Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: voy7o150OUDMjlHEhexq/R6eqsJIlHihS8xkpJvG1BA=
Subject key identifier: A7:B4:D2:58:C3:C0:4F:D2:71:66:4B:34:63:A5:89:5B:63:84:54:26
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 019A1E759116B2F5A37B825B7C3334B44D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 16F9
Signing time: Sun 26 Oct 2025 03:00:12 +0000
Manifest this update: Sun 26 Oct 2025 03:00:12 +0000
Manifest next update: Mon 27 Oct 2025 03:00:12 +0000
Files and hashes: 1: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
2: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: OIvlFIm7cuTLQMvQiP/pTp47iip0AWuoOmBG8p9lgaY=)
3: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
4: vMt7TQ-qRZJTqOxHDMRDIZs6N9Q.roa (hash: 3Jk3Icytf7EIaMHCfe+p0xudth/qPlKoWzoPX62k9oA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:75:91:16:b2:f5:a3:7b:82:5b:7c:33:34:b4:4d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Oct 26 03:00:12 2025 GMT
Not After : Oct 27 03:00:12 2025 GMT
Subject: CN=a7b4d258c3c04fd271664b3463a5895b63845426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:fd:77:af:9c:a8:ec:05:0d:78:32:38:95:
b0:89:f7:02:da:82:b6:87:9b:16:2f:21:f5:06:45:
d9:79:b8:cd:2f:af:9d:92:99:d4:93:c1:de:16:53:
ec:01:a7:89:6d:8d:31:29:92:44:9c:01:70:80:a6:
fe:bb:64:e3:90:a0:64:da:1c:26:fe:9b:a7:c6:aa:
d8:f9:28:18:cb:b0:bd:d1:77:08:cc:c6:e5:7b:29:
70:1a:cf:e5:18:4e:a5:a7:5d:f9:8d:e5:bc:c6:f7:
db:e0:76:ab:b3:b0:3b:73:76:77:05:c4:ec:d0:05:
62:ef:c8:cd:13:01:10:13:b6:2e:09:7c:53:6a:a8:
8c:3f:71:87:35:34:da:68:51:e4:d5:99:39:49:9e:
38:de:01:63:ab:10:c1:df:22:ad:0e:bd:fd:16:4f:
f1:8e:70:55:4b:f6:44:86:dc:d6:64:cc:ff:d6:3f:
4b:b9:86:2e:a6:d6:c6:92:dc:8e:f8:e9:81:ef:f3:
62:64:b0:3c:0c:34:1c:99:3d:b7:97:0e:87:bf:e8:
8e:f9:42:24:55:cd:cf:15:27:75:9d:77:d8:fe:9a:
81:a6:91:d3:07:1e:50:29:08:1d:3b:73:9e:21:ff:
d3:3f:ce:3d:d1:55:b8:98:54:50:6c:e7:09:e2:6b:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B4:D2:58:C3:C0:4F:D2:71:66:4B:34:63:A5:89:5B:63:84:54:26
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:28:fa:5e:de:aa:52:be:60:00:3a:53:cd:74:2c:a7:ac:62:
e2:2c:d0:2d:d0:7b:e2:9a:cb:3a:1d:ea:70:e8:8f:21:9b:9a:
86:d0:89:1b:d2:99:c7:0f:4a:f3:8b:df:1f:9e:3d:61:f5:4b:
95:5e:b6:ae:21:54:51:c6:de:69:7f:7d:21:b6:76:10:35:3e:
22:d5:4a:bd:b8:64:c8:27:2b:90:1c:9b:10:96:34:c5:7f:3e:
83:49:7a:99:47:a6:b8:5d:60:49:c1:4e:c4:31:32:eb:14:2a:
55:fa:e2:dc:28:41:88:63:1e:24:e0:07:57:17:ac:c0:50:bd:
8a:fd:b8:a8:4a:11:25:ef:94:57:f7:be:83:ca:d9:5e:f7:fc:
1b:7b:57:9a:9c:42:7d:be:02:59:78:2e:99:e7:cb:13:ed:08:
d9:7f:5f:b7:a3:94:eb:1e:fb:b6:01:57:78:b3:8c:38:1f:95:
ec:2a:87:f1:51:69:79:f9:a3:ed:19:de:e8:39:08:98:7c:a6:
5d:4e:a3:69:08:b2:08:65:76:f8:10:b3:64:f8:1d:39:d8:02:
41:ba:13:35:02:f0:ac:8c:ab:db:30:56:b8:4e:83:f3:e1:8d:
e8:cb:9f:67:0e:a8:b6:d7:86:07:59:3c:97:ae:6a:36:8e:2f:
a3:61:7c:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 10:44:40 2025 by rpki-client