Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: ieTcPkS0zrbr7pD/mb+HinRX1liBPZEc9mq+Hk2AWQA=
Subject key identifier: 5E:CC:8A:4C:A5:F5:C3:1C:E8:5C:AE:31:D7:D0:C3:6F:83:B5:CA:7C
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019A1BE2A82D1466F4896D9D00C1A8880600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 0274
Signing time: Sat 25 Oct 2025 15:00:30 +0000
Manifest this update: Sat 25 Oct 2025 15:00:30 +0000
Manifest next update: Sun 26 Oct 2025 15:00:30 +0000
Files and hashes: 1: GPBnMrccvHfLRUetSr0V2OhSV78.roa (hash: bMjAfl7v9vzL7TDoDm3Lu45G9wMjJfK+MiFqNCPT/Us=)
2: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: DmSltz9eugnj/24fGVvBk6ShbCsi36lFRF7F+JqwwwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1b:e2:a8:2d:14:66:f4:89:6d:9d:00:c1:a8:88:06:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Oct 25 15:00:30 2025 GMT
Not After : Oct 26 15:00:30 2025 GMT
Subject: CN=5ecc8a4ca5f5c31ce85cae31d7d0c36f83b5ca7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5a:e4:f3:c4:9f:70:40:d1:71:ef:bf:60:a0:
ef:91:29:da:06:f0:40:f3:5b:13:f6:21:17:e3:00:
67:b5:8f:57:a8:19:f1:b3:04:d8:50:08:54:e1:32:
d2:64:36:aa:82:d0:2d:ea:16:bd:86:57:2c:26:6e:
e3:82:79:18:6b:6c:48:34:c1:52:73:7e:f2:dc:0e:
44:a7:25:32:7e:5e:83:d1:f3:b0:d9:22:1f:2d:94:
52:43:69:d8:06:f9:23:1f:dc:a5:c8:62:e9:e6:db:
24:05:29:e9:65:d7:11:07:b8:77:30:97:12:10:db:
c2:e8:63:89:33:db:dc:08:68:00:1a:ab:cb:31:0f:
5c:45:0e:33:3d:f9:e0:6b:2f:9d:54:01:98:7e:cd:
45:77:94:47:97:2d:77:cb:17:60:07:c4:6e:fc:1a:
cf:45:92:13:c4:d0:ac:f8:78:c5:a2:aa:7a:36:a6:
e8:9a:4a:50:96:c7:7f:3a:0f:e5:45:ae:0b:7f:17:
38:e2:94:51:20:a8:27:32:1c:c1:9f:22:e8:35:31:
6a:86:b0:cf:f9:df:f0:de:50:cd:13:09:10:e4:ed:
c8:6e:25:4c:18:f8:98:d6:0b:91:a7:16:3d:ba:a7:
08:2a:11:89:5d:5a:ea:18:4a:c8:f7:1a:66:65:86:
6b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CC:8A:4C:A5:F5:C3:1C:E8:5C:AE:31:D7:D0:C3:6F:83:B5:CA:7C
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:61:6d:c6:e1:29:b9:42:11:61:6f:42:08:59:80:bb:92:f7:
36:14:eb:e0:83:c5:20:e4:8f:d2:7e:88:7d:85:fd:24:22:92:
82:5c:20:c2:78:9c:aa:7c:6c:4f:9a:7e:56:47:78:f6:d4:9b:
64:e4:29:c3:b2:e3:f7:97:27:d2:24:73:94:2d:8f:a9:21:2a:
14:81:a2:c7:d4:47:3f:5e:e2:37:e2:4d:e7:a8:f4:bc:9c:e7:
22:55:67:48:9a:45:55:ef:ab:71:67:d9:f7:9c:f7:cd:ea:43:
78:6f:26:7c:ed:c5:90:15:ec:bf:40:6f:a2:b7:78:8e:eb:0e:
ec:e3:37:b8:b5:a4:a9:49:ed:fc:70:74:6b:33:44:6d:59:c8:
24:db:f0:d0:71:27:13:19:7a:56:b7:55:bd:d6:58:ac:b6:66:
6e:66:03:08:1a:03:b2:73:24:8f:a0:26:c4:37:19:37:8e:c1:
c8:f4:f4:7f:36:bf:d1:d9:9e:dc:5d:12:f7:39:87:43:c2:87:
87:98:26:62:94:2a:b1:41:14:b4:01:c1:d3:61:b0:f6:f0:c8:
94:1d:68:01:13:f3:44:a2:98:30:46:9c:32:22:d7:0d:cb:d0:
6a:ab:60:bd:5f:00:e6:ff:e9:86:94:f3:b1:1f:cf:04:d6:fc:
21:67:4d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 25 20:00:21 2025 by rpki-client