Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
File: hfTuFPbTinzwcSed_3s5FwLjcTU.mft (raw, json)
Hash identifier: cqOwAqfmNWEPWMWHReO5Dx9sbBZpvsQNRw18N7e+ATI=
Subject key identifier: 9D:36:FC:AB:11:BF:CC:18:03:C5:4D:51:BF:F9:76:67:A9:A8:B7:5C
Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Certificate serial: 019A4C617F9DA4B013373C477530E24C9F2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
Manifest number: 15A9
Signing time: Tue 04 Nov 2025 01:00:49 +0000
Manifest this update: Tue 04 Nov 2025 01:00:49 +0000
Manifest next update: Wed 05 Nov 2025 01:00:49 +0000
Files and hashes: 1: 2mTo8VIXIrlcxcC_U7fWi211rFM.roa (hash: dDQv+ftOv7QcdnymuU8CSIpInH2sN5DMq5+DCb2C/AM=)
2: TOInyVBFZ29DxCH5Hz91KFjRkv0.roa (hash: 1HxYLosFyiepF2xCdMAL0QnFNZ36uK46iHqxZ8byih8=)
3: aMobsnKksVIngBq9PAQh6f0uc_s.roa (hash: MgPm9vdG5quTaP1hsCUOaYxEpwoMN/PPpfC7QE2zzrE=)
4: hfTuFPbTinzwcSed_3s5FwLjcTU.crl (hash: 1DWZDmATRGEphrLpj8HLhKX3p/wArM7AqRjGVF8abag=)
5: kHRA5W2PIyWNg3uKfxQ9zz9ybRk.roa (hash: GyaDxHXnOVqYowVqNzWMXYXPUi79rWH8RSfCQGy6dbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:7f:9d:a4:b0:13:37:3c:47:75:30:e2:4c:9f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135
Validity
Not Before: Nov 4 01:00:49 2025 GMT
Not After : Nov 5 01:00:49 2025 GMT
Subject: CN=9d36fcab11bfcc1803c54d51bff97667a9a8b75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3b:63:ab:96:11:95:6d:92:f0:6b:8e:60:1c:
97:dc:66:e4:45:a5:d2:0c:b8:ec:92:a4:75:bc:a5:
93:11:ce:80:3f:14:77:2b:b9:6d:e3:1f:02:ac:32:
30:02:a2:cd:d0:03:48:ea:71:fe:fc:c6:c6:db:e2:
a6:e4:82:81:d0:8a:4f:e0:1b:76:53:69:31:2c:7b:
2c:fb:5c:3a:27:4c:5b:53:f2:e8:38:30:14:ee:85:
18:2a:b4:e8:fc:a0:c7:31:e9:2d:f7:6b:1b:ca:9a:
d6:ce:31:84:20:c5:fc:32:21:8a:1e:84:e8:9f:f1:
eb:13:20:7c:36:0e:40:25:a9:be:bd:1d:a9:5b:35:
12:8a:85:64:2c:74:b9:ed:af:ba:e8:09:0c:6a:47:
94:da:c9:bb:16:12:d7:08:be:e1:47:95:18:95:3d:
2c:7d:10:fe:c0:74:b0:e6:bc:6c:42:47:dc:fd:7e:
5a:cb:eb:5f:3a:84:6f:2c:0c:4e:21:a4:24:70:a8:
af:4f:1e:21:70:75:ab:78:eb:2c:90:33:71:0b:1c:
a3:2d:b7:f5:b3:1e:b4:0f:76:0e:8b:4e:04:ca:f6:
ed:b5:fa:ab:42:20:60:80:c4:4b:ee:e4:76:3c:f5:
43:38:6f:94:17:48:a8:4a:44:e5:fd:88:16:22:f1:
53:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:36:FC:AB:11:BF:CC:18:03:C5:4D:51:BF:F9:76:67:A9:A8:B7:5C
X509v3 Authority Key Identifier:
keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:83:30:ce:2f:81:9d:5f:40:7e:1e:5b:7e:d6:ab:f8:3e:72:
94:75:9e:01:79:84:ef:45:f0:e0:ef:a8:90:55:b0:a7:88:81:
95:e2:38:fc:b3:ac:03:8a:2a:cc:6e:19:0b:68:ce:57:96:73:
00:4b:b4:d0:50:2b:9f:f3:64:d3:7d:bf:f1:07:db:35:db:48:
9e:30:3a:ec:fa:d3:6d:81:24:82:c2:d9:bf:6d:a9:ff:00:1f:
19:e1:38:09:f9:a6:53:0c:a2:13:6c:1a:ba:74:e4:b1:11:c4:
ee:0c:57:4d:da:31:42:dc:04:57:7d:cc:d0:03:40:75:91:82:
a2:69:d0:13:ce:2c:7c:2a:6e:4d:23:cd:cd:ca:56:8d:fb:c6:
45:6a:1a:e2:72:fa:d9:12:ac:b7:13:fd:88:5c:56:3c:e2:1a:
0a:79:00:aa:b4:a9:1b:50:a9:64:57:4b:9f:24:89:9d:49:65:
f9:d5:29:46:c5:ea:21:d4:0a:79:54:44:32:18:36:00:ad:60:
cf:d0:71:62:d6:b8:a0:35:3d:06:df:d4:c0:d0:79:9f:13:e9:
69:d4:bd:e7:a8:ff:34:18:7f:ae:78:2a:8f:2b:ab:2d:41:a8:
50:4c:ad:46:ab:23:02:e7:1b:c4:4a:a1:96:0c:df:7b:c2:04:
5a:b6:ab:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:51:18 2025 by rpki-client