Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: 7OeTpPIQiyBUwmSEC/YOSC06qJgnWwNNQwDeycK/CyI=
Subject key identifier: 4D:64:A2:40:1A:8A:3A:D6:67:74:BF:C8:22:9D:7F:A4:27:2D:44:09
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019A4F2B296E5FFC6FBBBAAD6A79FFA98B10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0C2C
Signing time: Tue 04 Nov 2025 14:00:19 +0000
Manifest this update: Tue 04 Nov 2025 14:00:19 +0000
Manifest next update: Wed 05 Nov 2025 14:00:19 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: 5M5u/Qhy4smujzHUW3qO24C1sLDPILh/WWCwReywmwQ=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:29:6e:5f:fc:6f:bb:ba:ad:6a:79:ff:a9:8b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Nov 4 14:00:19 2025 GMT
Not After : Nov 5 14:00:19 2025 GMT
Subject: CN=4d64a2401a8a3ad66774bfc8229d7fa4272d4409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fc:80:1d:d0:7a:76:fb:a9:de:b7:aa:e1:f4:
69:0c:90:18:de:f6:57:ae:41:bd:76:d7:ae:e8:f4:
6d:d6:69:0b:30:58:dd:ee:dc:08:e6:8c:77:22:33:
b3:ae:84:13:e3:d5:b6:41:93:19:37:f0:08:34:f6:
73:d8:a4:a4:7e:06:3b:17:84:cd:24:ef:c7:70:95:
d1:65:aa:14:47:eb:c0:cc:08:cd:7c:90:c7:d8:61:
a6:b7:dd:28:88:ee:7f:45:46:de:35:b9:23:68:da:
c5:ec:be:96:62:74:5f:d3:71:10:56:d5:14:3c:b2:
86:cc:23:a5:5e:43:76:b7:49:4e:2b:ab:24:7f:ff:
c4:d7:37:b6:88:b6:37:be:29:b8:e6:57:ea:c3:1e:
ac:7d:aa:33:18:ee:03:1d:c7:10:57:18:1d:10:41:
e5:28:21:a8:98:7e:4e:54:43:4f:e8:f0:e7:57:8d:
86:31:42:e0:0d:19:1c:5e:90:a7:26:7a:49:9f:53:
1a:d9:81:c7:4f:ee:82:e8:dc:5f:dc:70:bd:cc:50:
b0:62:33:cd:f7:0e:92:5e:4e:be:25:e8:2b:22:f2:
e2:83:fb:93:b9:11:bb:a4:ff:17:d1:95:41:8d:1e:
8c:5a:11:fb:95:4d:fe:5d:23:dc:67:ff:d9:ba:c2:
71:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:64:A2:40:1A:8A:3A:D6:67:74:BF:C8:22:9D:7F:A4:27:2D:44:09
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:47:5e:27:fd:40:2a:e1:99:73:9b:4f:f5:26:c3:52:ad:a7:
63:96:f2:7b:f0:23:b7:7e:09:97:e8:c8:e9:b1:14:c4:de:c2:
5f:0c:1d:a8:fa:bb:19:f6:5e:71:40:18:75:c5:86:66:97:e7:
48:89:86:93:d2:93:da:0a:a7:2a:a0:66:be:fd:c2:eb:44:b4:
80:d1:4f:85:71:fd:44:00:4a:92:2a:4f:32:77:34:99:36:39:
90:0c:24:67:d8:9d:58:d8:a1:e2:db:bf:ca:03:23:9c:89:a5:
93:49:f6:ee:3c:59:b7:cd:c0:96:e1:44:2f:9e:bf:d1:b7:b0:
19:ca:d6:73:91:81:f9:84:0b:14:a1:89:38:43:4c:dc:6d:11:
36:43:39:da:53:7a:ed:1c:ba:d1:32:e9:9d:84:ac:5b:3a:2c:
a4:bd:02:92:28:42:2a:f8:cf:73:66:1a:da:6f:84:fd:d8:d1:
91:29:db:c7:68:06:a1:77:fd:9d:38:a7:0b:da:20:e5:31:ad:
4c:c8:93:69:44:61:98:41:07:72:ec:10:45:a9:e6:76:12:1c:
2f:b5:4e:22:ec:71:8d:f1:23:30:e7:a6:4d:7b:de:4c:fd:46:
61:b9:a4:d6:65:7c:03:0a:a6:7e:9f:76:ce:08:d9:af:73:a0:
d8:8b:a8:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:28:14 2025 by rpki-client