Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: 9uiH6e4NgBZVN2sEQqvLR/kz1+b6ugJpy2E8gsBjQuI=
Subject key identifier: DA:63:4F:D1:03:D2:A0:F6:5A:08:6F:62:5E:E4:3C:1B:47:F0:DA:56
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019A706DEBE932B12CE1B59C3DCA9144147F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 172F
Signing time: Tue 11 Nov 2025 01:00:43 +0000
Manifest this update: Tue 11 Nov 2025 01:00:43 +0000
Manifest next update: Wed 12 Nov 2025 01:00:43 +0000
Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=)
2: MTIEPm-UTrRJO5GkIDAlc0UbzLQ.roa (hash: nVeKeAW6vJuUEVgfnDWMk7tY9g53T2JINJDassyHDH8=)
3: XOmOBh50cvCvJmnFjaJhaHYW2sE.roa (hash: 6F6wNjub6rC7wNAaFOeBE6JJ3w2cU7C6GJM4bNB9ZQQ=)
4: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: tJl7HMs0o8lm6NoxlqPFmgkdIbK8YfN01qPqUq5YgRA=)
5: viZJ1ILrK-Lhvo6EpJnhGu2o9Q4.roa (hash: VBEvk2C209Y5tb0FL9tK/NrEWGQ6MCpm2RIBK/aQkDU=)
6: yXMAz21dFW6Sf1HAb5KDTn2Yy0g.roa (hash: dMxwivy3WoBvzsdqovQyIDGqZ1EWhn2L/4sgtoX9AUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6d:eb:e9:32:b1:2c:e1:b5:9c:3d:ca:91:44:14:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Nov 11 01:00:43 2025 GMT
Not After : Nov 12 01:00:43 2025 GMT
Subject: CN=da634fd103d2a0f65a086f625ee43c1b47f0da56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:76:bd:14:79:d3:96:da:8b:be:eb:f5:d7:81:
1f:f4:2f:f9:da:da:e3:b8:1f:dd:2d:70:36:52:fa:
33:9d:4b:4c:46:db:66:75:f8:f8:b5:1c:b2:49:6a:
ea:2e:75:c7:13:33:68:97:f2:66:65:1e:a0:a0:f1:
9c:5d:53:09:d5:d5:15:b4:bf:1d:4b:a0:2b:84:16:
08:c5:c8:87:47:1b:e9:d0:71:93:26:a1:87:75:18:
23:04:25:4f:09:23:d9:5c:a3:e4:ce:b4:30:39:e9:
e6:65:74:00:57:7c:0a:5a:aa:d2:17:6b:42:d9:8e:
19:ca:45:52:eb:f9:9e:24:87:a4:7b:4c:e8:28:c8:
87:f6:d6:54:f5:81:c8:80:65:94:d5:a8:13:58:76:
5f:ab:ce:5a:26:7a:7e:bf:34:47:d2:9e:51:a4:9e:
51:04:61:2b:be:cb:54:ba:00:0c:22:78:55:8c:12:
ad:4f:1f:d2:0b:22:89:e0:98:2c:b9:2d:bd:66:ad:
79:27:27:68:ac:93:0e:13:fa:ac:a0:3f:ab:c6:b6:
4d:ae:0e:a6:d7:ee:54:fa:34:23:94:5d:f4:a3:9f:
ba:0c:5d:2c:8f:03:72:eb:3e:55:70:19:58:3a:67:
19:2d:31:c7:2f:2e:e4:61:27:8e:f1:a2:3a:2c:80:
eb:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:63:4F:D1:03:D2:A0:F6:5A:08:6F:62:5E:E4:3C:1B:47:F0:DA:56
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:9c:f2:d0:fe:bc:f8:65:7e:3a:a4:93:2a:61:a3:35:6a:a7:
0f:db:32:42:d8:35:52:bd:7e:17:14:09:98:b2:c2:f1:66:2b:
3b:45:3e:ba:1a:44:0a:02:53:56:57:be:77:69:e2:4f:e7:f4:
80:3b:e0:1a:bb:a8:44:e2:26:e6:6f:79:7a:85:21:5a:16:fa:
1a:b4:ac:1d:0f:89:98:72:c1:32:32:4b:03:e5:53:2e:21:3c:
84:85:33:56:f7:53:43:6a:a5:73:a6:35:38:ca:ea:94:34:bd:
09:e7:ca:04:8e:5e:19:55:ec:85:1a:a1:da:80:ec:4d:ed:97:
57:41:fb:6c:a0:70:78:be:37:c4:c5:2a:ae:4a:8d:8c:68:e2:
2e:eb:91:eb:d0:32:ac:57:47:eb:74:f1:c9:da:4d:3c:70:55:
3c:e6:9b:ea:21:b1:fd:3a:98:67:a3:f8:d4:e2:33:3d:01:fb:
c5:29:25:3c:af:fd:7d:6e:be:fb:40:f9:d4:03:ee:9a:a7:26:
bc:4c:45:8c:d3:72:82:0d:7a:f5:fd:46:73:10:ef:b0:9c:ad:
b3:1f:50:fa:45:4b:d1:16:67:e2:a6:2b:f1:15:f0:39:8b:e1:
50:8b:de:f7:71:e0:fa:cf:14:59:0a:fa:18:c5:62:03:17:aa:
0b:cd:09:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:15 2025 by rpki-client