Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json)
Hash identifier: qy+UvXoBOfbzNUwXNuYMDWPPZobYlRbj4aVovVjbFFI=
Subject key identifier: F7:E1:D4:37:98:E4:74:5C:85:3F:03:FF:50:49:D2:F7:F1:40:CE:96
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 019A71EE60B7CD383EC590143F15C1AC302C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
Manifest number: 1723
Signing time: Tue 11 Nov 2025 08:00:39 +0000
Manifest this update: Tue 11 Nov 2025 08:00:39 +0000
Manifest next update: Wed 12 Nov 2025 08:00:39 +0000
Files and hashes: 1: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: gi9uYm6WYPm2lmXjq2PPGzfTS1QY+XvxJovhGy/DYnY=)
2: nfcB4W3-frcdsttLFxfqKvUAYPA.roa (hash: LSLZu1kedUT6p6v50vQ31LG0ikk6bjLybjbis0FT+ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:60:b7:cd:38:3e:c5:90:14:3f:15:c1:ac:30:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Nov 11 08:00:39 2025 GMT
Not After : Nov 12 08:00:39 2025 GMT
Subject: CN=f7e1d43798e4745c853f03ff5049d2f7f140ce96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e3:a4:06:f9:ee:1e:1b:b9:10:29:99:89:f3:
bf:93:4d:48:a4:77:9b:18:ab:8c:aa:14:5f:76:68:
4e:05:41:04:ea:1e:3a:16:a5:f0:10:5f:e5:12:20:
8a:8c:d4:46:22:89:30:eb:84:77:2e:1c:a0:90:0a:
49:ef:32:54:8d:30:5b:b8:c6:99:fc:7a:6d:3c:96:
80:1d:fe:98:67:31:87:ea:26:34:ed:bd:e9:79:58:
0f:c3:95:fc:90:5d:6e:67:bc:71:1d:37:02:4a:3c:
37:59:57:42:09:45:05:f7:0e:e9:7e:09:5b:c5:9c:
64:c3:e5:46:41:54:7d:03:7a:80:22:3b:f5:a0:40:
a9:a7:89:0f:a7:93:26:fb:76:07:50:9e:8a:68:5a:
6b:63:c0:21:61:ca:5b:d4:ec:b1:fe:f1:05:9a:af:
89:a1:bf:85:75:11:ba:2e:9d:48:24:ea:cf:5a:4c:
4f:1e:5a:b8:50:8e:a4:82:1d:2f:3c:f4:93:66:a9:
fa:05:a1:a1:48:75:a5:66:e3:06:a1:ae:e6:1d:b5:
0d:31:5b:ca:3e:f7:b1:b0:8e:27:0f:07:59:5d:92:
c7:6e:95:9e:22:1d:e0:4f:56:e5:a5:5e:c1:b5:85:
25:19:a4:e8:03:0e:09:08:2b:bd:30:32:06:79:a7:
bf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E1:D4:37:98:E4:74:5C:85:3F:03:FF:50:49:D2:F7:F1:40:CE:96
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:04:6d:5e:9f:5a:26:44:a4:95:5a:b9:f7:0c:22:79:b4:4c:
fa:73:e7:04:8c:d8:2a:10:b5:52:fa:4b:72:57:93:ba:f7:d4:
6d:1b:da:3e:57:bc:fd:e2:11:bc:8b:3c:4e:2c:29:b1:3d:19:
af:2c:fb:53:48:24:a2:63:bd:ba:4e:9f:66:d6:e4:d8:99:f0:
5e:80:85:04:36:ee:26:56:49:1c:6d:11:0f:c2:72:03:03:d5:
e0:9d:4e:f0:2e:67:8e:4e:f0:c0:1c:3a:51:c3:27:68:13:c5:
fa:8a:5d:c1:57:32:63:67:3c:11:85:50:f2:78:cd:07:31:5d:
6a:9d:dd:1c:7d:48:df:c7:6b:4e:9e:fc:e8:c0:a7:37:1d:c3:
32:0e:fb:0b:30:8d:24:85:1c:a0:98:ee:5a:2a:28:1a:71:5c:
56:63:73:bc:b3:ff:03:f3:26:c1:49:ca:c2:c9:e1:e5:d5:05:
a1:9b:ca:e4:88:40:25:98:af:37:eb:ed:f2:67:52:27:9a:f2:
8c:42:5f:a3:3a:4b:eb:56:bd:13:71:77:6d:ed:2e:84:11:18:
6f:0f:7c:ca:e3:19:c1:e3:d4:5f:58:eb:9b:e1:1a:24:60:9b:
39:87:c0:cb:59:46:da:80:bf:4f:73:39:af:7c:d0:2a:ea:77:
93:73:ec:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:35 2025 by rpki-client