Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: hNsqxhSoWveRi/bsPJQL+6IhxOe1iALeKqJLGpS4nc8=
Subject key identifier: 44:B1:06:F5:63:28:75:A0:A4:C9:54:85:9B:0E:80:EC:24:C5:40:B7
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019A71EEABD6DD5067843D9C6744E83EBF5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0C3E
Signing time: Tue 11 Nov 2025 08:00:58 +0000
Manifest this update: Tue 11 Nov 2025 08:00:58 +0000
Manifest next update: Wed 12 Nov 2025 08:00:58 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: Zm6g+USPattrg5YjZPGbu2thpbcf/i2QiJrZlwy82to=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:ab:d6:dd:50:67:84:3d:9c:67:44:e8:3e:bf:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Nov 11 08:00:58 2025 GMT
Not After : Nov 12 08:00:58 2025 GMT
Subject: CN=44b106f5632875a0a4c954859b0e80ec24c540b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3c:f9:76:cd:a3:89:c8:3b:2a:97:0c:b9:6c:
f8:2b:73:a5:40:56:b5:a7:1d:91:9f:b9:f1:5e:d9:
d9:a3:58:37:d9:72:21:6c:24:38:69:1e:cf:dd:b0:
b1:33:10:64:c9:48:8a:e8:40:e8:3f:44:2f:ce:72:
7a:33:a6:56:0c:b4:21:f9:b9:80:bd:5c:57:53:f1:
ad:29:f4:07:21:f7:3e:f1:20:e1:9b:d5:c2:98:a1:
21:79:15:c4:83:bd:f2:4d:d1:f7:26:87:57:97:84:
cc:f2:fa:7c:cc:98:a3:33:da:f4:60:04:e6:d6:3b:
8e:c3:81:b2:88:95:8d:98:d2:e7:fb:8b:c6:44:2e:
f8:c8:6b:40:d5:ca:5f:dc:16:41:3c:7b:cf:80:65:
e9:c1:df:4a:53:97:89:c0:d8:b6:73:d1:7a:fe:5d:
3e:c8:c1:98:9d:f8:5f:3d:7d:d3:d7:ee:5c:45:2a:
40:c6:4e:83:31:d9:6f:d6:ff:3b:f9:89:ea:13:bb:
da:7d:bd:ed:91:78:56:8e:60:9c:dd:86:d7:37:3d:
37:0d:92:44:df:20:33:2a:8c:63:62:42:80:71:43:
a9:a3:6c:7d:ce:53:cf:8e:af:71:ee:bd:28:c0:2b:
d6:0c:55:c9:b0:b1:3d:08:7e:7b:d8:b6:8a:aa:ff:
8c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B1:06:F5:63:28:75:A0:A4:C9:54:85:9B:0E:80:EC:24:C5:40:B7
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:c3:52:5a:6b:6d:6f:5b:cd:8f:fb:bf:0f:18:6a:c5:cb:4e:
72:6d:9b:fb:cb:f2:42:c5:33:e0:fa:c8:b5:51:03:14:3a:b2:
76:a7:a3:a5:e2:0d:3a:b8:07:ce:58:06:c7:18:b1:80:92:7b:
22:98:97:34:9d:89:bd:79:bb:d3:a0:fa:bd:e5:a5:a3:5f:96:
5e:2b:9d:58:5f:8b:2e:bb:b0:3e:de:13:d0:f7:05:22:6d:f0:
cc:09:6e:b1:03:f0:ef:69:4f:10:34:c5:b9:ea:46:9a:2b:c4:
3f:2c:37:59:15:ba:e1:f2:b2:3c:21:fe:09:36:7d:07:c8:81:
93:1f:94:db:b6:b8:02:0e:a1:97:05:d9:95:f8:32:1f:e7:2a:
05:23:a8:dd:5f:8e:c2:bf:78:eb:fe:0b:69:31:26:50:cc:83:
46:69:67:dc:00:c4:1d:07:89:bb:97:d9:5c:21:c0:bc:b8:1b:
bc:9d:cf:6f:51:b3:12:3a:ac:b0:5f:03:7f:09:ef:f5:3f:75:
aa:06:fd:ff:94:33:22:25:ab:67:39:bd:fa:fe:a1:2e:f3:d5:
64:0b:18:5a:91:a6:7a:a0:bd:96:97:37:22:7f:26:d3:08:b1:
23:85:d5:4c:76:c6:9b:7f:a5:96:5d:24:c9:9a:90:66:67:91:
dd:43:3f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:47 2025 by rpki-client