Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json)
Hash identifier: dMGZmkaNQhRL96R55uMxT4eck6qmAm3iGql899wTQ0Q=
Subject key identifier: E5:38:91:3B:EF:34:91:BC:46:3F:4A:1E:B4:A1:47:70:68:98:C7:A6
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 019A04ED3C674B1CFA438B8AAACDB422DDC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
Manifest number: 1129
Signing time: Tue 21 Oct 2025 04:00:47 +0000
Manifest this update: Tue 21 Oct 2025 04:00:47 +0000
Manifest next update: Wed 22 Oct 2025 04:00:47 +0000
Files and hashes: 1: 0pi9IaQq2fBWcGfcpKeC_IHzvEQ.roa (hash: 7NVRHz/yavsbwJXBgfeDxYrCqDuUxp9nZbgGaZLZ9oA=)
2: 3wW5MOLSStojI9xiPbeDzYTIyjU.roa (hash: 2XAYsLytjrXYCpBJtfGxqKAam2Z4NRRhSRFoEEd4Llk=)
3: bpfV9qpUqRU7ZbL5m4qH_-0K2rg.roa (hash: 4P0zOtuiLjjQhgT/25d48jeUAEanfYakXWIUUX0ljiU=)
4: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: Caa0Ez3xiRXKbtuHoj7XM9vLGpAdQpjGfjQaNmm0euw=)
5: mPqcgtGb2yf9In758ERINrkMypo.roa (hash: NIdkZJadBz8qYXRNbhuo0LCb4YMZcnXeOqxZtSChOrc=)
6: yXjHrq-s43_JYr0rLELUWWQUfRw.roa (hash: 4zzMUSCqPCS+1DFvUjbQidVA6cErC1SxAP7lBmahGck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:ed:3c:67:4b:1c:fa:43:8b:8a:aa:cd:b4:22:dd:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Oct 21 04:00:47 2025 GMT
Not After : Oct 22 04:00:47 2025 GMT
Subject: CN=e538913bef3491bc463f4a1eb4a147706898c7a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:9f:1a:d6:7d:55:3e:9d:5b:01:17:90:27:9b:
28:69:fd:f9:b1:4e:68:5c:d3:60:35:43:ac:30:97:
b9:85:24:c7:e4:e5:50:35:5a:21:06:3c:bb:f8:7d:
bc:6b:aa:34:df:21:c7:76:bf:26:66:87:62:88:8d:
d8:a5:07:29:c0:0e:7e:23:fa:c2:ca:34:a2:20:eb:
1e:59:1f:17:84:9a:c7:d6:1a:18:60:2c:3a:32:31:
60:71:7d:7a:76:bc:71:fc:1b:bd:a4:df:b6:5d:81:
7f:b4:f9:fe:3a:da:b1:a5:55:2a:63:69:59:07:65:
39:c2:24:62:d8:1e:67:a8:dd:17:4a:96:b6:0a:cd:
14:35:04:aa:b6:1e:9f:d4:ef:75:61:a4:15:10:66:
b5:f5:78:e7:af:37:bb:17:e0:3f:c4:86:8b:78:8b:
a0:9f:ee:95:a1:b5:59:1e:32:09:99:28:18:a5:19:
50:51:f3:a6:eb:49:6b:13:d6:fc:35:76:f3:2c:73:
e4:38:33:c9:ca:01:f9:cf:a7:26:57:69:27:1c:2f:
99:19:03:ad:6b:b1:88:4f:ba:20:a6:15:6d:7a:19:
fe:c8:1e:e6:b7:8f:43:0b:4d:b8:3a:7d:52:47:0f:
0c:fe:74:46:42:dc:7a:07:9f:33:bd:0f:02:93:9c:
26:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:38:91:3B:EF:34:91:BC:46:3F:4A:1E:B4:A1:47:70:68:98:C7:A6
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:66:55:0e:e1:e8:79:a6:e0:eb:41:81:6a:f5:52:8f:54:a4:
57:49:5d:2e:c5:c3:85:52:0a:c4:59:18:c7:1a:5d:83:6b:2f:
cc:0e:3c:cd:f8:37:ab:5f:d9:0a:ea:58:14:cf:a6:1b:75:f1:
e3:23:34:2b:5b:55:37:1e:ea:28:11:33:94:ab:03:1d:79:eb:
f8:82:4f:a5:f9:5e:22:c6:d3:dc:41:c9:da:a3:9a:86:b2:fb:
73:07:3e:81:b1:9b:80:3d:8d:e2:c3:2d:85:9b:ad:a5:a5:a6:
02:dd:6c:c3:78:cf:51:71:de:08:a7:04:34:7e:29:0e:51:8b:
a3:fd:4e:43:55:18:6c:bf:ba:bb:29:0e:99:01:a8:c9:9a:b2:
01:f2:01:09:2e:d9:41:97:c4:63:12:f8:b6:b3:cf:36:b0:83:
84:c6:55:f8:8e:e6:6b:21:77:84:c1:4f:7e:74:35:85:27:a8:
47:d4:df:f9:40:ed:95:25:f0:68:27:1e:30:6c:2b:cf:70:57:
cf:5d:29:57:6f:21:a6:bf:f3:da:f6:32:53:dc:b5:45:6b:dd:
e2:54:19:ad:13:5d:af:29:c1:0a:5a:0a:b5:25:d0:52:aa:be:
3f:70:d6:cd:db:5d:ee:37:94:44:41:c7:00:5e:21:75:9a:3e:
41:bf:28:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 12:09:32 2025 by rpki-client