Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json)
Hash identifier: IVbvgv+EuXLJe16vyMWI4dbwEC2aPjRA7BQ6te8NOUM=
Subject key identifier: D1:94:F3:DC:26:E6:47:CA:8E:F2:53:0B:C7:3C:ED:C0:74:01:99:4E
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 019A258A8D3400F1932ACA369A6E3318682C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
Manifest number: 0F79
Signing time: Mon 27 Oct 2025 12:00:28 +0000
Manifest this update: Mon 27 Oct 2025 12:00:28 +0000
Manifest next update: Tue 28 Oct 2025 12:00:28 +0000
Files and hashes: 1: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: ESYbYLsfd5hPjdDrTrGLqvRSKRnSnvWsQtCRtJan6+w=)
2: pkoA1nbX0r8lwiVwxbfu80R8kOU.roa (hash: dAPrEkvaKQk5s5Z7WHpV1G3F1Sw4lOg/QTiasC7ZX1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 12:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:8a:8d:34:00:f1:93:2a:ca:36:9a:6e:33:18:68:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Oct 27 12:00:28 2025 GMT
Not After : Oct 28 12:00:28 2025 GMT
Subject: CN=d194f3dc26e647ca8ef2530bc73cedc07401994e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6f:63:9e:58:47:47:7f:cc:ad:86:83:9b:3d:
5a:04:31:b2:49:bc:87:92:5b:f9:d9:1f:55:e0:2e:
d6:b1:b7:45:a5:2a:4c:79:34:96:61:d8:da:92:46:
80:a7:cb:bb:b2:e9:12:47:23:83:ca:a8:9b:7f:3c:
fa:22:80:f7:95:bb:80:a8:15:0c:1d:c4:0d:c1:02:
e1:e0:fb:26:cc:39:93:f0:12:b7:dc:a7:02:65:e0:
31:fb:6d:d6:21:29:67:04:4f:f1:65:fb:c6:54:11:
4c:7a:3d:f3:0d:0d:aa:60:50:31:b4:36:c4:6f:f1:
64:d6:6e:a7:4c:bb:a3:bf:1d:0c:08:5c:53:57:2b:
f1:ad:93:3f:01:b3:20:17:59:a3:d5:ea:27:80:2c:
fb:0f:eb:ff:2a:f8:dd:fb:5c:73:77:60:d0:ba:1f:
06:c2:cc:17:d9:fa:65:e7:e4:b8:b6:77:04:d2:a0:
ed:3e:ed:35:81:5d:54:95:68:e5:6c:ab:16:f1:7c:
bc:e6:87:f6:29:ec:25:df:66:80:7c:23:08:52:e8:
a2:36:82:ba:33:9c:1c:10:17:51:6d:03:98:96:e3:
4f:55:3e:e5:3d:7a:51:9e:8d:59:48:f1:98:9a:7b:
8b:b3:9f:81:02:f2:85:92:60:41:49:7a:3e:73:1d:
e0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:94:F3:DC:26:E6:47:CA:8E:F2:53:0B:C7:3C:ED:C0:74:01:99:4E
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:67:43:f2:30:93:31:b2:59:e6:62:d2:bd:1c:7c:43:e3:13:
1a:f9:7c:62:e8:10:00:e9:ae:0a:a8:c8:b1:25:11:e9:23:0a:
93:92:d4:cd:9c:63:b0:9a:b6:a2:e5:a1:bf:5c:2c:f7:c7:34:
88:bd:37:eb:7a:82:d7:3f:7f:43:30:6b:3e:6d:28:ca:27:25:
e3:50:58:4f:e4:ed:2b:80:6a:be:2a:10:e0:b4:96:3a:c2:45:
d1:1e:ef:46:22:66:0a:c6:9d:c3:e9:40:c8:2e:cf:b1:d0:4b:
73:65:f1:9d:4c:86:48:90:10:46:47:b5:81:7f:5f:0f:e4:ca:
d8:25:d5:62:e2:6c:08:bb:2d:e4:bb:40:6e:7a:66:42:51:b1:
36:e8:23:8a:09:36:1c:db:e1:14:84:06:f4:05:d7:6e:20:3d:
59:eb:fd:6e:95:01:c5:38:d8:de:6d:68:9c:71:61:6a:91:9c:
a0:e5:b5:30:1c:bf:a2:b5:d4:98:f1:8e:75:31:01:c6:c4:00:
ca:6a:2a:c6:da:91:70:77:69:77:bd:40:13:08:2e:60:73:c0:
e5:ba:7a:e3:78:77:d3:50:6e:a8:26:d5:70:e9:76:b1:8d:78:
d4:74:c7:ae:50:df:2f:b2:d2:9a:5e:cd:c9:be:e6:93:03:78:
2e:93:8a:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 22:19:50 2025 by rpki-client