Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json)
Hash identifier: OLP+iN8Go6btbkDtcska7CPCrAGD8AMY84Ao28spgcE=
Subject key identifier: 15:3F:1D:0E:20:33:CA:4E:43:66:42:A9:74:A2:D9:77:7C:DC:AA:90
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 019A1D2C63FFF4BDBB9E65A678169F9E34BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
Manifest number: 16F8
Signing time: Sat 25 Oct 2025 21:00:39 +0000
Manifest this update: Sat 25 Oct 2025 21:00:39 +0000
Manifest next update: Sun 26 Oct 2025 21:00:39 +0000
Files and hashes: 1: 3rLuW8QzyohR5G8GlpoQPu-Q6-s.roa (hash: F/8n4kYq76m4ZS+34MKi7W7c5dmdl0PtvWuG8cLJRrQ=)
2: 5ExX7PElDwhZvsqUirscS-kfnho.roa (hash: bqRW9TpS9PZv6OIHrk3qUk9RHaZcJhV08bnl4u3kvQE=)
3: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: dd6T1/ohprRnfCoj/eij04SYVR8VZ1YfMIHqd70vXL8=)
4: SUGGbjb1_Jk1qcT2JM8WcjQsO3o.roa (hash: oGVNqEXP6azb1lMS8LZZ+mpr73t/MEzsv974PdYYkYc=)
5: Z1aPPPc81U2W2p-hUbb2wEiLSrc.roa (hash: 2YYRPX4gY5ODPttZebzHcbGfP4UENAWKSJvWHEPrLO0=)
6: n-W5m8Lx-i-ynu-cgERA98e1TOA.roa (hash: 4MuuW1m/TV8O5IZ0i/ayNAC7gzR7V1teSLC1JE5/iDs=)
7: pMSZccnz2cyq4EAmIRmDcUPtCn0.roa (hash: rRJO86ohCtFwFSEvJg481KQrtUgLqQRd6A69YZTm2Ng=)
8: ySmmDjcV5o8HMr8fci-zFbiYdNg.roa (hash: QRYJ/tIaqmXv+2YeufSiFwnuiLCPfX4BPxDANJPYOl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:2c:63:ff:f4:bd:bb:9e:65:a6:78:16:9f:9e:34:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Oct 25 21:00:39 2025 GMT
Not After : Oct 26 21:00:39 2025 GMT
Subject: CN=153f1d0e2033ca4e436642a974a2d9777cdcaa90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:99:b3:d7:be:2e:5c:8d:1a:05:82:41:e3:6a:
b3:bd:4e:78:4a:62:d7:55:31:64:7d:14:f2:c2:c4:
98:24:60:f8:68:7f:50:69:84:5d:4f:89:c9:a2:b1:
6c:ea:85:f0:c1:93:4a:6f:d4:bb:2f:c1:59:4b:42:
be:c1:eb:be:5a:5f:59:88:49:0b:f3:6e:f9:64:56:
12:0d:15:62:66:10:dd:06:42:dc:ce:fd:47:e4:5d:
f3:c3:7d:49:95:63:6c:de:12:24:36:12:7b:fc:e2:
70:74:05:01:15:c0:63:32:90:c5:a9:08:e1:2f:ff:
ad:fc:69:26:db:d7:0b:fd:3c:ed:f6:a6:a4:ba:fc:
2a:5c:2d:74:22:f5:67:5a:f7:a4:ca:de:0e:33:c7:
98:ee:2f:11:bc:65:a9:dd:bf:89:de:f4:75:ae:42:
a1:a3:62:44:14:0b:9c:8d:68:38:1a:9f:02:4a:1c:
a1:dc:f3:86:0a:ec:2c:f0:69:20:68:2f:34:0f:de:
8c:e2:de:90:d0:68:1f:3d:92:db:72:5a:dc:d6:a3:
a3:0d:c0:f9:f0:e2:93:f0:1b:8d:09:f6:a9:6f:a9:
a8:78:dc:95:e6:0b:a4:82:17:b2:74:aa:d3:d7:4b:
f1:cb:ca:b9:f2:38:d0:2a:fe:25:7c:f2:07:9f:ea:
ad:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3F:1D:0E:20:33:CA:4E:43:66:42:A9:74:A2:D9:77:7C:DC:AA:90
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:eb:47:fb:9e:4e:09:a7:65:8e:be:2f:14:de:ff:6c:dd:2b:
dc:a3:5d:e9:73:af:bd:8d:d2:aa:83:5c:52:ee:40:5a:82:05:
1e:2d:f6:6e:b4:56:09:3c:48:bc:91:4c:33:94:6f:98:d9:40:
d4:e5:cf:64:93:96:4a:aa:8a:57:25:72:98:8e:e9:76:41:e9:
ad:f8:5d:3d:38:84:b5:05:46:7a:83:08:ee:a6:57:e4:66:8d:
50:a6:ae:31:a1:0c:d1:e3:7b:4c:6e:ff:02:46:9c:40:89:45:
fc:dc:25:56:26:3a:80:56:8b:8b:cd:5f:49:73:04:49:bf:ae:
b0:e6:40:c1:bd:b4:dd:1a:25:6f:e9:64:dc:07:43:86:27:a6:
aa:52:8b:ed:17:11:9b:4e:09:ce:e7:d8:76:c2:c5:cf:63:60:
05:f4:88:74:e2:b7:7a:e5:73:7d:30:56:d8:bc:72:10:71:17:
31:e9:b1:ab:d0:0a:2a:db:fd:a8:d0:ab:2d:8c:08:29:4e:04:
02:5c:3d:3d:3a:e6:20:0a:0d:8c:fb:c9:50:57:d7:c2:a7:05:
8b:0c:00:25:46:32:8e:4b:37:3e:0d:4d:86:a6:af:ce:78:1b:
04:5d:b1:6b:bc:44:54:3b:12:86:db:96:b9:a0:72:b2:ef:fd:
13:7b:93:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 04:03:41 2025 by rpki-client