Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json)
Hash identifier: ZBSZMGdrKOMs+6cLWf8cxlxqVE/NOK8F5nml7LpeVNA=
Subject key identifier: 6B:1E:4C:19:80:96:6E:A7:DE:0B:0A:38:50:E4:E2:FC:CC:46:A4:C4
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 019A367E4642C7E01CA19A03D68367029F4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
Manifest number: 13EC
Signing time: Thu 30 Oct 2025 19:00:36 +0000
Manifest this update: Thu 30 Oct 2025 19:00:36 +0000
Manifest next update: Fri 31 Oct 2025 19:00:36 +0000
Files and hashes: 1: 42BfRq7Uq2Z4S_hnedC1PWND5eY.roa (hash: SUpoA58huBIRfI1PcJohNyNQhenW9V0GmIZXcKZjs0I=)
2: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: xcepzl+KllWtO+BVokHHFyca1fI5zll7sEO2s/l2+sY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 15:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:36:7e:46:42:c7:e0:1c:a1:9a:03:d6:83:67:02:9f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: Oct 30 19:00:36 2025 GMT
Not After : Oct 31 19:00:36 2025 GMT
Subject: CN=6b1e4c1980966ea7de0b0a3850e4e2fccc46a4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fe:00:4a:74:07:02:a1:f9:30:9e:f3:9a:23:
5f:9a:d9:84:4b:76:fd:f6:05:49:2f:f3:71:8e:74:
ec:5b:f7:87:a2:5e:ba:c1:b1:b9:cc:2f:05:4c:cb:
76:e6:e8:47:2f:d9:15:df:a4:fa:87:99:e2:1e:23:
d4:ac:83:af:39:e1:b1:0c:2d:23:7a:10:5d:a6:f6:
5c:f8:58:63:a2:25:54:09:43:77:ad:b9:90:d4:04:
4c:06:f8:53:ad:88:5c:f5:c3:10:11:0f:a3:ce:9a:
72:5e:08:c5:91:cd:54:c4:09:04:d3:e0:95:39:7b:
dd:7e:fa:07:f0:e9:b1:06:45:0d:95:4e:36:a9:9a:
64:3d:39:fb:73:dd:f3:9b:11:15:f3:c8:3c:96:58:
dc:c6:ca:67:f2:15:49:3e:67:a0:1c:cd:26:af:fd:
66:d5:1c:b2:a2:55:6c:ce:ae:69:3c:19:f9:22:3f:
b9:5c:12:10:66:67:5d:9e:dd:25:59:3a:2e:b9:fd:
6d:07:cb:13:93:31:63:c4:f4:c2:dd:f1:9d:cc:9e:
38:c1:37:cc:ac:df:e4:39:be:c1:0e:55:7a:09:ff:
a2:2c:00:0f:2f:ee:f9:48:c7:6d:b8:1e:2b:d7:ff:
d9:d4:7a:f8:1d:2f:d7:c6:95:35:23:4e:da:01:fa:
fa:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1E:4C:19:80:96:6E:A7:DE:0B:0A:38:50:E4:E2:FC:CC:46:A4:C4
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:42:87:fd:87:d9:67:b0:56:7c:1e:69:75:3c:47:14:b3:76:
8f:ca:d0:7d:a2:62:f5:93:83:13:97:d2:57:32:64:9d:ce:8e:
09:0c:0c:b3:e4:65:98:cf:ea:a0:7c:df:fb:bc:58:6b:6e:05:
a7:94:03:97:53:bf:70:6c:6f:e8:ac:10:1f:ad:84:d0:81:75:
e1:94:7f:73:65:4b:a9:73:c1:54:47:b0:f4:8d:4a:88:12:91:
db:4a:e1:5c:03:87:2c:32:a1:b8:8a:7e:1e:89:31:b1:1f:f0:
b2:7e:7d:85:41:fc:82:59:b9:1c:fe:b1:04:fb:cc:8d:2d:f5:
6f:47:aa:f3:f9:5e:d5:70:fc:b9:3a:c3:78:15:02:39:d9:73:
89:9d:83:c7:87:02:17:ab:e3:15:0f:19:58:9e:5c:42:28:15:
f1:15:6f:1d:2d:94:ee:23:7b:69:ec:b8:ce:fc:12:68:dd:6b:
bc:a7:5e:e7:df:b2:19:8f:b0:23:e2:e8:32:06:b9:4f:10:28:
29:ab:9e:4f:d8:12:98:89:38:89:64:c1:22:43:81:2c:b1:39:
df:89:42:24:42:3c:b3:4f:73:da:3d:a1:b7:e4:e6:bf:5c:cd:
90:19:a3:82:80:6a:c3:78:e1:19:95:59:49:cb:d1:e3:f0:63:
06:52:3d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 21:53:36 2025 by rpki-client