Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json)
Hash identifier: iH07ljcTAHo0sHXvSRMSSkIdrXW5FG7PZpKp6v1R1Ks=
Subject key identifier: 3D:33:70:45:25:8F:CF:0F:F1:EA:A2:68:7C:A5:38:30:3B:3B:5C:D0
Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77
Certificate serial: 019A4EF477FE8DBF85E25D334A185908672B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
Manifest number: 171A
Signing time: Tue 04 Nov 2025 13:00:35 +0000
Manifest this update: Tue 04 Nov 2025 13:00:35 +0000
Manifest next update: Wed 05 Nov 2025 13:00:35 +0000
Files and hashes: 1: IZeoqEY95eSVV0eYYLX8T3tHlCs.roa (hash: LO4oh4VYMguVhAQpzzJsbYN82/uMVEn2vgRLSpasT1s=)
2: LJnxaD0i6KMHQc1A1Myl7JzH7gk.roa (hash: BOqHp3/8Lrk2VNXTgZj56poMzxkbv3v/wNmy6/SirSw=)
3: NewZ8pp4liRlRqK_bUM9ux7lUdY.roa (hash: e2V20fh5Bna/npvAqL/4q48RnUBDa1PMa1ud3KkuSzU=)
4: OMAWMgjFkntxY9hjh7x9HjopsUQ.roa (hash: fC4Wynjh9RIf9v3k1CSQsuZtxFupNj1veyw3ZlhI/Jw=)
5: QHrhoLDtZR3zPElOqqmMq3qzkao.roa (hash: NXLg9El+SZKbOxc9Fad+2P9R3XvjaMUu4aKcgfvxLco=)
6: VTgIeAjnu6QDITPutn3ZYiX28hw.roa (hash: 1qNSFP6+K7IEMjkOk6A/QLlgZfO6RHOCGRUYacl+A9I=)
7: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: 3H7GpX9MR3nzV0/Abl0z9uYBmJsWxfk9ls9WARpoZb4=)
8: kYOzNphxQuuMN-KEH5LcxfVfKho.roa (hash: ZqTwzdBEFFNTdg6mPtQfwSsq0u9CJRd378DWfNVX+no=)
9: wYF_ylL7pnBo9OaIzACNhn9RjFU.roa (hash: RTPtjL/eZ7d6GsDAAsmLFavUlJqeMCconuqgqwEBbU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:77:fe:8d:bf:85:e2:5d:33:4a:18:59:08:67:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77
Validity
Not Before: Nov 4 13:00:35 2025 GMT
Not After : Nov 5 13:00:35 2025 GMT
Subject: CN=3d337045258fcf0ff1eaa2687ca538303b3b5cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4f:03:7e:d5:95:17:9a:50:06:70:1b:cf:97:
b3:f7:c7:bc:b5:88:a6:1a:21:ff:1a:28:6d:db:fe:
ae:a7:24:df:02:5d:a8:bb:03:bf:70:24:f2:46:59:
a7:57:39:f5:bb:e0:ee:fe:2f:a0:9f:23:6f:03:b1:
ba:46:6d:17:ff:10:e9:54:bf:bd:36:8c:79:73:9e:
a1:29:35:52:9f:46:17:41:e6:4b:7c:a7:fd:e8:45:
18:53:b0:9f:c0:50:81:ab:68:5e:f9:b3:d4:3e:60:
df:b7:48:51:70:ac:52:3f:1d:b8:e4:95:ec:a6:7d:
e8:a7:ad:94:76:29:c5:ca:7c:6f:bd:81:74:90:2a:
4e:ba:32:5d:f0:4b:0a:dc:cb:92:06:a1:62:5f:3d:
fa:3d:19:d0:24:12:92:09:ac:1c:62:46:ab:30:03:
82:6a:8c:72:d4:d1:27:a8:77:95:ca:0a:0e:05:1a:
5e:7e:d0:2e:d0:52:f8:2d:82:69:dc:03:5c:6e:3f:
23:77:e6:66:ea:a8:71:0d:5d:b6:6b:fe:73:63:db:
dd:e2:9b:11:92:79:be:b3:fe:5c:d2:e7:93:6e:a6:
48:38:67:3f:02:71:04:fe:22:2d:15:14:43:31:fc:
e7:72:96:a1:31:06:bf:ec:91:96:72:55:dc:35:01:
24:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:33:70:45:25:8F:CF:0F:F1:EA:A2:68:7C:A5:38:30:3B:3B:5C:D0
X509v3 Authority Key Identifier:
keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:9c:c6:bb:0f:b0:3a:4b:4a:a6:92:27:17:63:c0:dd:1c:d7:
ed:3c:1d:29:d5:fb:62:55:8b:3f:02:69:59:87:71:60:f2:c0:
87:57:ca:03:b7:f2:ba:de:6f:21:86:14:c9:d8:8b:4d:f3:45:
4a:5a:5c:ee:7f:9f:72:47:2f:41:7e:fe:f7:26:9e:fd:4a:95:
70:69:5f:7f:0c:93:d7:7d:54:ce:e0:e7:52:42:34:e8:76:1b:
bd:96:8a:57:6c:cc:fd:82:a1:7b:5a:d5:40:c0:1b:5b:a1:81:
ef:8c:e1:aa:7e:4c:ae:1d:67:c2:35:6d:bd:9c:29:12:14:cb:
7a:69:a8:52:19:2c:4e:08:38:04:b4:81:2e:ec:b6:55:2c:cc:
d2:c1:83:9e:0e:ea:c2:3a:c7:f8:60:ff:9d:cc:12:a3:0c:0f:
21:32:79:d6:46:5f:b4:85:87:e9:61:b2:16:0d:e2:37:b4:bd:
9e:e9:c4:8e:a2:10:53:d6:05:6a:62:84:d6:63:d4:ea:ed:25:
e1:c7:00:2a:74:67:02:cc:6e:67:bb:db:fc:44:40:f8:c2:4a:
2b:7c:b3:f2:e7:c4:0f:b1:e9:34:51:f4:10:a5:6a:ad:ad:73:
06:c7:ca:72:88:b9:e1:d3:06:e2:14:54:50:51:72:5a:e2:6a:
2f:db:50:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:22:39 2025 by rpki-client