Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
File: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft (raw, json)
Hash identifier: IDxvsbE7XXHfQZ/Bdqdptehi/vlz5HnH9JmX9WdFLgk=
Subject key identifier: 71:DA:03:F8:17:BC:B6:F2:E2:44:53:23:2A:A3:82:EB:95:5E:D2:5C
Authority key identifier: 84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
Certificate issuer: /CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Certificate serial: 019A4E187F51BD5EB33BEE68D486C7C2D861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 09:00:19 +0000
Manifest this update: Tue 04 Nov 2025 09:00:19 +0000
Manifest next update: Wed 05 Nov 2025 09:00:19 +0000
Files and hashes: 1: BZnndlQQXrhtsi1w92QwnbcTVos.roa (hash: xdoIZn2kmQaThra2U5g+oAnP8t2eo6iub1zi69U/YhE=)
2: hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl (hash: yoBdJqBBpUJjmcsswmBq8iidNfqmGoOueh06+Uu7CPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:7f:51:bd:5e:b3:3b:ee:68:d4:86:c7:c2:d8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84106bfa023f17cf6d67eac9fdd2868a72f76680
Validity
Not Before: Nov 4 09:00:19 2025 GMT
Not After : Nov 5 09:00:19 2025 GMT
Subject: CN=71da03f817bcb6f2e24453232aa382eb955ed25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:ac:48:10:08:c8:ad:9c:0e:84:61:93:c8:
c5:af:17:7c:8f:ce:e7:4e:ce:bf:dc:00:e2:b8:8f:
fd:c6:26:f6:3f:13:a4:f5:6d:33:5e:4d:c6:bf:b1:
0e:af:b9:17:a2:3f:f1:ea:68:59:92:53:09:15:46:
af:a7:ce:4d:69:6e:f2:eb:fd:b3:ec:80:2b:a7:23:
91:b0:ad:d6:01:7e:e8:0a:05:bf:02:44:69:65:b0:
79:6e:01:36:b6:ca:5c:a7:f1:22:bd:ec:f5:86:7f:
0f:c6:8b:1f:e1:db:9d:2f:05:b8:e8:5a:88:71:cb:
ff:e4:3e:d9:d5:89:03:43:6f:81:f2:51:1b:94:3c:
9f:b7:b3:7c:ba:d8:ab:20:ee:af:4e:bc:14:90:40:
11:33:eb:d8:0c:b8:34:dd:92:f6:85:82:14:07:56:
10:b9:33:86:c7:ed:c9:ad:8f:99:5d:8f:93:41:e1:
d6:6f:c4:56:bb:cc:12:e1:5c:ea:05:9d:0e:42:3d:
a3:99:88:ce:04:f8:91:f8:ac:93:74:6b:3b:1a:f5:
bc:b2:e4:74:1f:85:13:41:df:ed:dc:43:1e:09:1a:
88:96:86:d2:19:90:76:e8:81:58:73:f1:76:1a:e4:
b9:66:e4:07:0e:da:da:19:e9:54:b1:ad:af:23:9a:
9c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DA:03:F8:17:BC:B6:F2:E2:44:53:23:2A:A3:82:EB:95:5E:D2:5C
X509v3 Authority Key Identifier:
keyid:84:10:6B:FA:02:3F:17:CF:6D:67:EA:C9:FD:D2:86:8A:72:F7:66:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7eb293-8e76-470f-855f-b626d5746d13/1/hBBr-gI_F89tZ-rJ_dKGinL3ZoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:6b:9b:dc:29:13:79:fb:d9:8e:e7:5a:83:91:20:d4:0f:1a:
4f:e2:29:77:66:bb:17:48:26:ed:d1:8e:ce:70:76:c7:e3:53:
0c:35:0f:0b:65:f5:0d:25:00:a9:a1:62:1c:0a:42:f9:71:65:
12:f6:1b:83:04:3b:8f:f5:ab:8b:7e:39:5d:b3:fe:6a:ca:f4:
a1:9c:0c:64:a3:85:1a:8c:9c:c0:a2:ad:1d:30:04:c7:a4:ed:
ec:29:06:6c:9b:f2:0d:88:f7:2a:91:4c:cc:95:86:c6:99:44:
dd:6b:d5:a0:77:b9:cd:de:19:3a:f0:79:b6:13:7c:e8:e2:ae:
2d:b7:c0:fd:b0:c8:6b:ed:23:cf:8d:b7:63:aa:a6:d6:10:69:
fd:d0:cd:a0:c2:f0:1a:ac:46:15:65:45:53:d3:de:4b:6b:4a:
e5:90:e8:3a:df:d1:2e:dd:79:fa:e0:dc:3c:52:6e:05:5b:66:
e3:8f:25:d7:1b:3e:2f:5e:8d:cd:ad:63:78:82:58:91:e8:bf:
e7:8d:82:e1:ef:67:97:1e:2e:09:a7:51:1b:dd:3c:4b:10:9c:
b3:14:c3:b2:ea:d6:fc:d5:ba:b1:96:4e:84:03:dc:8d:95:b5:
30:6e:28:ea:2d:88:37:8f:b2:3c:4f:13:e5:be:ff:e0:66:36:
18:3e:4a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:27:34 2025 by rpki-client