Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
File: mHyvDLazMBzAhKJdXCFBCpLKfjY.mft (raw, json)
Hash identifier: qTYVuBDkls5avbQMfn27SsIu30rKwaohKuCf+PsnYX4=
Subject key identifier: 40:46:2D:C6:62:A9:59:42:DB:26:7F:42:11:EE:9A:DE:35:75:53:C2
Authority key identifier: 98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
Certificate issuer: /CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Certificate serial: 019A2D445E1296E8C94866581FA10864DDDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
Manifest number: 086E
Signing time: Wed 29 Oct 2025 00:00:46 +0000
Manifest this update: Wed 29 Oct 2025 00:00:46 +0000
Manifest next update: Thu 30 Oct 2025 00:00:46 +0000
Files and hashes: 1: mANtdvjrwJb7CPzwvDq9bTI0qtY.roa (hash: bxccQm8ZlD2A8QhBkFeAoasQeWmGc7036H8m3hd3seo=)
2: mHyvDLazMBzAhKJdXCFBCpLKfjY.crl (hash: ALjxWPS9NXYveh7zm20ljlz6Ni3W2H8ZE29gTNlJ5vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2d:44:5e:12:96:e8:c9:48:66:58:1f:a1:08:64:dd:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36
Validity
Not Before: Oct 29 00:00:46 2025 GMT
Not After : Oct 30 00:00:46 2025 GMT
Subject: CN=40462dc662a95942db267f4211ee9ade357553c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:84:b1:45:db:af:c6:17:1f:a9:f6:d3:c2:be:
d0:ad:33:dc:d0:e5:7f:92:82:cc:f8:00:80:ec:d5:
1e:7b:e2:1a:ad:35:0b:fc:8a:1a:f2:9c:02:17:d1:
af:82:89:70:72:ad:98:6e:5a:3b:4c:b4:36:70:a8:
ea:0a:0e:7a:a1:44:f5:da:de:0e:d3:7f:21:12:54:
16:c5:2b:51:48:da:3c:06:0e:f4:54:20:d4:24:9a:
d1:b2:e0:67:8b:07:ce:6f:19:a8:53:48:bd:b6:41:
32:3c:7b:fb:08:ce:3f:d6:82:ae:08:4a:24:b0:4c:
d2:7b:f5:6a:47:e5:6f:87:e5:19:73:00:ec:af:80:
9f:3f:34:3a:27:90:f8:bd:34:f2:78:e6:a3:a1:0c:
73:8d:e6:34:6b:88:01:1d:0a:ce:0e:8f:0e:00:a8:
95:68:22:40:f6:fd:07:de:96:c8:7f:cf:7a:c6:50:
13:cc:06:01:29:81:a2:f4:01:b0:d8:0a:51:fc:d6:
eb:5d:9a:36:ba:11:f8:79:a1:2a:61:5d:09:15:c2:
d2:41:66:71:c2:0d:ed:92:7c:18:6f:21:ae:83:b8:
0b:ab:cd:d8:e4:f5:80:c3:82:a3:0a:0a:25:16:a9:
2b:3b:6a:68:c6:50:e0:c9:a9:44:f3:33:97:87:77:
11:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:46:2D:C6:62:A9:59:42:DB:26:7F:42:11:EE:9A:DE:35:75:53:C2
X509v3 Authority Key Identifier:
keyid:98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:0f:e5:65:37:2e:91:85:ee:93:ab:1a:74:90:63:02:58:d9:
62:3b:ac:42:27:a2:50:a4:7c:e2:2b:5a:8b:e1:d5:07:a0:60:
cd:55:ef:49:f1:01:1b:02:57:47:a6:5b:72:10:53:0c:c5:49:
cb:6d:3d:6a:90:c2:cc:22:41:3c:b0:15:0a:5c:74:d7:8c:2e:
38:de:86:52:60:f5:db:10:9c:a1:b9:29:40:80:0f:77:fe:c8:
17:45:3e:47:3e:79:fc:1e:c7:44:b2:a9:78:e8:69:e0:1a:0b:
55:60:c6:d2:ae:ce:01:3b:eb:a6:c9:92:c8:6b:1f:77:10:80:
7c:69:a4:ca:62:ed:58:f5:ca:7a:c2:85:55:82:6d:1e:10:bc:
8a:13:0e:3f:84:c8:24:88:57:6b:8a:7b:4f:55:15:60:e8:0c:
7f:41:1e:8d:74:57:ce:ea:0c:c2:88:56:2c:9a:fb:f6:8f:df:
48:d2:a0:f0:e8:45:d0:54:0b:1c:27:f4:f5:2e:c2:65:4e:91:
66:ac:c0:d2:91:b4:83:26:d9:33:62:44:d9:a6:ed:75:66:01:
d2:b6:ae:cd:5e:dc:1c:21:d0:54:a5:14:a8:b9:a2:98:4e:ab:
58:2b:7a:e2:db:ac:12:3f:38:f9:6d:ff:18:70:ea:d8:bd:2c:
9d:da:69:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 05:28:09 2025 by rpki-client