Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: PLtjmHTeDohw+dJB1twWVWlSK9mRbX4mWWg3ly25s+U=
Subject key identifier: E6:9F:DD:27:A0:18:93:25:44:64:8C:F5:CB:92:F4:05:35:98:7C:B2
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 019A71EEEF2D07B3F58313E7605A4FD05F9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1492
Signing time: Tue 11 Nov 2025 08:01:15 +0000
Manifest this update: Tue 11 Nov 2025 08:01:15 +0000
Manifest next update: Wed 12 Nov 2025 08:01:15 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: JIaH626WiZI4qLzlUi3lqIMMpAya4AZynMKrfaQKBMg=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:ef:2d:07:b3:f5:83:13:e7:60:5a:4f:d0:5f:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Nov 11 08:01:15 2025 GMT
Not After : Nov 12 08:01:15 2025 GMT
Subject: CN=e69fdd27a018932544648cf5cb92f40535987cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:58:3a:a6:41:aa:62:26:75:8a:c9:ea:08:12:
de:91:75:59:ea:a5:0a:51:7b:c9:fe:c9:54:d8:dc:
71:f6:a1:c0:8e:93:92:88:5f:63:da:e2:08:96:14:
94:6e:29:08:9c:88:62:69:38:d9:8a:6a:cb:d2:eb:
69:9a:77:0f:51:5b:d6:5c:fc:62:3c:fe:71:51:60:
af:7f:b5:8b:0e:1b:58:4f:f6:58:51:8b:a3:0e:2c:
21:3b:f4:a0:7f:9f:f4:aa:cd:1c:71:23:6f:0b:fc:
39:61:da:ce:ce:5c:06:7f:da:54:e7:9a:87:52:8e:
62:72:8e:dc:4f:f3:d1:1a:72:ae:ec:63:ef:e1:fd:
0a:f0:63:0a:13:0e:f8:8b:cb:86:b6:36:b4:d9:96:
59:e6:7e:a1:bf:61:7a:c2:d0:35:a6:51:78:82:d4:
7c:11:1f:c8:bf:89:db:45:80:bd:d5:53:a7:b7:00:
99:ca:e8:14:c7:e6:1d:5c:e6:2f:d9:25:68:95:8e:
2f:bb:e4:1a:00:0a:09:29:7f:ed:b0:e2:bc:fc:2c:
8e:62:fe:58:b4:b0:c5:25:ae:e8:c9:dc:5a:b8:95:
92:8c:9b:2d:ca:b6:40:96:33:7a:b0:85:ac:02:6c:
be:b6:79:6d:24:a2:b8:e5:c5:d7:b9:91:4e:b1:1f:
d3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:9F:DD:27:A0:18:93:25:44:64:8C:F5:CB:92:F4:05:35:98:7C:B2
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:e4:72:c5:b8:f5:e9:de:7f:bb:cc:67:d6:a7:33:7d:6d:72:
dc:23:b6:72:a5:50:ee:1e:cf:f1:a8:8f:f5:2b:ee:fa:8c:38:
f2:25:2c:cd:37:59:c8:cc:3e:92:3d:5f:a9:d4:14:0b:03:9b:
70:3d:d1:f4:5e:37:ee:2b:6d:b8:0c:0f:1a:94:38:51:88:fc:
3b:be:68:32:67:37:9b:99:03:a0:0d:65:d0:19:10:e5:a4:e0:
83:ad:95:e1:7d:5c:04:20:65:cb:00:18:ba:e6:07:87:6a:c5:
c4:51:5e:60:a3:82:a7:c7:69:9a:6b:37:ad:62:9b:78:55:2f:
a7:de:5a:d4:8a:df:cb:2e:19:1b:8d:7e:a7:96:eb:24:24:33:
72:30:04:73:59:c8:c4:c6:c2:93:83:78:89:fe:5e:f3:80:a0:
d7:80:8b:8e:25:9b:39:9b:39:6c:c2:f7:d4:9e:d5:0d:c8:6c:
44:6a:a8:a6:c9:9f:8b:16:fc:fd:5b:42:d9:db:7d:56:40:50:
7c:98:66:3b:5d:23:7b:7d:f4:31:9f:a7:ee:26:4c:31:67:6b:
f7:a1:8a:57:cd:d6:72:91:18:04:6c:34:56:2b:5f:4d:20:ac:
d8:47:0a:56:a5:1e:60:e1:50:df:90:ef:2f:34:ca:e5:1e:32:
7d:95:00:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:46:25 2025 by rpki-client