GMT
Not After : Oct 20 19:02:40 2025 GMT
Subject: CN=afbd596abf6592ee843c351751e87ebc0190ab39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:07:15:00:41:d4:f4:74:1a:db:8d:22:ea:66:
fb:40:e0:6e:b3:48:78:ac:62:33:b4:c8:d0:3b:0b:
20:2d:68:e8:18:7f:1c:07:f2:6f:71:59:e7:e3:f3:
80:b8:22:a3:e2:29:ae:00:e0:e5:45:ca:8c:2c:c4:
1c:b5:af:f6:8c:cd:63:50:05:6e:93:c3:f4:1a:ea:
58:50:c1:53:65:3d:56:5b:06:de:48:df:72:35:05:
1f:89:6c:02:09:67:60:e5:dc:6a:40:76:76:ec:76:
b8:ee:13:89:18:af:5e:c8:71:ec:fd:2c:41:a8:3a:
d7:c4:26:c8:f8:e7:23:19:7e:17:ab:0d:23:37:f0:
19:c6:5b:49:ac:fb:39:65:fd:7b:7b:9c:35:8c:a1:
2a:0a:5f:3d:80:a4:82:37:2d:cd:a7:ea:ff:30:54:
14:61:c1:77:70:a0:90:68:cb:d8:64:7f:11:7e:23:
01:41:db:67:0a:25:98:81:2a:05:e9:64:e5:a4:89:
85:e3:2f:76:15:58:ec:6f:c2:e1:c6:90:54:e4:e1:
0e:73:7d:36:eb:f2:ed:92:96:ad:7f:3e:23:c6:74:
c1:fa:46:9d:40:b0:e6:20:e2:07:97:94:ef:e8:05:
1c:6d:2f:6e:15:3d:2f:e1:7c:cc:40:a7:e3:99:a5:
1e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BD:59:6A:BF:65:92:EE:84:3C:35:17:51:E8:7E:BC:01:90:AB:39
X509v3 Authority Key Identifier:
keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:42:eb:d8:4f:ce:74:fa:51:a6:11:d4:b6:00:f3:d3:29:da:
c5:fb:db:20:ff:a8:14:e3:bb:9a:54:24:01:d7:5d:d5:17:90:
2c:7d:12:df:82:b1:ea:8c:0b:05:7e:bf:b3:d0:3f:0a:e4:5a:
a4:12:c1:64:61:66:3d:b5:2e:68:b5:0d:e1:45:59:dd:3f:9d:
ff:52:4a:a1:f0:ff:7f:75:c4:eb:6b:60:8a:30:83:26:47:0a:
6d:1f:81:06:97:b6:d9:98:77:98:e9:4d:4f:2e:ac:e0:d8:d1:
83:46:38:f8:10:cb:db:d0:9f:9a:1e:41:01:d3:f8:24:0b:3c:
24:26:98:94:0a:3c:2d:80:b9:55:88:75:d7:c1:6b:e1:10:f4:
c1:1a:ff:ce:49:b9:f0:f0:b7:c0:44:c2:4c:62:44:fc:42:7a:
0c:ab:23:5c:c5:1b:f3:1a:47:1d:8e:3a:15:8c:73:5b:2a:25:
66:82:35:b9:45:cb:ba:21:76:29:c0:2d:d1:6e:1e:df:8e:31:
c0:20:01:ad:9a:58:1f:31:f9:d2:08:e5:3a:0b:6c:db:70:75:
e5:a3:3f:43:67:88:24:94:4f:fd:96:5b:52:d8:6f:56:80:5d:
de:a3:6d:50:d1:59:ae:fb:5b:71:d3:21:96:76:e1:99:28:1e:
e3:f2:16:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:44:34 2025 by rpki-client