Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: 3A9yhKp2yDjyApoOZMr99xB+FX9fVf4dru9bDCYVrBU=
Subject key identifier: 1F:C3:64:CC:D3:50:D4:FF:30:19:9B:83:62:C2:AC:ED:E8:17:F1:5F
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 019939B9533754CD4F259D74047D6C1953A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 15D6
Signing time: Thu 11 Sep 2025 17:01:10 +0000
Manifest this update: Thu 11 Sep 2025 17:01:10 +0000
Manifest next update: Fri 12 Sep 2025 17:01:10 +0000
Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: dgO4qoAOjMx80OAvAuQF7XeLksDpBBe0GUIetoYcINw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 14:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:39:b9:53:37:54:cd:4f:25:9d:74:04:7d:6c:19:53:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Sep 11 17:01:10 2025 GMT
Not After : Sep 12 17:01:10 2025 GMT
Subject: CN=1fc364ccd350d4ff30199b8362c2acede817f15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:17:a9:b4:83:41:1d:a8:05:7b:b3:bb:1d:
53:71:9e:43:fe:ce:41:cc:2b:55:57:b6:56:c8:99:
1e:66:8f:bd:59:d8:6a:f1:27:1d:38:6e:cd:b3:26:
ad:1c:a5:d1:cf:6d:4a:50:94:24:b4:60:19:a3:98:
48:cb:e9:cd:4b:60:a5:ba:d1:7a:66:0c:6b:30:70:
fc:ec:45:08:db:cb:f5:69:05:b5:90:8f:b8:6a:16:
17:1a:1a:28:81:17:0c:a6:ab:5f:ed:6b:fa:8b:2a:
67:8a:e5:fe:33:f5:f4:6a:af:5f:d7:f4:51:1c:ea:
80:97:c8:f8:9f:22:0e:04:19:27:ce:ef:22:94:d3:
ac:98:0a:26:1f:8e:32:ce:50:6a:42:f5:27:50:d1:
83:17:bf:52:57:ea:23:aa:32:fe:d6:3d:e2:40:23:
77:e4:9e:05:dc:9d:96:69:b4:7c:c8:f2:23:e8:e7:
9b:f7:a3:41:1e:ac:a3:4e:19:f9:b2:81:dd:af:a2:
c5:10:ae:03:8f:f1:5e:67:14:97:27:3d:08:0d:52:
75:5f:f9:d8:9c:dd:15:0d:f6:86:7d:56:e2:0b:a8:
cd:1f:d1:e9:50:32:4b:ce:f2:7b:a7:c7:1c:dd:d1:
72:13:3d:27:eb:81:49:05:4b:d3:9a:e3:b5:6e:2e:
21:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C3:64:CC:D3:50:D4:FF:30:19:9B:83:62:C2:AC:ED:E8:17:F1:5F
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:0e:d4:ac:e0:88:89:ec:02:dc:d7:db:61:1a:88:14:7b:4c:
fe:84:bf:89:69:75:64:75:5d:05:4f:22:13:eb:5e:59:e7:b5:
13:50:0e:64:a7:0a:e4:b1:a9:15:fe:72:b9:a6:fb:ad:d7:d3:
63:41:21:a8:96:e6:df:4c:5f:cf:32:40:21:53:d1:3b:cb:e7:
f4:28:c6:97:c2:00:3c:47:19:e5:34:c4:04:7d:ed:de:17:f5:
dd:9b:06:34:b7:b0:3f:eb:15:e8:78:4c:cc:82:66:b2:2f:6f:
a1:18:76:fd:67:2b:6f:cf:be:7b:52:3c:19:38:b5:f0:1b:28:
45:06:0f:ec:d7:fd:ba:3b:c6:a7:13:fc:2c:ad:95:dd:23:da:
98:04:da:8f:9f:c5:b1:16:33:2f:c4:ed:f3:03:9d:09:a5:d7:
79:5e:39:92:ff:d5:d8:2b:c5:82:8d:f8:c5:d7:e5:c4:ce:96:
12:ca:c7:31:33:cf:07:b3:59:fd:06:dc:c0:f8:fa:40:2d:c9:
82:32:96:a2:10:56:9a:e2:26:dd:b9:35:ce:27:f9:08:c9:86:
33:a8:e0:89:a0:e1:2d:de:ed:35:4e:d8:35:46:96:5c:4d:aa:
7b:60:e9:93:67:2d:1d:71:32:d4:c4:78:df:62:33:8a:a8:85:
f0:b9:e0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 23:43:29 2025 by rpki-client