Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: qnceF2KCJQoxlzy5SJuvdziTNlXU4aJhMbPRbWs4oQw=
Subject key identifier: 34:FA:54:10:3F:19:61:05:EE:A5:AA:BB:1D:16:40:EA:E7:D9:7B:57
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 019A4F61ECC601F5AD0D405D3EE080848266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 1718
Signing time: Tue 04 Nov 2025 15:00:08 +0000
Manifest this update: Tue 04 Nov 2025 15:00:08 +0000
Manifest next update: Wed 05 Nov 2025 15:00:08 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: JFjc1nH2Cf8xKbOj89k/wKfcBNkLPk742gSJ8kog3Tk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:ec:c6:01:f5:ad:0d:40:5d:3e:e0:80:84:82:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Nov 4 15:00:08 2025 GMT
Not After : Nov 5 15:00:08 2025 GMT
Subject: CN=34fa54103f196105eea5aabb1d1640eae7d97b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:50:67:56:a5:4f:93:f7:78:10:7d:bb:ac:5b:
3f:51:80:ed:c4:95:0f:a6:84:cf:a7:72:96:ff:6a:
f0:6f:f9:d9:7f:6f:d7:7a:0e:05:14:cd:2c:bc:e8:
87:6a:b8:92:f5:c1:8e:cf:46:3d:d1:b6:8b:79:47:
22:83:9d:64:f2:8e:b8:ad:33:6a:0b:a7:9a:e5:09:
63:6a:f7:a3:f5:c8:bd:c5:a5:ba:b6:19:b3:25:eb:
c1:8e:82:52:34:8f:c4:74:0b:8e:52:8e:a2:9e:0b:
f7:57:f8:c4:e9:bb:10:a2:13:2e:29:e2:c5:eb:11:
73:32:61:6e:0f:93:c7:26:a2:31:b4:2e:65:c4:11:
c0:aa:c9:37:4d:1b:bd:e1:ae:f6:9f:13:38:77:4d:
c8:6d:a8:2b:43:ae:66:c1:09:41:9c:81:2c:82:ab:
f5:0d:20:0c:f1:22:20:fd:ff:f8:29:55:96:68:cc:
9f:cd:d9:0c:a0:07:1a:fd:0a:9d:9f:60:37:37:a1:
70:34:1b:35:d4:93:f1:9d:f2:24:fa:48:3e:36:8d:
32:46:6f:58:62:3b:40:10:78:b5:d3:4f:31:55:b9:
07:ef:34:81:6c:5e:37:52:49:36:2c:26:8a:2d:97:
16:b9:19:c8:bf:4e:cf:5c:f5:68:a7:3a:f2:0b:07:
29:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FA:54:10:3F:19:61:05:EE:A5:AA:BB:1D:16:40:EA:E7:D9:7B:57
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:d7:a8:54:db:b3:23:46:f5:af:46:8f:8f:b1:ec:ff:03:83:
6a:07:e8:9d:99:dd:bf:a7:68:ae:6f:04:0c:ba:46:78:00:3a:
11:74:1d:38:b0:49:01:24:17:cf:60:47:cb:44:f4:36:dc:a0:
dd:42:0d:82:6c:d8:74:03:99:ff:07:ca:c8:d7:3b:3b:36:ce:
4c:a6:51:87:29:e5:25:0e:f5:a4:73:c0:56:ec:62:a8:b6:04:
c5:f0:9f:4c:6e:cf:c5:5f:0f:59:56:b7:55:99:20:ce:a2:55:
cf:de:08:2d:9a:c9:7d:5a:c0:05:d2:ce:40:8f:a7:59:9b:a6:
72:a5:b1:0c:32:9c:a7:b6:02:dd:3a:ad:61:29:53:ae:73:1d:
05:e8:7a:f6:ee:14:92:4d:15:82:06:df:55:c3:d7:1a:84:22:
6c:d2:33:9f:2b:01:a4:44:1b:37:2b:5d:65:29:7f:32:4e:b8:
65:21:f1:23:2d:0f:60:12:60:4c:41:6f:cc:49:b6:fa:49:0f:
b3:93:fb:81:94:a9:bf:5e:19:2a:83:e1:70:50:cb:5e:a3:ec:
93:fe:55:c1:7f:a4:62:77:21:7c:89:68:86:82:ac:59:d0:5d:
e4:db:49:f4:c6:f1:ed:1c:22:f2:4a:ea:fa:9f:a6:74:93:38:
27:03:ab:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 23:53:42 2025 by rpki-client