Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: tA6GPhW+fVi23iYX7uLc+UeJ2AXi2U/+krpchmna4y4=
Subject key identifier: 7B:6A:F3:D8:36:7D:C3:2B:CB:15:C8:CA:50:55:89:7F:4C:28:CB:3F
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019A53763A452094BA9B3C8A077656CB7F75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 1720
Signing time: Wed 05 Nov 2025 10:00:48 +0000
Manifest this update: Wed 05 Nov 2025 10:00:48 +0000
Manifest next update: Thu 06 Nov 2025 10:00:48 +0000
Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=)
2: MTIEPm-UTrRJO5GkIDAlc0UbzLQ.roa (hash: nVeKeAW6vJuUEVgfnDWMk7tY9g53T2JINJDassyHDH8=)
3: XOmOBh50cvCvJmnFjaJhaHYW2sE.roa (hash: 6F6wNjub6rC7wNAaFOeBE6JJ3w2cU7C6GJM4bNB9ZQQ=)
4: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: AEmBlrx7D3OKjl7+U0wzNRWap0SSvFqqTlmho/ydo0c=)
5: viZJ1ILrK-Lhvo6EpJnhGu2o9Q4.roa (hash: VBEvk2C209Y5tb0FL9tK/NrEWGQ6MCpm2RIBK/aQkDU=)
6: yXMAz21dFW6Sf1HAb5KDTn2Yy0g.roa (hash: dMxwivy3WoBvzsdqovQyIDGqZ1EWhn2L/4sgtoX9AUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:76:3a:45:20:94:ba:9b:3c:8a:07:76:56:cb:7f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Nov 5 10:00:48 2025 GMT
Not After : Nov 6 10:00:48 2025 GMT
Subject: CN=7b6af3d8367dc32bcb15c8ca5055897f4c28cb3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:39:ef:2e:25:e7:f1:d1:dd:96:9c:1c:86:88:
07:1b:01:66:67:08:93:64:08:8c:a8:1b:0e:78:df:
f1:67:9f:ee:e5:49:20:1b:3e:a4:e8:ae:d4:f3:56:
90:12:a0:40:06:3c:d2:f3:aa:6a:83:cf:bc:84:f0:
1d:f6:d3:a8:61:2f:9a:16:b0:e0:e2:02:48:28:57:
fc:8b:fe:a5:bd:d0:6a:1a:ad:4d:2a:df:ab:37:cf:
6b:57:2d:97:04:d1:33:74:ce:42:c6:91:bb:8a:81:
f7:26:6b:5b:59:bb:d2:e1:a5:d6:19:2d:fc:de:7b:
8f:19:9e:7c:f9:58:48:b4:36:a4:e9:ea:f7:6d:af:
2d:f5:61:a9:c6:a7:fe:bf:27:f0:36:c2:80:f4:d9:
e2:0d:4a:08:48:ee:aa:41:8f:3d:2c:0a:d5:00:7c:
e3:c0:a6:aa:14:ba:b9:e1:c3:9b:0a:49:e8:15:80:
56:0a:19:d8:ca:12:93:d5:9f:ab:3a:eb:2a:b3:6e:
b3:2d:70:25:4b:63:c1:42:cd:c2:ab:d7:98:03:13:
ad:e1:d0:79:ec:a2:53:bf:b6:a6:67:50:5a:1a:5f:
c7:7e:37:49:6d:1d:b2:fd:88:88:4b:7c:55:8f:be:
f2:b7:63:fa:39:ae:9b:8b:f5:9d:95:6a:3d:4b:61:
6a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6A:F3:D8:36:7D:C3:2B:CB:15:C8:CA:50:55:89:7F:4C:28:CB:3F
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:82:ae:94:b2:fe:24:09:a4:2c:b8:ce:34:ac:bf:9a:9f:a5:
94:66:fb:b7:b8:ed:65:bf:87:28:5e:a0:6c:02:2a:5d:2e:58:
23:a8:1b:4d:70:7a:2d:df:b4:83:e1:b2:b4:d0:ba:59:bf:b1:
d8:98:92:2d:a0:3c:fb:02:da:62:b8:e9:42:06:8a:96:2d:3e:
d4:09:ee:82:f1:51:5f:84:db:bd:1e:f0:26:1f:f3:46:86:63:
92:9e:06:9f:11:3a:09:0e:a8:70:17:9d:15:0e:32:ec:ef:f8:
c8:a9:3e:a3:62:55:8b:5b:b4:cc:ed:f2:97:48:58:14:04:b2:
bd:1c:71:ba:f2:19:67:d0:59:54:4e:cc:14:3e:70:5d:84:12:
76:58:ca:11:fc:22:f6:37:b8:88:d6:bc:b2:66:61:95:02:d3:
cd:c9:06:7d:5a:92:72:10:64:cc:dc:73:27:2a:0f:39:c4:89:
14:ca:23:1c:a8:a4:30:0a:65:7c:03:43:96:ed:e1:c3:a6:26:
a0:ae:4c:b7:fd:ae:20:80:d2:98:3e:66:ad:7f:75:62:af:01:
12:53:ae:f3:10:41:6d:86:07:6b:c9:7a:5d:e7:65:9b:c8:8f:
a9:86:8c:1b:de:21:ae:79:db:71:30:97:ab:04:a6:d0:a2:69:
55:3a:a1:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:04:36 2025 by rpki-client