Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
File: hLWkCydKlj5e0-8C6DmcubG7DHs.mft (raw, json)
Hash identifier: Zc5RkXcm9j21uBxvsHi7LzAb66dwrDRNqTxLX1Zp7lA=
Subject key identifier: E6:88:E0:8D:0B:CD:99:8D:DC:A8:E3:0A:CF:5B:FE:1B:23:66:31:F3
Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Certificate serial: 019A1F51D7D26849094EF23641BE483C0A4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
Manifest number: 16F5
Signing time: Sun 26 Oct 2025 07:00:48 +0000
Manifest this update: Sun 26 Oct 2025 07:00:48 +0000
Manifest next update: Mon 27 Oct 2025 07:00:48 +0000
Files and hashes: 1: O8vYugo1IMFhRrolkiJ5A2F_9k4.roa (hash: vT082QVsehcKVaVyOGMEheCQhaYoT8jhfxj4aHEzNiI=)
2: hLWkCydKlj5e0-8C6DmcubG7DHs.crl (hash: ncNXSalz6QNmsktPZs6AY/sdf4PkcNxVSdvGtXcFuaU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:51:d7:d2:68:49:09:4e:f2:36:41:be:48:3c:0a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Validity
Not Before: Oct 26 07:00:48 2025 GMT
Not After : Oct 27 07:00:48 2025 GMT
Subject: CN=e688e08d0bcd998ddca8e30acf5bfe1b236631f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d4:ef:c1:1d:c0:68:c3:95:4d:42:cf:da:19:
37:f8:50:56:ad:33:3e:b8:e8:b2:e1:16:95:8a:41:
5b:4e:9f:31:ec:a6:38:5a:75:4f:27:a6:9d:c6:83:
18:ca:dd:e2:d7:f2:58:ee:98:86:8b:8c:0e:0f:55:
a1:e9:ea:83:6c:a5:0f:03:79:7f:c0:a9:b2:f9:6c:
26:a6:32:eb:67:39:dd:f3:fc:90:a9:27:6a:06:47:
81:28:a9:b8:a5:4f:be:b8:5f:7c:c8:71:79:16:d7:
cf:0f:db:5c:c7:e4:93:3c:89:df:d7:20:aa:1a:ca:
af:ac:1b:d2:4f:5d:19:62:3c:8f:26:dd:09:40:97:
b1:03:49:a6:a6:b6:7e:07:73:28:82:b9:e3:a6:9e:
a6:2f:c0:4a:45:75:2e:ca:1d:ca:fa:59:28:72:4e:
69:96:b7:03:b9:2d:1e:48:0a:c5:8c:b9:3c:da:c2:
0c:ce:6d:b3:65:6e:14:7d:ec:eb:76:8c:44:00:76:
0b:4b:f6:88:ee:90:e7:cb:65:0b:9d:c9:12:6e:67:
c5:dd:b0:5f:e2:1c:0e:0b:5e:17:7b:78:9a:87:0d:
d2:04:30:b8:7f:20:25:51:05:c3:fb:6e:d5:d4:e4:
15:77:c8:0f:b0:1d:af:3d:f2:ef:2d:64:91:c6:a5:
b5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:88:E0:8D:0B:CD:99:8D:DC:A8:E3:0A:CF:5B:FE:1B:23:66:31:F3
X509v3 Authority Key Identifier:
keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:9f:5d:9f:e5:a6:e0:f3:bb:38:48:ee:7d:ec:98:8b:8d:b5:
9f:fb:f5:70:b3:a6:ff:06:ab:0e:67:e8:fb:7a:bc:03:20:1f:
c1:a0:9a:38:ac:86:55:8f:b9:7b:0c:0c:b0:94:ef:ad:13:5a:
72:96:20:b6:06:28:c2:a2:da:1b:9d:0f:89:54:97:dd:7b:04:
07:0a:83:ad:98:ec:d6:44:10:5f:e8:ae:2a:ee:e6:c0:ec:a1:
52:a8:3f:b7:4e:36:36:85:a7:8f:17:82:0c:5b:28:c6:46:db:
3e:04:11:51:25:b6:e0:bf:9f:34:3c:c2:a9:79:48:0f:1a:c7:
a2:01:b0:e0:cb:90:70:8e:ec:1e:c2:c5:e6:31:f3:0d:34:c1:
fa:75:76:41:ae:4f:0d:e2:b3:49:90:95:21:f4:56:3a:30:76:
ee:b9:df:28:36:12:f4:f8:3c:95:5a:f4:b8:10:b8:5d:f8:7a:
cd:07:65:26:47:8b:b3:08:e5:72:c6:39:e0:7b:a4:a2:a9:62:
9c:37:b5:34:0f:94:10:bd:d3:ed:a9:37:c2:81:9a:9c:0b:95:
79:5b:a1:1a:28:44:bc:a3:90:06:a8:7f:fc:e5:fa:7c:f3:3b:
92:32:bc:6b:fe:c0:d7:fe:82:a2:4f:e9:69:46:80:85:d1:ea:
73:54:e1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 11:13:51 2025 by rpki-client