Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
File: hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft (raw, json)
Hash identifier: YXPRT6eKl2ZWev1cWruDSdkvG/tktYe2oq1goDAwluk=
Subject key identifier: 57:2C:7F:C8:16:E8:E4:58:7F:D6:AE:97:2F:09:EA:BC:28:FE:AA:4A
Authority key identifier: 84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C
Certificate issuer: /CN=84926c47a3607f51a39e1c91e7897f85f47e347c
Certificate serial: 019A0C3906498A725D902A8947F474AB775E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
Manifest number: 0A48
Signing time: Wed 22 Oct 2025 14:00:55 +0000
Manifest this update: Wed 22 Oct 2025 14:00:55 +0000
Manifest next update: Thu 23 Oct 2025 14:00:55 +0000
Files and hashes: 1: hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl (hash: KzRHzAOPpHkffOf5Y7aBwueD1vqBH4XTMOvIqagC2CQ=)
2: nkA7CUcmlzAJuGx_3HjuUPjmAbc.roa (hash: FtjNcs/Ikv5rVNiwdDeOxS0oJdHrtBYVifsyHe4+WbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0c:39:06:49:8a:72:5d:90:2a:89:47:f4:74:ab:77:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84926c47a3607f51a39e1c91e7897f85f47e347c
Validity
Not Before: Oct 22 14:00:55 2025 GMT
Not After : Oct 23 14:00:55 2025 GMT
Subject: CN=572c7fc816e8e4587fd6ae972f09eabc28feaa4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:6d:f7:58:b3:ff:e4:44:c6:da:57:dd:3e:
a5:13:f7:32:37:e3:83:e4:cb:77:a6:65:cd:0b:30:
7d:7d:e2:d9:a9:1e:72:c2:b5:62:6d:7d:6e:59:3a:
46:70:5c:0b:64:d5:66:71:fe:ff:45:8d:63:2e:19:
40:ef:b4:e2:d2:a4:9b:6b:b1:02:91:39:b0:27:77:
17:3a:56:9e:fd:0e:ee:02:28:c8:b9:e1:41:37:1c:
ff:2c:7b:ef:74:2f:29:37:54:94:8f:1d:76:2d:24:
ad:d3:39:d4:50:69:42:81:de:6f:c2:da:d9:98:20:
92:50:ad:a8:06:1e:b7:a7:2d:1a:a8:c4:ee:1a:6c:
50:90:3a:dd:b6:4e:18:6f:11:df:58:40:4a:88:02:
68:62:3f:cc:ba:c5:4a:5c:c5:eb:ef:d1:98:77:5f:
6c:80:4f:ce:aa:0e:c4:51:d2:7d:82:24:01:1d:a1:
15:97:cf:31:1d:3f:a2:66:a9:ef:c6:bc:60:97:10:
4b:e0:29:61:3a:65:41:60:dc:b4:94:ff:d7:c7:6a:
67:90:e0:89:15:c2:79:42:4b:04:83:1e:d0:90:ff:
77:bf:51:fc:92:87:c8:50:13:8f:2a:79:8a:57:53:
9a:ea:ee:e3:01:e1:f2:33:4f:a0:c3:7d:5c:05:73:
e8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:2C:7F:C8:16:E8:E4:58:7F:D6:AE:97:2F:09:EA:BC:28:FE:AA:4A
X509v3 Authority Key Identifier:
keyid:84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:9e:5a:8e:c4:80:e4:58:ae:f5:6a:88:bc:2b:d1:c3:0a:66:
9d:84:68:22:c6:64:4d:26:31:c0:9d:9f:70:c1:f4:16:30:99:
4c:dd:29:01:68:09:3d:f6:af:93:d9:74:18:a9:18:28:6b:bd:
1f:ed:5b:84:df:2e:11:4b:ea:53:d4:69:92:72:31:f7:77:2f:
03:8e:3b:6e:4e:f3:df:77:ee:ec:01:d2:0e:f5:72:70:5e:1a:
2b:0b:2e:b5:30:ad:1d:c1:4a:28:23:03:4d:d5:4f:40:08:27:
e2:d4:12:da:f1:cc:9d:a2:37:03:ef:1b:89:db:ec:8d:3c:35:
00:86:b2:bf:79:cc:ec:07:03:d3:07:5b:25:a9:fa:3c:dc:22:
f2:b2:63:6b:4b:a8:23:bf:24:59:be:ab:3b:71:70:b7:ac:b9:
20:4e:94:20:2d:5b:e1:65:be:bc:b2:49:bd:38:cf:f4:47:b6:
ca:f4:90:2e:1b:f7:b5:8e:88:6f:08:d0:54:17:69:b7:f8:0a:
ff:72:80:2f:18:34:96:a7:50:e1:3f:cc:f7:33:ad:10:03:77:
aa:75:41:18:da:6f:0c:e2:fa:0d:02:ec:3f:0d:36:d5:68:a0:
30:4f:af:03:9a:5e:48:99:3b:db:48:be:e7:94:fd:e7:95:5f:
70:81:97:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:33:42 2025 by rpki-client