Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json)
Hash identifier: tX4i96mbGdhx/ITZBBNdxsdpqaquqxv2wRAX8Vc/808=
Subject key identifier: 4D:D0:A3:8A:67:01:B7:E9:2E:2C:A0:7A:04:B2:1D:55:2A:B9:7E:BE
Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Certificate serial: 019A21E4AC6EF377678FB44997DC0DFE31E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
Manifest number: 16F6
Signing time: Sun 26 Oct 2025 19:00:25 +0000
Manifest this update: Sun 26 Oct 2025 19:00:25 +0000
Manifest next update: Mon 27 Oct 2025 19:00:25 +0000
Files and hashes: 1: E7w56iH6n62Qtx76-l21Wicx0tI.roa (hash: mYbpZ2jovxydBfbzCm7J8lBecdgedCJGDSbz9EY1aRY=)
2: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: JEv7mTUHoRw2NCnmC9hlHCYCFSNLMBqZ2roruGJ/i7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:e4:ac:6e:f3:77:67:8f:b4:49:97:dc:0d:fe:31:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Validity
Not Before: Oct 26 19:00:25 2025 GMT
Not After : Oct 27 19:00:25 2025 GMT
Subject: CN=4dd0a38a6701b7e92e2ca07a04b21d552ab97ebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9b:84:a2:a2:d8:59:c6:e1:f5:27:43:17:50:
c6:a1:ff:b2:6d:1f:62:11:2d:ee:0b:af:52:d2:79:
ec:d8:12:d3:a3:02:a9:51:9e:4c:68:1e:e1:ba:36:
d0:2a:aa:8a:d5:86:87:62:6d:7a:42:b9:96:7b:75:
09:42:9b:e4:b5:9d:49:85:fb:72:08:2d:df:2d:5a:
83:72:df:d9:0e:a0:cd:2b:47:70:fd:da:73:61:c4:
92:3d:9c:7e:42:a0:70:60:62:c8:57:7f:09:f4:f3:
1e:08:09:d5:aa:68:2c:56:82:97:7c:2f:c9:57:50:
27:51:f5:12:f7:5c:64:f1:f2:3b:a2:69:73:06:d7:
61:50:bd:61:dd:1d:e8:34:3e:9f:d8:3e:48:dc:3b:
d9:97:13:59:c3:85:ad:a4:96:e1:0b:b2:46:54:93:
7a:1c:2f:f5:54:d6:16:30:0d:79:b2:60:26:fa:74:
82:c1:41:3f:5a:72:4c:11:d0:74:f7:ed:9c:95:e5:
9e:6e:ef:8f:44:9c:62:fe:d1:02:53:2f:8b:c3:a3:
bd:2d:1e:d4:9e:20:76:80:e0:6c:b5:47:d5:6d:2b:
1b:43:23:6e:5f:d7:05:95:c7:28:7e:07:fc:fe:a3:
85:e4:94:41:60:21:f1:07:b8:c1:d9:a6:e3:18:b0:
7a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D0:A3:8A:67:01:B7:E9:2E:2C:A0:7A:04:B2:1D:55:2A:B9:7E:BE
X509v3 Authority Key Identifier:
keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:28:a0:24:22:9c:f7:8b:2b:c8:a0:5b:c5:f8:43:9f:bb:68:
ab:d3:1d:6e:c3:ea:6c:34:93:fd:20:3d:06:cb:aa:81:e8:25:
48:60:4a:52:dc:1d:ea:64:1c:fe:2c:fd:bf:c6:7b:21:74:be:
9a:db:93:6c:ba:58:b6:f5:67:d3:b8:89:bc:cf:a2:4e:de:a2:
be:94:ea:05:f3:8f:0d:45:86:6f:99:23:ec:83:b4:77:f6:4d:
a3:2a:90:99:78:76:06:9c:2d:48:88:96:e8:15:f5:78:f9:9c:
7a:ef:6f:5a:89:8e:10:39:08:2a:b2:d6:56:51:37:ba:f6:c0:
56:5e:56:0c:76:af:49:48:79:88:a9:f3:2c:3a:44:68:b7:56:
55:64:e7:f4:59:d7:5a:15:fd:f8:f6:f5:c7:f5:b0:67:a9:fc:
6c:0e:d0:06:e2:ad:0a:97:a0:89:8d:3c:c1:73:fe:46:4b:1f:
66:69:ad:f2:cd:fb:60:0b:b9:ab:f6:ef:9e:39:d2:12:37:06:
ab:70:1c:e4:e5:b5:61:93:e6:c7:19:6c:b5:4c:35:a7:cd:5a:
c8:84:84:d4:37:0f:01:c1:cf:9c:db:ae:fa:9b:0c:31:26:e5:
56:e4:af:c9:2c:f6:d5:d3:7a:28:b3:8c:59:62:ea:f3:b2:25:
ef:c2:79:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:41:35 2025 by rpki-client