Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: vFjafxsPz5eb9S/kdH6tOCq5fwuGLu0OjE5RHlmdyps=
Subject key identifier: 3A:18:D0:26:92:CF:18:F6:6A:5A:96:CE:0F:16:69:B5:F4:5A:3D:6C
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 019A2E2010E847E7E0C5F5BFA08D6566E03D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 04C4
Signing time: Wed 29 Oct 2025 04:00:44 +0000
Manifest this update: Wed 29 Oct 2025 04:00:44 +0000
Manifest next update: Thu 30 Oct 2025 04:00:44 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: QOcxky2SDi2PbtPIRKCBbZU1rHCViiJPtZOLejVrbCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2e:20:10:e8:47:e7:e0:c5:f5:bf:a0:8d:65:66:e0:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Oct 29 04:00:44 2025 GMT
Not After : Oct 30 04:00:44 2025 GMT
Subject: CN=3a18d02692cf18f66a5a96ce0f1669b5f45a3d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:de:75:34:7f:ff:44:40:e9:c9:19:0c:53:b4:
61:e6:8e:f6:3f:a8:c2:0e:8a:c9:6b:1c:09:dc:1f:
a2:eb:22:3d:c2:82:2b:c2:58:b1:88:15:e4:a9:0f:
68:a8:4b:b0:d9:41:92:51:c3:d7:f3:b0:74:c5:ab:
5e:d3:d3:13:c8:f4:a4:4a:fb:72:3c:7e:8b:e3:62:
4e:9e:0e:69:60:9e:aa:47:d8:79:53:d5:02:64:c1:
8b:d4:76:f8:fa:1a:3a:0d:8e:40:cf:cb:f4:e4:73:
96:64:4e:de:0f:22:46:3b:58:a9:a3:b1:5e:3a:f3:
d8:18:cb:06:fa:2f:8a:5b:5c:35:d0:91:0e:cd:13:
df:43:68:91:61:48:35:3c:8e:22:26:50:e0:00:71:
89:6c:a5:1e:45:c1:5f:4b:97:c5:e8:b8:29:ce:e7:
49:5f:82:04:19:b5:c5:b8:9e:0e:36:2b:53:bf:a5:
66:7f:24:54:86:4d:b8:be:11:23:26:03:15:18:65:
a4:a0:16:0e:d6:3d:e1:af:a1:23:44:6e:7e:91:9c:
b8:52:1f:07:d4:d3:d3:f7:95:e9:96:4a:da:89:7a:
25:34:2f:17:f7:09:4b:1b:83:7f:11:af:dc:7f:3e:
e7:54:fa:73:8c:d3:6b:68:b5:89:e1:49:97:6c:6f:
21:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:18:D0:26:92:CF:18:F6:6A:5A:96:CE:0F:16:69:B5:F4:5A:3D:6C
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:95:a3:58:d5:14:de:32:61:49:cf:76:76:4e:36:ca:ec:c1:
85:e1:15:b2:d3:95:dd:34:69:38:81:98:5b:90:63:ee:8c:0d:
71:31:df:61:b4:32:28:a4:06:b2:05:80:5b:7d:c3:8a:8a:4c:
19:19:a5:d9:f6:e2:15:13:35:9d:57:4e:d1:53:62:43:73:48:
61:9a:48:e5:5d:0e:6f:87:af:26:13:5f:2e:ac:38:35:f3:46:
b4:01:7e:27:26:14:50:e6:22:5e:15:e0:7c:b4:d3:10:91:be:
57:57:c6:51:3f:1d:87:97:89:d3:39:d9:90:e6:f7:d0:f9:ad:
e9:18:18:03:5a:ad:80:85:00:93:5f:6f:cf:f7:80:13:f3:fe:
94:bc:fc:ae:e8:91:ae:66:41:fe:8d:3d:3f:29:c0:3b:b8:04:
84:81:0f:72:fa:5e:3b:7c:a9:b0:96:6c:8e:56:a8:ad:0c:0e:
25:92:4c:40:d5:37:ad:e8:4f:75:b6:6c:fb:81:8c:ad:cc:fb:
57:80:ea:b2:6d:4f:97:a8:52:20:7d:dc:6f:66:33:de:a3:cc:
f8:ee:ea:2d:87:30:7d:28:7b:86:53:e1:3f:54:2d:26:0f:f0:
ab:a6:c7:c4:81:26:fc:55:45:5e:cd:91:43:61:25:50:ea:fd:
ab:af:1e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 09:02:00 2025 by rpki-client