Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
File: hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft (raw, json)
Hash identifier: bJlzmL49ga7OL8YekRCKTcQItlU/xHcCd02VZ4w1CAE=
Subject key identifier: 2A:FC:4E:87:8B:EA:E6:11:BD:E5:80:19:E9:48:6C:16:8D:51:92:5E
Authority key identifier: 85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
Certificate issuer: /CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Certificate serial: 019A221B752A4D5D4CA7C94F22B0C8AE2D68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
Manifest number: 16F8
Signing time: Sun 26 Oct 2025 20:00:16 +0000
Manifest this update: Sun 26 Oct 2025 20:00:16 +0000
Manifest next update: Mon 27 Oct 2025 20:00:16 +0000
Files and hashes: 1: 4NKKaipkT34nKtWhfa19D74f25c.roa (hash: YTaiys0RSHABRCWEassKEE2Fqko+03tYIMHlBHkZyig=)
2: hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl (hash: 2v8oZzoxT5o/B1pTM2/Ym35gL/jFY6TsAXBp5Sf4+zY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:1b:75:2a:4d:5d:4c:a7:c9:4f:22:b0:c8:ae:2d:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Validity
Not Before: Oct 26 20:00:16 2025 GMT
Not After : Oct 27 20:00:16 2025 GMT
Subject: CN=2afc4e878beae611bde58019e9486c168d51925e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:32:3a:f0:f5:23:8b:57:b0:be:e4:fa:47:e2:
20:55:9d:de:c8:8d:76:27:71:23:bb:de:0b:2e:01:
63:c2:aa:b0:7a:4a:18:f2:03:1d:55:63:66:2c:12:
d7:a7:d4:59:07:ae:45:c0:14:98:2a:bd:b8:e4:68:
4f:89:0b:73:8e:74:98:26:86:bf:2b:58:b6:83:bf:
4d:8c:c2:2e:5b:99:cd:32:eb:1f:07:c4:1b:44:de:
5d:fe:2e:65:92:f4:57:6f:77:a9:01:bf:95:5c:da:
10:c9:c9:2d:0c:7a:f6:2b:3d:02:90:27:46:bc:e9:
86:a3:9c:ad:fa:bf:e9:8f:b0:5d:43:09:31:17:2d:
8d:d6:80:3d:80:fd:37:35:f1:ea:8f:e4:55:d1:4b:
d0:ef:29:84:ee:a8:cd:88:ed:fd:7c:14:14:73:d1:
ae:6b:10:07:e7:d7:63:2d:10:70:14:48:9d:a2:69:
69:db:a0:ab:7f:b3:43:13:e2:ac:b5:d4:fb:0d:08:
25:64:f2:15:b3:ef:fc:f5:91:ca:af:76:c5:20:77:
95:38:9d:92:38:b8:b6:cc:d3:e7:28:e5:a4:19:3d:
a6:f1:bb:4d:a6:bc:55:ba:a5:69:e2:01:5e:90:84:
d2:d5:da:04:8d:ad:30:e9:e1:11:78:7e:9a:3d:0e:
cb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FC:4E:87:8B:EA:E6:11:BD:E5:80:19:E9:48:6C:16:8D:51:92:5E
X509v3 Authority Key Identifier:
keyid:85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:8f:d7:e1:49:18:cf:bd:87:50:fa:b5:b3:49:82:3b:fa:b0:
66:43:05:9e:b9:65:fd:bb:f3:71:b1:b9:02:57:4d:b3:c4:cf:
0d:bd:7f:45:7b:56:db:20:76:67:35:28:3a:c8:9b:0a:05:73:
41:9e:64:05:f2:c3:28:e9:4a:1a:9a:2f:25:e6:b5:32:c7:be:
9b:01:c8:4f:f8:88:05:68:7b:d5:72:35:4c:a2:67:0d:83:94:
70:70:7d:4f:d2:59:68:a4:ab:a9:40:63:78:94:91:fa:44:de:
c4:3a:13:e9:2f:a9:a8:06:86:49:9d:15:44:1b:c2:63:c6:af:
01:db:5f:7c:bd:40:52:78:1d:9f:43:2d:fc:6a:fe:ba:ad:35:
1e:1c:fc:d8:a9:63:5d:30:8d:15:f1:dd:e0:10:0f:d5:3d:ff:
11:ab:fd:e9:7a:51:9a:6d:ae:03:2f:e1:fe:c2:6b:fc:5c:23:
97:64:f0:97:75:b5:0b:f2:c4:fb:6d:4c:6c:2d:84:9e:4e:b6:
f9:95:8d:f2:47:c2:62:36:79:b4:36:a0:c8:0f:d8:e0:62:c7:
85:2a:cf:02:3c:b5:48:65:29:97:78:68:64:18:76:71:14:2b:
dc:f9:16:c1:11:2c:00:a7:15:47:9b:0f:5c:03:6c:97:99:74:
48:a9:38:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:46:48 2025 by rpki-client