Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: 7Uoov0elHYHggq7ruDSN8pUpe4vr3NwxX9wIk5xHJko=
Subject key identifier: 29:D9:B3:02:7E:23:CB:01:4B:29:0E:61:17:A1:23:CA:58:CC:B5:BC
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 019A2D0DB8D76819D5B6B2036E78E1FCC088
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 1654
Signing time: Tue 28 Oct 2025 23:01:05 +0000
Manifest this update: Tue 28 Oct 2025 23:01:05 +0000
Manifest next update: Wed 29 Oct 2025 23:01:05 +0000
Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: Z7Xm7JQRvlUIQO0Cw4JXA8DXst5PegbOoW8h1k5TwUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2d:0d:b8:d7:68:19:d5:b6:b2:03:6e:78:e1:fc:c0:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Oct 28 23:01:05 2025 GMT
Not After : Oct 29 23:01:05 2025 GMT
Subject: CN=29d9b3027e23cb014b290e6117a123ca58ccb5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:50:09:d1:31:de:ee:c6:bc:5a:33:33:d8:26:
61:7f:dd:76:f6:9e:b4:ee:75:17:e9:fb:d2:b8:50:
82:fe:84:fb:bc:cc:ce:27:92:61:af:82:6a:0d:b6:
18:99:61:56:f7:dc:07:e1:2d:1c:37:19:2b:6f:1e:
a2:cf:5e:2b:bf:ed:6c:de:85:29:47:f4:5b:92:b0:
39:d3:9e:1a:31:36:19:d5:2f:da:da:c0:67:54:fd:
44:54:45:70:74:74:c8:47:70:97:ec:5c:69:60:0d:
de:53:ca:97:be:2c:68:d2:35:b0:0e:87:8a:b0:83:
76:80:55:8a:87:8f:3b:c3:90:cb:fd:87:dc:c6:98:
c2:5a:04:a9:33:00:6a:0a:d0:6f:70:c2:b0:8b:e4:
b2:1a:fc:bc:d0:5d:29:db:98:7e:43:48:ab:99:4b:
81:ae:cf:9e:db:a3:c2:f1:c1:b6:1b:30:90:9a:29:
2b:95:87:97:7b:f5:5d:bc:90:1f:6c:fc:4b:34:3e:
98:3c:40:a5:af:d9:2f:c9:16:3f:41:ba:12:82:e1:
2c:9c:2b:05:9a:71:33:ee:66:68:3c:14:ae:f0:bc:
8b:c2:b5:e1:d3:98:c2:a7:41:6d:60:fc:ca:f4:ac:
1f:c1:4d:c9:39:5d:61:72:d4:64:64:25:b4:4f:24:
b3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D9:B3:02:7E:23:CB:01:4B:29:0E:61:17:A1:23:CA:58:CC:B5:BC
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e6:ae:31:d1:0d:16:62:01:6f:9c:a4:04:ad:73:0a:d1:06:
9b:06:3f:cd:4c:bb:e3:f2:49:e4:fd:c4:25:79:9c:b4:73:b9:
7a:83:05:a0:1c:2c:82:e5:e2:c8:cc:87:0d:ff:f8:64:4b:92:
3f:93:5c:53:70:c7:b0:0e:bf:30:a4:fa:ad:a1:79:45:5d:5b:
8b:22:ae:8a:28:05:e2:77:10:eb:00:54:4f:b0:46:0e:5f:29:
4e:2b:7b:2e:f7:10:28:8d:bc:a5:30:0b:06:89:3f:46:a3:ed:
e5:d4:92:e8:38:a1:c4:43:0c:59:02:7b:e2:0d:0f:85:5b:69:
95:b1:4d:05:f8:c4:fc:fe:ac:57:f7:a2:f6:30:aa:5e:ac:eb:
f7:a8:5d:07:3d:8b:80:8c:86:77:0e:eb:b5:cc:65:1c:ea:a3:
e7:32:4b:6b:c9:86:b2:c8:56:6a:07:25:19:59:37:28:b2:96:
0f:de:80:c9:7d:f3:33:5a:37:e1:24:f4:ee:14:93:ce:11:e7:
3e:2c:45:59:1c:df:1e:9f:e3:37:37:d6:0d:a7:29:f3:f0:a4:
40:9f:8c:a0:6f:fa:c2:df:27:7a:35:22:6c:6a:d4:5c:dc:61:
86:04:fa:6b:eb:93:b0:7f:3e:06:1f:e8:78:46:0c:5c:bb:5a:
92:2c:ab:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 08:01:38 2025 by rpki-client