Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json)
Hash identifier: /bfCerJago8s3A4+DQSpY375q1iNoUXorxguITl1S6c=
Subject key identifier: 35:F0:7F:02:B0:C2:AD:66:08:8B:12:73:64:E7:60:8C:8C:4A:66:5E
Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Certificate serial: 0199FDDA36BF972DAC4F2AF5CD7489B1515F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
Manifest number: 086D
Signing time: Sun 19 Oct 2025 19:02:40 +0000
Manifest this update: Sun 19 Oct 2025 19:02:40 +0000
Manifest next update: Mon 20 Oct 2025 19:02:40 +0000
Files and hashes: 1: 0K5GjqLFd-gDt5ZKucB58DrHcF4.roa (hash: ZSi/SazrmD05aFXIwhjXofb8ZyWKGPGKoVBhBJoxyz4=)
2: 9ZZlEoJ6DOwFDIJbfzBhtXucSCo.roa (hash: e3MsAliQl7R+w6WCs9Je3nF/3YOrMW2JU+QDq2FQ+FM=)
3: JqCwXNSsIA5GmOAqVij5xtyCNdo.roa (hash: QdmrseC1ST0f5saIZ/JDQWioFap1TFhdMiZ17k2Nqbw=)
4: Yz1nqnWdktBLCf-4upLjmxtc2c4.roa (hash: J/e8pwliu2ZJzstQArsqHThwEBlwW9xmmljRrojzK28=)
5: cPyQ54eHZNRhOo_g5NkIJCYJuFs.roa (hash: c5YmCvHhLyzqtoi7Yd/RgqKsKk6lvDCNHO1nQEKzWWw=)
6: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: 1A1HNa1bqrsSoeNrBxGfEKQRKY7Ot3D7EyJVAKbTeI0=)
7: l6j2aX0QSLWVCzZDpMtGz8W4wjo.roa (hash: AigJG7f6f5V64toLqhPhGUD+Okr3C21xM3JcJXAk2jE=)
8: o5MQ_aMK7jefmZE6oPWihY-kiig.roa (hash: GwxLFOZ2rnFVptkhZAQW3B9urbn7oWI6excYOIPPHzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:36:bf:97:2d:ac:4f:2a:f5:cd:74:89:b1:51:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3
Validity
Not Before: Oct 19 19:02:40 2025 GMT
Not After : Oct 20 19:02:40 2025 GMT
Subject: CN=35f07f02b0c2ad66088b127364e7608c8c4a665e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0a:c9:76:43:24:56:af:c1:0f:3c:f0:37:39:
f0:dc:0f:4d:68:04:5b:dd:d4:b4:1f:82:26:65:8d:
2a:55:bc:8f:a2:34:3d:7b:7d:84:ab:3c:ee:a9:7a:
f1:00:b4:71:d5:f3:e6:dd:77:32:43:77:c8:20:19:
7b:fc:13:12:40:1b:3b:9a:07:a8:36:01:0f:df:88:
1d:ac:92:42:59:97:48:1c:66:b3:0c:4a:30:cb:34:
be:0b:52:f4:21:44:5e:0d:6d:b1:dc:a0:ac:3e:53:
3b:9d:35:ec:10:bb:c9:a7:a3:ed:be:bc:44:e1:84:
81:82:2c:fa:f4:e9:2d:2e:91:e9:1e:96:0a:16:9d:
2b:f0:9e:69:5f:ab:74:80:49:ea:d3:2f:f9:ff:fb:
b2:0d:f3:39:5d:24:f6:ad:8c:d4:ed:10:fd:99:76:
85:1d:db:49:28:03:7d:d5:a0:98:90:0c:f4:f8:70:
17:a0:2b:59:00:8f:28:83:ef:7c:9d:6f:91:e4:50:
60:cc:95:3e:24:c0:32:0e:36:d6:b0:35:7e:f7:9c:
3a:c5:35:4c:a5:be:a7:6a:f6:9b:25:3a:63:55:71:
c9:0e:eb:fb:27:62:07:8d:f3:a8:db:ca:37:b8:67:
e7:99:68:c2:09:f0:b5:1f:18:7b:44:ba:d9:b4:84:
09:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F0:7F:02:B0:C2:AD:66:08:8B:12:73:64:E7:60:8C:8C:4A:66:5E
X509v3 Authority Key Identifier:
keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:5a:78:0a:42:4e:45:a9:8e:bc:70:a3:12:9c:cb:b3:89:29:
5a:c8:a5:37:d0:e8:df:a5:fa:80:ff:29:67:a3:cf:53:75:bc:
07:66:cc:4e:d0:36:1c:0a:ed:fe:cf:b9:3f:41:b7:63:60:8f:
8e:6d:c9:57:5a:52:b9:0c:24:ac:2f:74:89:5d:f2:8e:db:c6:
8b:0e:f6:91:36:be:d5:bd:44:fb:25:8f:65:24:3e:20:59:9b:
3d:40:ce:08:88:b6:7c:f5:44:f8:e4:26:50:0f:14:ec:1f:8e:
c0:12:dd:cb:52:ca:78:8f:81:23:d3:0c:06:51:e1:34:ca:92:
6c:46:e4:1e:40:79:34:58:ce:e3:51:68:2c:2f:90:2c:88:b9:
41:a3:ae:67:c4:04:29:04:5e:0f:c7:05:84:75:c4:98:a6:b0:
40:52:3a:ce:06:26:97:88:90:bb:17:aa:9b:07:08:53:8b:76:
3a:eb:15:fb:0c:b0:07:02:4c:94:b9:bb:d9:a7:a6:f8:4c:1f:
6b:59:bd:b0:7f:38:c6:ca:39:c5:c7:0a:73:79:f9:7e:c0:c4:
a7:b0:be:aa:8e:c4:90:92:b4:d9:11:e7:f4:f7:54:14:cf:15:
ff:84:32:b0:94:41:81:5d:61:24:77:09:a7:5c:76:52:72:64:
5e:07:87:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:14:36 2025 by rpki-client