Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json)
Hash identifier: TPBaMUtROmvwyzuUOlW/NnBBOvcAVuvBcSU1dJy7Usc=
Subject key identifier: 66:88:28:B2:F0:BD:03:52:E6:C6:CA:98:A8:07:D2:43:F6:07:6E:DD
Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7
Certificate serial: 019A4FCFC254A01D71BAE4A4C2FA2396B36D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
Manifest number: 1666
Signing time: Tue 04 Nov 2025 17:00:07 +0000
Manifest this update: Tue 04 Nov 2025 17:00:07 +0000
Manifest next update: Wed 05 Nov 2025 17:00:07 +0000
Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=)
2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: 3ni53iJLkJVNJ6MMh9rc7j6Ns1d5zKLybjLtoH1IuoQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:c2:54:a0:1d:71:ba:e4:a4:c2:fa:23:96:b3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7
Validity
Not Before: Nov 4 17:00:07 2025 GMT
Not After : Nov 5 17:00:07 2025 GMT
Subject: CN=668828b2f0bd0352e6c6ca98a807d243f6076edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:36:dc:ac:d2:15:2c:12:02:b8:33:d1:f0:9e:
2c:9d:99:52:9a:48:a2:89:84:e2:49:63:37:a0:de:
57:ac:5d:e1:1e:e0:6c:bc:87:64:9b:65:8a:8c:9d:
14:52:7e:97:53:6a:3a:e4:93:b6:59:6a:d0:6b:95:
64:a3:98:a6:99:af:3b:c5:1f:a9:5b:85:98:38:05:
48:46:27:e2:bf:53:15:84:ca:2f:14:f3:fb:34:0e:
44:0a:65:47:0f:fa:c1:df:f2:51:4a:68:72:04:a9:
40:f0:a8:10:14:85:1d:6b:05:50:0f:7c:0e:b2:da:
19:30:38:c8:7d:b2:33:8c:43:3f:b8:7c:ac:98:73:
7b:58:89:62:2a:41:ee:3b:0c:44:f7:7f:82:70:26:
1e:01:66:ac:4b:26:54:89:1e:f6:86:c3:b8:49:28:
04:04:be:46:9d:30:f2:be:12:8b:90:a3:bd:54:31:
7a:01:23:a6:fd:07:6b:87:d9:f7:fe:bb:02:48:b6:
d9:3e:02:84:ee:a8:67:f8:3e:ad:68:78:fc:1c:f6:
f2:f4:1e:8e:74:76:51:17:99:83:10:93:bf:c8:5d:
88:5e:00:32:ca:c9:d2:0a:80:52:44:c0:54:8b:f3:
fb:49:b3:98:19:68:27:2e:9f:3b:7e:71:66:15:56:
76:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:88:28:B2:F0:BD:03:52:E6:C6:CA:98:A8:07:D2:43:F6:07:6E:DD
X509v3 Authority Key Identifier:
keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:7e:cc:ec:d4:dc:1e:3a:cc:6b:4e:8d:29:6e:96:c8:b3:1c:
36:c8:51:fc:10:ee:de:88:d7:65:46:c1:e6:c9:fc:95:13:16:
dc:3f:d3:0f:99:86:8d:b8:3d:59:98:6c:59:f5:e6:c3:00:1f:
f7:3a:51:41:11:ed:73:87:e1:9e:05:58:07:c6:99:6d:a9:44:
f7:42:db:a3:54:a1:f4:d5:32:1e:7e:f3:9e:a5:54:24:78:b4:
bf:f7:cc:e3:6d:a3:14:3a:25:e2:53:19:5c:6b:1c:3f:14:6e:
e2:2b:b0:29:9e:39:91:85:dd:b6:61:cd:e5:13:17:ef:34:12:
d7:24:a5:4a:3a:1c:c9:15:fd:17:18:a2:92:3f:f2:44:82:ca:
a4:25:f2:03:e0:91:35:e2:6f:9f:7e:b9:0f:ba:6d:ee:16:db:
65:b9:cb:86:04:5c:fb:61:2d:b1:06:a8:c3:32:82:c1:ea:46:
ce:65:bb:7b:8b:75:68:83:ef:01:5d:17:24:a8:34:1d:f5:f5:
0d:99:59:af:64:3e:21:3d:a9:35:12:b0:11:10:eb:5a:cd:5a:
26:bf:95:eb:d9:84:60:89:83:4e:f2:b3:f3:08:c7:86:02:eb:
03:9d:6e:af:eb:8f:f1:e2:77:35:b6:b7:27:c5:fa:bd:ac:7a:
b8:6d:8e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:15:53 2025 by rpki-client