Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: /MfSffdBrxg9zOL1EZPMzuJo4HGZrMJNJJ38h9XHr8E=
Subject key identifier: C5:E6:39:EA:38:71:E4:C7:1D:28:38:E4:15:3A:1F:D3:C7:0C:2E:92
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 019A4F9979E22C3DAAEC466A536CC4F3164B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 0922
Signing time: Tue 04 Nov 2025 16:00:49 +0000
Manifest this update: Tue 04 Nov 2025 16:00:49 +0000
Manifest next update: Wed 05 Nov 2025 16:00:49 +0000
Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: 1sqKRFzXElyE9vnK0N/wEKc7eG7SyM+yuoW0SJY63Ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:79:e2:2c:3d:aa:ec:46:6a:53:6c:c4:f3:16:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Nov 4 16:00:49 2025 GMT
Not After : Nov 5 16:00:49 2025 GMT
Subject: CN=c5e639ea3871e4c71d2838e4153a1fd3c70c2e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:16:66:bb:9b:1e:f5:5a:cd:3d:cc:ec:27:
69:7b:c2:61:f5:87:8e:3f:14:dc:ac:5c:71:79:6a:
55:d3:c5:ca:0b:94:9a:f9:95:fd:c5:f5:87:64:33:
8a:cb:58:d2:f4:3f:b1:6f:40:6a:8a:3f:0d:07:a6:
2e:68:54:2f:12:81:b1:c8:7e:6b:4b:1d:83:c1:26:
db:31:75:22:a0:d0:44:68:32:6b:37:59:63:e4:51:
39:fe:ba:99:a3:96:4b:87:03:a7:c9:ac:4a:21:4e:
c2:96:1d:11:32:38:7e:c2:ff:15:fb:2f:5d:8a:ae:
9a:19:57:4d:d4:f9:2e:78:01:5a:d8:9a:62:bf:c3:
66:60:6c:2d:4f:4b:d8:64:6e:2d:53:80:29:36:e6:
93:cb:9b:f2:6e:48:c9:56:27:c9:d3:44:70:93:d8:
ed:d5:e7:bf:c8:64:e9:ef:c3:aa:fb:96:29:af:62:
48:d0:83:89:19:b4:3c:b1:91:3e:81:e7:9c:74:21:
d0:90:80:94:9d:2f:01:60:d4:70:d5:2d:a4:f2:8f:
c3:8f:5e:8b:76:4d:84:8b:f3:c5:13:6f:b6:7a:f7:
aa:13:57:7d:bd:63:7b:e0:47:cb:a5:16:3b:1d:d2:
1f:fd:34:41:af:e7:aa:a2:66:8b:5e:b7:69:68:cd:
38:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E6:39:EA:38:71:E4:C7:1D:28:38:E4:15:3A:1F:D3:C7:0C:2E:92
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:48:a6:93:de:f1:ea:f5:d5:c1:eb:1d:17:22:a1:c2:71:35:
a2:5a:7a:7b:21:c7:59:da:86:e9:a7:94:13:e9:2f:7f:29:de:
29:29:e2:c1:e2:29:71:b1:1e:ee:b7:6c:f1:20:45:b1:43:37:
f0:68:bd:d9:9a:4d:32:ff:e4:50:eb:a1:d0:6c:6f:53:36:ce:
0f:11:68:da:74:f9:1e:f1:65:1a:85:0b:c4:28:f5:a5:71:58:
cb:0c:01:cc:b0:63:dd:18:5c:65:e2:34:cb:69:e8:a8:84:25:
2e:f0:fe:b1:9a:09:10:14:db:10:33:b2:71:49:4b:e3:24:25:
25:d1:dd:44:70:56:5e:86:85:9b:0e:1b:fd:c6:9f:98:9f:76:
99:0d:6f:53:60:ef:ec:ed:15:49:9f:c7:17:19:e4:0e:f4:2b:
fe:a7:fa:1d:2d:17:db:1e:bd:e1:b8:ed:15:1e:08:ce:fa:5e:
08:9b:f3:f8:66:8b:34:b4:e9:27:9a:16:db:31:d4:80:14:9e:
f9:bb:9b:48:a6:d2:45:ec:67:e3:97:2c:ab:8c:e5:bf:90:97:
63:b0:b5:50:36:4d:66:94:a5:6a:19:63:b6:dc:18:d4:e1:f9:
83:a0:17:c3:61:fa:14:ca:0b:22:a2:73:16:07:a0:7e:3b:72:
4e:6b:c1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:51:39 2025 by rpki-client