Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
File: hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json)
Hash identifier: wX/HKREmaRF6W6xmcMK2d+GrOBcJaO0xkEgUfUobkps=
Subject key identifier: C4:9E:58:B5:17:63:79:D0:2E:C2:DD:52:6C:0E:D8:40:CD:D1:37:06
Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Certificate serial: 019A19F44EFE37BE7DB670137D3BB70378DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
Manifest number: 16C6
Signing time: Sat 25 Oct 2025 06:00:32 +0000
Manifest this update: Sat 25 Oct 2025 06:00:32 +0000
Manifest next update: Sun 26 Oct 2025 06:00:32 +0000
Files and hashes: 1: 5PJXNIBNkIDizHXqABCfI2weMXY.roa (hash: mf+a4WKnZwf0YHj/JFfXY0yYuBPjjgdMLip3MBUWcAI=)
2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: nrMfMBZU1vDsfpLZkyCDUS9NAXje1CwfbSl31CpF+5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:19:f4:4e:fe:37:be:7d:b6:70:13:7d:3b:b7:03:78:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Validity
Not Before: Oct 25 06:00:32 2025 GMT
Not After : Oct 26 06:00:32 2025 GMT
Subject: CN=c49e58b5176379d02ec2dd526c0ed840cdd13706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7e:2d:a8:92:f5:a1:99:a2:d9:d0:f8:7f:f8:
1d:db:60:72:ad:5a:c9:42:2c:71:e2:69:81:90:a4:
93:05:2b:9f:02:be:48:9e:12:83:59:a2:5d:d8:7b:
cf:5d:fe:2c:07:7b:52:e4:48:52:28:a4:20:d4:32:
88:f6:59:8e:1e:53:a0:cc:d7:70:28:a8:38:1e:a2:
76:f4:2c:56:15:e4:b4:b5:45:42:74:14:ed:e8:74:
95:d6:d5:e5:b5:e0:f5:11:88:d4:1b:c4:d9:4c:24:
0c:a5:7f:09:4b:57:0d:c4:e1:59:7e:27:fb:3d:5f:
5d:77:f2:cf:db:2a:fc:a9:43:40:d8:f5:af:32:a6:
8c:1a:00:5a:a4:c2:bd:48:7f:5e:3c:9d:a2:6d:6b:
34:4c:86:54:80:ed:7e:53:0c:70:ba:a6:ac:ba:44:
3a:5e:a3:bf:27:00:de:7e:eb:c8:87:d2:c1:f5:42:
d7:57:c1:fc:88:7b:9d:18:61:58:a0:7f:14:bb:23:
3a:80:fb:ca:41:5f:f4:72:fe:e1:e9:a0:9d:b1:b0:
7f:69:20:4a:7b:3d:99:01:cf:f6:5d:58:c4:69:de:
55:35:42:25:98:7f:84:55:e4:21:c1:25:50:c0:bc:
ea:8c:86:03:ba:aa:b6:b6:79:ff:71:5e:b9:a3:77:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9E:58:B5:17:63:79:D0:2E:C2:DD:52:6C:0E:D8:40:CD:D1:37:06
X509v3 Authority Key Identifier:
keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:5b:4c:90:45:82:da:bb:7d:50:c6:d4:ae:df:65:93:09:28:
2d:c7:e3:66:41:d9:f1:da:5b:33:fd:7b:10:a9:f9:be:c9:ce:
04:02:b8:c6:29:93:8e:09:27:ee:06:99:44:f2:65:d2:44:5f:
2d:0a:d9:49:02:19:e1:a1:9c:03:40:79:08:98:7a:50:85:8d:
ce:0b:24:3c:9c:c2:d4:2f:45:ed:72:73:6c:de:d2:be:a6:9d:
6a:09:f2:a9:c8:d1:c9:53:ba:f3:74:a1:73:55:83:25:e2:25:
f9:47:ee:72:d9:89:cd:2b:a2:92:75:d8:48:9f:c4:1a:ff:3d:
39:5c:58:22:8a:76:2f:4c:d3:c8:d9:b9:94:7a:17:ab:ce:ea:
89:f3:07:33:b1:36:0f:31:e0:d9:54:c7:c3:1b:90:7c:20:c0:
50:ce:52:dd:25:79:21:90:36:e3:9c:68:e6:41:0b:1e:c8:1f:
f0:af:2d:1f:0c:14:61:4e:a0:5a:04:87:17:69:19:38:ec:dd:
37:fd:62:d3:5f:cb:59:2f:3e:05:fa:a8:2c:cf:2e:b2:83:0d:
b5:1e:f7:3f:b2:98:54:f9:40:db:ee:23:88:4b:9a:ba:b7:1b:
d2:3a:d6:f7:50:87:ec:67:3f:39:26:46:2b:d1:e8:32:c3:55:
5f:36:eb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 08:21:07 2025 by rpki-client