Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json)
Hash identifier: Gc2cfNXqmjIMzG62+PlY8MRn4gUgGVcV7wN18HBKNZE=
Subject key identifier: 68:5F:5B:15:8B:49:09:F0:2A:A0:DC:EE:55:6E:94:77:AF:90:0C:78
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 019A537613FC3107D144252A9339AAA8095B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
Manifest number: 170E
Signing time: Wed 05 Nov 2025 10:00:38 +0000
Manifest this update: Wed 05 Nov 2025 10:00:38 +0000
Manifest next update: Thu 06 Nov 2025 10:00:38 +0000
Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: 1S2nbloAX2PgxquCUg0hJVq6xRMLAUy0xjqDwpHl3IM=)
2: zYnN-i8U1PX-vVy0Kko-kLxeBsU.roa (hash: SDcPgjrr8y9zPr3/XTNgtJ+0oZH17N4IYV4VzMId4hs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:76:13:fc:31:07:d1:44:25:2a:93:39:aa:a8:09:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Nov 5 10:00:38 2025 GMT
Not After : Nov 6 10:00:38 2025 GMT
Subject: CN=685f5b158b4909f02aa0dcee556e9477af900c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b5:38:b7:e6:10:1c:f0:b0:d7:d8:ed:7a:49:
b8:66:12:05:73:f3:aa:d3:61:a3:09:07:50:59:c7:
ae:85:52:3f:18:80:bd:70:c8:e1:24:e4:65:cd:96:
dc:8b:e1:50:76:53:da:57:56:ba:24:cb:07:67:15:
f2:dd:36:46:58:41:0f:76:96:6e:d4:55:98:16:7a:
50:87:71:9e:05:1d:fd:1b:66:e5:97:51:00:27:37:
fb:1d:0f:3e:53:1a:57:3f:de:18:40:99:8d:7e:bb:
3a:50:20:7e:ce:39:0d:18:bc:f0:16:32:dc:90:7f:
0d:7c:e0:55:d8:3a:5f:4f:b0:ea:31:96:9f:ec:2b:
74:08:b2:0d:b6:48:cc:27:a6:6d:55:5b:3c:e7:e2:
97:85:43:5a:44:fd:4b:d6:e8:ce:50:5b:54:be:20:
93:91:b1:08:28:a0:2c:c3:80:ae:5b:aa:53:e6:56:
bc:5d:e4:18:53:6f:12:4c:91:50:f0:e0:c7:1a:a4:
97:fc:98:38:4b:40:9a:c3:d5:05:56:3f:c5:73:b8:
24:7e:49:eb:07:95:70:0a:aa:0a:e3:cc:23:0c:02:
e7:5f:11:bc:f2:4f:57:36:34:95:a7:99:8d:61:24:
e6:49:7e:92:64:1e:10:80:ab:d6:34:98:d6:0c:8f:
3f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5F:5B:15:8B:49:09:F0:2A:A0:DC:EE:55:6E:94:77:AF:90:0C:78
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:1f:48:7f:a1:cd:8b:91:42:02:70:d2:7a:b7:11:d8:4c:f2:
95:c4:c4:c4:08:b1:3e:2a:06:83:97:8a:70:21:5f:56:69:63:
e4:5e:20:ec:fa:90:4a:c8:e3:d4:06:3d:a7:0c:5d:14:27:bf:
94:60:57:74:06:f5:42:f8:14:4b:9a:e7:3d:bb:b4:40:fb:8c:
1a:76:7e:e1:9a:a6:f0:ea:5b:94:18:17:f5:d3:d3:05:c2:6b:
be:be:87:c4:10:40:c2:50:53:d9:7a:dd:d7:89:53:6c:9b:26:
20:8c:7b:70:fe:48:84:8e:5b:12:3f:d7:ac:28:da:f4:d5:4c:
8c:75:dd:3b:9e:e8:f9:69:31:ed:55:87:5c:d9:1c:1e:aa:3a:
5f:52:22:aa:41:d5:78:46:e7:41:65:a4:60:04:e1:1d:7b:69:
12:63:1e:2d:97:45:43:b2:d9:09:c3:b3:36:d3:d2:9a:06:54:
fe:3e:1f:f6:7c:65:4e:fa:f8:5b:47:ae:c8:25:ef:f7:cc:f4:
7e:fa:3a:92:7d:a0:6f:26:9a:51:9a:4b:e1:f5:c5:3f:7a:64:
01:d2:39:bf:04:7b:75:b8:19:ea:21:cf:3d:17:2e:30:cc:c8:
a2:5d:a6:4c:e6:30:33:96:40:4d:c6:8d:d3:bc:c3:c3:7f:59:
85:9c:5e:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 18:03:37 2025 by rpki-client