Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json)
Hash identifier: yiVn+FU6WftqdtifrY2LeqOTLjYEvR4ZELPqvJ9Pk1s=
Subject key identifier: F6:05:07:8C:59:F7:B1:A2:D6:90:5A:A0:5D:0B:B3:93:26:39:F8:79
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 019A367E7D9A0810C6EA7EF14D0C49FA804C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
Manifest number: 054B
Signing time: Thu 30 Oct 2025 19:00:50 +0000
Manifest this update: Thu 30 Oct 2025 19:00:50 +0000
Manifest next update: Fri 31 Oct 2025 19:00:50 +0000
Files and hashes: 1: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: CeVLTs8LFDBmrJCzGEdl4+4dHlwDdP1IwteS33mewmE=)
2: StsIBWXPkUmDPSa1M3nyv0UDUR4.roa (hash: rqGYqeTGV9tyOvnudhslVeQEEchE0GwN6rysMNZqs1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 15:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:36:7e:7d:9a:08:10:c6:ea:7e:f1:4d:0c:49:fa:80:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Oct 30 19:00:50 2025 GMT
Not After : Oct 31 19:00:50 2025 GMT
Subject: CN=f605078c59f7b1a2d6905aa05d0bb3932639f879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:84:ca:46:a0:b7:60:33:e6:02:29:05:90:62:
06:83:f6:3a:a2:e5:6a:c4:9d:81:89:0c:86:b9:76:
43:e4:67:a0:1e:de:6e:88:52:2d:ea:25:45:4d:a6:
a4:00:c8:c1:6b:97:db:5d:d5:44:f0:41:66:9f:15:
08:8b:12:e7:aa:a6:84:0e:d0:d8:c8:1a:13:02:f4:
85:de:46:c2:0c:bf:81:aa:39:3e:ef:6e:ea:99:e9:
34:a0:b5:9f:a8:38:b0:4e:66:6b:82:43:b4:db:76:
a3:f6:83:8b:01:aa:35:95:29:f1:30:3d:74:da:aa:
7d:96:63:c2:40:c8:a2:71:e3:d1:24:ab:9c:06:90:
8f:3c:17:9d:fe:6b:bc:34:22:75:32:0b:e0:98:9a:
bd:06:f1:c9:b8:e2:dc:08:aa:9f:4c:a9:f5:2e:a5:
a1:63:8f:cf:52:ad:13:6b:86:e2:46:66:6a:42:92:
64:db:ce:26:0d:32:fd:04:91:55:97:bd:87:ab:21:
04:5f:a8:c3:ba:18:29:9f:a3:39:02:00:4c:f8:ca:
b4:9c:c4:2b:fe:0f:90:14:47:f4:a5:44:5b:56:f6:
87:78:66:73:f0:40:57:76:3a:bd:76:f5:78:8d:87:
0d:64:97:d3:64:e2:2b:27:1d:54:f1:73:73:91:99:
d9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:05:07:8C:59:F7:B1:A2:D6:90:5A:A0:5D:0B:B3:93:26:39:F8:79
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:53:60:fc:cd:9d:c6:06:53:e0:99:8f:71:f7:de:d0:ae:ea:
7f:c8:cc:e4:31:cb:95:21:c3:9b:87:3c:ba:cf:e5:49:48:69:
e9:ec:32:b1:0b:01:68:7d:13:98:63:63:b1:ac:29:00:a8:82:
77:ed:30:83:6c:37:43:56:ea:ee:6a:d0:25:75:df:89:6c:94:
39:c1:02:9e:5d:67:18:52:c2:38:03:1e:54:50:50:ce:76:2f:
53:64:50:05:e4:9c:ba:ff:c5:3e:4e:a4:93:66:8a:49:93:ac:
1c:7e:b9:b7:01:b9:8e:2d:5f:6b:60:98:b1:47:ac:53:ae:89:
46:cc:9a:3d:99:7c:f0:45:58:df:42:44:0f:c0:07:c6:5c:f8:
64:78:b0:88:96:09:5d:4c:2c:15:c2:80:27:0f:84:12:70:f9:
39:c4:4a:1f:99:b5:c9:43:69:77:c2:3f:70:2c:10:2c:79:bb:
99:76:8c:6e:20:b8:f8:f3:dc:f7:dd:d7:78:a0:67:57:af:b2:
7e:c3:59:ad:7a:63:33:87:85:5e:a7:35:a5:6f:55:42:b6:61:
b0:b6:af:98:ef:1d:31:a7:c3:54:54:ab:29:6d:33:12:aa:1a:
40:5a:24:95:79:66:da:2c:65:a5:70:18:42:af:e8:db:d3:b3:
1f:1b:23:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 21:51:02 2025 by rpki-client