Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: Wj4PfGwtWHA+VSPv6iDKp9DyW7By3p3HYW51U4ckxis=
Subject key identifier: 79:CD:5C:E5:59:88:34:15:76:79:AF:E5:7C:51:05:B5:A9:00:51:E1
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 019A0B5D906DEC953662693509C32B76573C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 0638
Signing time: Wed 22 Oct 2025 10:01:12 +0000
Manifest this update: Wed 22 Oct 2025 10:01:12 +0000
Manifest next update: Thu 23 Oct 2025 10:01:12 +0000
Files and hashes: 1: 1-i_f4gNCAnPwT26M-00faBCZ1ec.roa (hash: rf9DtMiWGOZOoz1U+iRouParfUgOp6ltk1lTfbvhGLM=)
2: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: EP4eMr3Dvwy7cYB1FI0PBF1vMgu2oD5wkvpUh2c1UEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 10:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:5d:90:6d:ec:95:36:62:69:35:09:c3:2b:76:57:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Oct 22 10:01:12 2025 GMT
Not After : Oct 23 10:01:12 2025 GMT
Subject: CN=79cd5ce5598834157679afe57c5105b5a90051e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:39:ca:13:e3:d1:0b:e8:93:6d:6c:9d:d7:b7:
30:26:f2:23:62:80:c6:3a:34:27:dc:87:83:46:e7:
43:28:02:d2:67:cd:49:87:1c:10:96:cd:7b:4e:c3:
68:b2:95:9c:b3:9d:d8:88:55:1f:78:1d:e3:ad:84:
19:69:84:85:7a:03:cd:89:dc:ea:d7:a5:5b:8b:97:
fb:91:af:26:0f:df:ea:a1:21:ac:b0:bc:07:0a:97:
42:2f:a1:c2:d6:bd:41:e5:a1:36:8d:2a:1d:74:b6:
0f:e6:ba:20:b9:86:bd:9a:dc:65:26:5d:3f:b7:a2:
36:7f:f9:bc:69:6d:da:c0:df:04:41:10:ca:d6:e5:
fb:b8:59:b0:ad:7e:8b:01:42:9c:11:ed:2f:f6:04:
12:f8:20:99:a5:f5:ae:ea:94:0c:5b:1c:60:74:d3:
b1:df:ff:61:5f:fb:ec:09:d4:d1:82:5a:5c:8d:26:
f3:d7:9f:b4:cb:f9:f4:dc:df:10:e9:20:e1:e4:a1:
30:3f:35:f8:45:a8:c7:e9:e2:72:4a:bd:e0:43:63:
70:82:f9:18:38:a0:cc:a5:d6:be:96:c3:70:b7:ba:
bf:fb:da:2b:ed:56:37:61:22:ec:a1:80:85:ac:65:
a5:fd:02:a4:bc:42:d4:1c:24:8a:a1:26:67:23:45:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CD:5C:E5:59:88:34:15:76:79:AF:E5:7C:51:05:B5:A9:00:51:E1
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:56:c9:94:2a:fe:b9:d7:a0:c2:9f:25:bb:42:10:ed:a6:26:
6b:7f:44:33:d1:5d:7b:46:dc:2c:d2:8e:81:28:5a:36:1f:cf:
bd:2f:b5:a6:26:5e:45:ee:e9:3e:44:ed:a6:d5:a4:50:f1:af:
43:63:1b:83:0e:bb:10:7c:e7:c1:3f:54:20:d1:22:f9:fe:91:
e7:4f:e8:09:a2:b5:e2:83:bc:cd:a0:02:89:70:b8:45:38:be:
17:e0:75:35:d0:b7:11:70:c2:ba:49:59:cc:32:c0:f7:bf:f5:
e9:b1:7e:18:3c:cf:79:1c:db:a8:10:83:1a:fb:59:21:d6:aa:
5d:6a:88:c2:97:d9:0e:06:6c:ca:f8:0b:a3:4f:a2:43:ec:94:
94:e9:21:9a:c2:e8:77:a0:99:71:bb:a8:73:70:8c:30:9e:46:
b6:88:73:03:83:88:78:52:c9:ed:a4:83:dd:66:51:0f:47:2e:
e3:58:21:46:46:42:17:dd:70:ce:ff:aa:d9:7b:21:e2:59:2e:
6d:1e:8d:23:56:fe:24:ea:7e:fc:3f:d8:08:1d:a8:3f:43:a2:
cd:53:9b:88:c9:29:e0:eb:58:d2:84:44:69:75:bf:82:d5:23:
e7:6d:8a:9b:03:38:48:9b:38:24:67:fe:62:b9:e0:1d:18:28:
bd:62:1c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:48:22 2025 by rpki-client