Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
File: htljhE-CBdE2lDRTHJmGAMFXgaE.mft (raw, json)
Hash identifier: SecIWkfJ5c8Iag/cIN+DE7qgPCM4/2ipI7EkJ+glhko=
Subject key identifier: 47:5D:5F:DE:26:CF:73:FA:52:6F:53:35:3F:F5:E5:80:FD:09:FF:88
Authority key identifier: 86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
Certificate issuer: /CN=86d963844f8205d1369434531c998600c15781a1
Certificate serial: 019A26669C6D9683D38B25CDC23802D166C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
Manifest number: 21
Signing time: Mon 27 Oct 2025 16:00:50 +0000
Manifest this update: Mon 27 Oct 2025 16:00:50 +0000
Manifest next update: Tue 28 Oct 2025 16:00:50 +0000
Files and hashes: 1: 8jP_y3ejZgoctYO3RIyWsm1WwTY.roa (hash: ecd4E/hh4r+6kZxHuFwVi+mLNAKKO0mfpn1+ByWy+90=)
2: V7CEZgNPEwBOCZ32WoYA0V3PrJU.roa (hash: G4BvHWHZE9u8RSsaaH1AIK81oXqs5R5aGYeyG38uyOM=)
3: htljhE-CBdE2lDRTHJmGAMFXgaE.crl (hash: wptFkygD9AN8TiVTPIxUf3m0Pntb++2H9O3gFmXkku0=)
4: kcL34WnZYMdN4SVhN2PeVdwWvgo.roa (hash: hEzKI9j+KADlA8KNZpHMbM3OEdQSPR+S9HcqTPPWTXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:66:9c:6d:96:83:d3:8b:25:cd:c2:38:02:d1:66:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d963844f8205d1369434531c998600c15781a1
Validity
Not Before: Oct 27 16:00:50 2025 GMT
Not After : Oct 28 16:00:50 2025 GMT
Subject: CN=475d5fde26cf73fa526f53353ff5e580fd09ff88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e0:86:b0:f8:bf:59:b8:f4:12:64:14:57:83:
d9:f6:e8:ef:8f:32:ed:e7:e2:bb:1c:80:af:50:f4:
fe:09:25:52:eb:35:2e:60:49:0c:cf:58:84:2b:e3:
e6:17:e0:05:41:d9:e4:54:78:a5:83:ff:ea:52:dd:
16:08:ba:03:71:5c:30:4c:87:b4:b9:ab:b2:22:f4:
c1:9a:89:c2:ec:03:f5:9c:7f:e8:4c:a3:8e:b0:44:
64:2a:31:40:89:fa:10:99:1e:10:20:b0:d8:0e:f4:
86:e5:92:98:a9:28:1e:0e:c6:d0:1e:d1:42:d1:2d:
dd:37:d5:60:a9:ea:d4:1b:b6:83:b9:c8:30:a0:cb:
df:41:24:19:66:c2:47:b5:e6:44:fe:7a:29:6a:9d:
34:44:43:58:da:8b:ec:c8:1e:d5:09:af:1b:ac:9b:
a0:68:02:d1:42:87:18:45:0e:47:f4:4f:1a:d4:49:
f4:b7:0a:14:64:1d:42:79:63:5c:97:77:bd:43:04:
3f:30:4e:c3:45:62:73:4f:5f:08:97:08:0a:da:ed:
30:5c:35:27:29:af:24:35:36:72:c4:72:d2:d7:85:
ec:6c:70:96:05:bf:fc:c8:1b:70:5e:b3:79:26:a4:
b9:01:b7:0e:b1:08:5c:00:56:9d:98:b0:29:6d:4d:
75:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5D:5F:DE:26:CF:73:FA:52:6F:53:35:3F:F5:E5:80:FD:09:FF:88
X509v3 Authority Key Identifier:
keyid:86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ce:19:62:e4:f4:31:c1:a2:d5:f5:38:78:e1:91:e0:d4:9f:
61:1b:31:69:09:39:d0:31:67:ff:ea:5d:45:a2:fa:82:32:d8:
9a:ea:a0:8b:20:8e:a9:95:10:74:be:fb:23:38:c9:62:f6:cd:
1f:fb:af:b1:8e:84:37:e3:d9:d0:28:16:aa:2c:54:4a:b5:c5:
0b:e7:73:f2:31:04:47:0b:e2:1a:4f:4c:92:69:40:f6:8a:27:
af:3d:e7:61:78:7a:1d:d9:9a:b2:37:e9:d5:48:c4:01:70:2a:
f3:86:7b:6d:d2:f0:c2:16:5f:13:f9:b6:78:dd:1f:8e:0c:bb:
8c:91:7d:e2:ef:c3:9c:aa:39:3c:f4:8a:bf:80:76:be:aa:e1:
0e:1a:5d:ba:8e:78:62:f0:90:84:06:1d:e1:d9:02:70:40:dd:
bf:62:5f:d4:f5:9c:3f:69:f0:6e:d9:aa:21:48:e1:04:fd:8a:
76:59:e1:c1:08:1a:66:42:74:98:08:86:df:b1:51:9f:4b:ae:
57:45:3c:af:68:68:89:08:16:44:3a:6e:97:5a:e1:ad:e4:a2:
a5:f9:4b:1d:9d:57:cd:8f:14:15:64:37:20:d4:77:53:48:90:
ab:07:6b:20:d2:a3:f6:d0:83:3d:44:f2:e7:4b:85:25:69:ad:
22:f6:51:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZomZpxtloPTiyXNwjgC0WbDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDk2Mzg0NGY4MjA1ZDEzNjk0MzQ1MzFjOTk4NjAwYzE1
NzgxYTEwHhcNMjUxMDI3MTYwMDUwWhcNMjUxMDI4MTYwMDUwWjAzMTEwLwYDVQQD
Eyg0NzVkNWZkZTI2Y2Y3M2ZhNTI2ZjUzMzUzZmY1ZTU4MGZkMDlmZjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuCGsPi/Wbj0EmQUV4PZ9ujvjzLt
5+K7HICvUPT+CSVS6zUuYEkMz1iEK+PmF+AFQdnkVHilg//qUt0WCLoDcVwwTIe0
uauyIvTBmonC7AP1nH/oTKOOsERkKjFAifoQmR4QILDYDvSG5ZKYqSgeDsbQHtFC
0S3dN9VgqerUG7aDucgwoMvfQSQZZsJHteZE/nopap00RENY2ovsyB7VCa8brJug
aALRQocYRQ5H9E8a1En0twoUZB1CeWNcl3e9QwQ/ME7DRWJzT18IlwgK2u0wXDUn
Ka8kNTZyxHLS14XsbHCWBb/8yBtwXrN5JqS5AbcOsQhcAFadmLApbU11wwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEddX94mz3P6Um9TNT/15YD9Cf+IMB8GA1UdIwQY
MBaAFIbZY4RPggXRNpQ0UxyZhgDBV4GhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9hMjg5ZWItNDVjZS00NjE4LTg1N2Yt
NzgxODlkMDE1Mjg2LzEvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9hMjg5ZWItNDVjZS00NjE4LTg1N2YtNzgxODlkMDE1Mjg2
LzEvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD84ZYuT0
McGi1fU4eOGR4NSfYRsxaQk50DFn/+pdRaL6gjLYmuqgiyCOqZUQdL77IzjJYvbN
H/uvsY6EN+PZ0CgWqixUSrXFC+dz8jEERwviGk9MkmlA9oonrz3nYXh6Hdmasjfp
1UjEAXAq84Z7bdLwwhZfE/m2eN0fjgy7jJF94u/DnKo5PPSKv4B2vqrhDhpduo54
YvCQhAYd4dkCcEDdv2Jf1PWcP2nwbtmqIUjhBP2KdlnhwQgaZkJ0mAiG37FRn0uu
V0U8r2hoiQgWRDpul1rhreSipflLHZ1XzY8UFWQ3INR3U0iQqwdrINKj9tCDPUTy
50uFJWmtIvZRDw==
-----END CERTIFICATE-----
Generated at Mon Oct 27 20:24:51 2025 by rpki-client