Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: nWsMnXyL5hf8Wi457Nj10gM/0LJiouMYzX7rCii7Gxw=
Subject key identifier: 76:FF:1E:51:F0:FB:AA:BD:C3:C7:C7:74:48:2C:3D:E6:CA:26:AF:1F
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 019A1CBEC105203F11C5B7F3B50FB6BE8404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 05BE
Signing time: Sat 25 Oct 2025 19:00:54 +0000
Manifest this update: Sat 25 Oct 2025 19:00:54 +0000
Manifest next update: Sun 26 Oct 2025 19:00:54 +0000
Files and hashes: 1: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: rXdX0Xp1OilYKHpWzTpuVWdaArjVfC5yXBw2c2tf2Ek=)
2: iTyIEEO2sljhZiJnAx_Ko0duy2M.roa (hash: T+291sx+aTIxs6928rSAPXeV/0gq52PnDMgh9u7+DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:be:c1:05:20:3f:11:c5:b7:f3:b5:0f:b6:be:84:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: Oct 25 19:00:54 2025 GMT
Not After : Oct 26 19:00:54 2025 GMT
Subject: CN=76ff1e51f0fbaabdc3c7c774482c3de6ca26af1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:2f:c4:78:fb:d4:18:04:33:a7:f6:75:27:
a8:ea:6d:c9:d0:86:f0:c6:f6:42:7e:c3:e3:f8:f2:
a6:ec:df:96:09:ee:28:84:2c:74:c9:7b:80:9b:5f:
e8:4f:2d:b4:48:c1:c4:db:5f:25:42:6d:6f:4f:54:
1b:1a:d6:62:f1:86:f9:da:b1:e9:c7:b1:c3:3b:16:
a1:a8:12:95:b5:17:dc:d6:18:96:c2:3a:c6:8c:9e:
7c:dc:00:47:84:91:10:6f:c8:25:3b:9b:8b:9e:97:
d2:bf:43:c5:89:7c:7f:81:b9:77:4d:17:58:63:25:
33:74:d3:b6:c2:de:58:31:7a:72:e1:8e:04:4c:53:
fd:f7:23:17:b2:40:a0:e3:00:99:35:bc:ab:8b:68:
d9:f3:42:7e:d9:8e:25:db:48:b1:a7:1b:cc:c4:92:
3a:e0:cf:7c:13:92:67:08:1a:dc:4a:9f:f0:65:b7:
79:63:77:14:f5:76:73:66:0b:cf:e9:55:ea:c8:6d:
b0:23:60:74:87:16:60:7e:25:f9:bd:0d:16:99:bc:
eb:7c:37:56:86:5b:2a:70:81:fa:8c:95:aa:56:e6:
bf:8d:94:30:56:d0:e0:bd:7d:6a:fd:8f:34:e6:28:
8b:55:07:00:51:7c:bb:ee:ea:93:c2:9d:5d:5d:73:
b7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FF:1E:51:F0:FB:AA:BD:C3:C7:C7:74:48:2C:3D:E6:CA:26:AF:1F
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f0:1c:1e:06:a6:98:ba:12:97:fb:0e:35:c9:a6:d0:37:6a:
35:a4:55:b9:56:4b:1b:44:01:88:3e:2f:a3:15:c4:ef:7c:c7:
01:f4:65:d8:be:eb:70:59:3d:78:7b:df:16:2b:b7:d4:1c:18:
1b:41:74:52:f9:90:84:45:ed:1c:ea:48:68:ae:70:63:23:5b:
29:c1:19:3a:31:ec:52:c7:b4:f3:8b:ff:d4:6d:e7:70:06:f1:
56:7d:52:b2:c7:15:22:98:dd:75:8a:aa:8f:66:28:84:d7:bb:
0c:e2:a7:3a:dc:06:f5:fd:26:b5:b9:41:c2:76:89:9a:5b:d4:
49:fa:98:5a:7e:44:85:20:d3:e7:f0:ca:cd:84:39:4e:0d:cf:
37:cf:d6:a7:67:0e:6d:74:37:57:bf:92:69:f8:1b:29:3e:43:
66:8f:87:62:17:89:8b:c8:db:86:66:e2:e0:1f:5a:d6:c5:87:
ef:19:01:44:3a:de:a0:0b:9b:55:d7:4e:1a:35:f2:ff:19:f7:
41:73:22:df:81:81:10:db:c3:81:ab:80:47:95:db:03:f5:2d:
a1:7c:bf:d4:20:c4:50:a0:45:71:3b:e6:01:1e:52:fb:fd:5e:
b2:3d:5a:9f:1a:93:a8:a1:a2:34:0b:84:16:79:3e:a2:34:67:
3f:6f:a3:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 04:56:48 2025 by rpki-client