Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
File: hT8dWhiK5rK18qoTjbj5mqWq16E.mft (raw, json)
Hash identifier: MR8wWLs6I5ndgh0ljR5wtcmUEK1fGpoTeb/VXqamuws=
Subject key identifier: 93:FD:AC:58:33:CD:CC:5B:DA:A0:00:3B:55:98:DA:C0:90:08:30:EE
Authority key identifier: 85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1
Certificate issuer: /CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1
Certificate serial: 0199FB462527B179EFD8AA32F755D985B5C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
Manifest number: 1C
Signing time: Sun 19 Oct 2025 07:01:42 +0000
Manifest this update: Sun 19 Oct 2025 07:01:42 +0000
Manifest next update: Mon 20 Oct 2025 07:01:42 +0000
Files and hashes: 1: VApcgRE4jCfqWsVvaGSgipYw68w.roa (hash: A0jt937wu1wIoLHac2gn8nLqE9B73D2kq/AGcMo7Moc=)
2: hT8dWhiK5rK18qoTjbj5mqWq16E.crl (hash: CX6XE9CQMT7LN61cF9w6QcBPiDnZES+jBheOcI/+0P0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:25:27:b1:79:ef:d8:aa:32:f7:55:d9:85:b5:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1
Validity
Not Before: Oct 19 07:01:42 2025 GMT
Not After : Oct 20 07:01:42 2025 GMT
Subject: CN=93fdac5833cdcc5bdaa0003b5598dac0900830ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:61:c3:35:a6:9b:02:dd:21:3f:e2:c9:12:d1:
01:48:94:71:6d:f3:86:c3:7f:53:5f:b3:0f:19:45:
05:3f:3b:3c:01:12:c6:29:d9:f7:f2:2c:7b:17:90:
5a:9f:d6:4b:5d:45:b7:33:d6:f4:d7:56:cc:a0:1a:
0c:00:d3:1d:9e:e2:27:f8:8e:a6:47:5b:4c:07:c9:
34:2c:99:62:30:82:f4:6f:77:7a:38:0e:f3:0a:c7:
f0:57:d3:eb:ca:44:0e:db:a2:d9:95:34:25:da:78:
27:f3:dd:19:0a:7d:6b:66:e1:6e:e9:11:7c:a1:24:
42:7b:86:16:49:0d:d0:4b:3f:14:a8:6c:5f:a8:7d:
e7:c2:d6:b8:84:62:43:63:88:e6:e7:ec:2f:26:a0:
be:f3:c2:86:08:92:d2:33:6b:a0:a1:89:1d:c6:c2:
82:ed:b9:7b:e8:23:71:80:6c:95:c7:de:3a:5f:be:
e9:73:82:56:e0:5e:0e:e2:37:9d:70:43:a7:c4:a6:
e5:05:ed:9b:8f:29:36:48:6d:12:d6:7d:9e:df:9a:
77:c2:51:d8:c5:19:f3:62:18:bb:01:62:9f:a6:be:
c1:05:de:6b:4a:d0:ee:94:84:8b:b5:58:a6:b9:08:
57:a1:45:97:ec:53:af:53:e2:49:2f:c4:be:7d:83:
d0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FD:AC:58:33:CD:CC:5B:DA:A0:00:3B:55:98:DA:C0:90:08:30:EE
X509v3 Authority Key Identifier:
keyid:85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:c5:98:cb:a9:1b:11:fb:bd:48:f9:46:a1:fd:c4:7a:96:02:
96:6f:c5:c3:fa:11:6b:dd:f5:5b:7e:06:54:ac:31:36:f7:cf:
37:c1:2d:14:e1:8a:f5:d7:40:ce:eb:66:99:d6:2c:75:05:47:
9d:cc:00:6f:e7:83:25:d8:43:52:55:eb:72:7c:ac:c0:6f:bf:
45:dc:9d:da:80:fc:3c:74:3a:d2:08:cc:85:90:8b:e2:17:9c:
a5:04:b8:e7:ad:47:ad:1f:1e:66:8b:88:5a:b3:ce:b8:f0:d0:
d0:06:ea:78:5a:71:31:9a:21:ec:aa:01:a0:26:e8:e1:d8:03:
ab:01:92:6c:75:64:43:3f:17:e2:69:60:03:ee:a8:d0:03:ae:
6f:ca:65:c2:ab:37:50:51:e2:76:81:af:f4:07:44:36:8f:04:
30:5b:08:ca:4e:1e:12:c8:1f:6f:25:58:84:66:73:f4:69:70:
07:3c:11:97:0c:4b:80:46:de:10:62:4b:0c:6c:08:c3:a0:39:
02:66:1e:a9:59:3f:f5:b0:01:bb:32:ef:e6:2b:b2:8f:96:6c:
49:39:86:84:e3:ad:03:06:82:31:04:ec:24:c1:e6:8a:06:53:
a1:dd:d0:97:9d:ae:3a:c0:eb:f3:94:7f:0e:7a:27:5e:28:85:
67:a1:d5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:14 2025 by rpki-client