Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: yLUddMc7WBTDbDTh6iw7isFKBcRdvDtkG3jet/xkAoM=
Subject key identifier: 65:AE:C6:85:BB:A2:63:6E:FB:B3:38:6F:74:83:A2:7A:01:13:97:94
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019A209C79B1C809266B1BEB8AA3A8821F40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 029D
Signing time: Sun 26 Oct 2025 13:01:56 +0000
Manifest this update: Sun 26 Oct 2025 13:01:56 +0000
Manifest next update: Mon 27 Oct 2025 13:01:56 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: 95Eq2X6n+qrjhY/aIFff149m9AfSHcTMKZNkPKgg0bs=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:9c:79:b1:c8:09:26:6b:1b:eb:8a:a3:a8:82:1f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Oct 26 13:01:56 2025 GMT
Not After : Oct 27 13:01:56 2025 GMT
Subject: CN=65aec685bba2636efbb3386f7483a27a01139794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:48:a4:b7:54:46:a4:86:3e:f7:5f:e1:e8:4b:
4e:5a:f6:63:59:8f:a5:c7:4e:c6:13:69:e5:fa:bd:
be:52:a1:5e:73:ce:8e:11:93:54:17:71:5f:f7:5a:
14:d7:c3:a2:a5:31:69:96:2e:df:91:13:3b:84:74:
4b:bd:13:85:b7:26:8e:21:93:87:a6:1b:90:0c:87:
65:94:95:d6:5d:62:a3:e2:40:6c:04:98:b4:b4:10:
ca:aa:a2:50:56:79:4f:31:53:19:0c:37:11:53:bc:
cd:89:65:8d:3a:6a:7b:7e:e4:2d:5a:2b:a4:2d:de:
b5:06:8a:28:70:77:14:57:a2:8c:d4:49:70:ef:23:
f2:8e:7f:01:fd:61:3b:3b:a1:30:b5:32:53:56:74:
fc:20:75:68:28:12:30:e1:54:aa:3e:5b:5c:99:a7:
0b:7a:1f:43:b9:2e:b3:37:45:43:bc:f1:8c:86:58:
e0:22:39:0e:a2:74:57:2f:5c:27:75:da:03:9c:50:
c6:60:ac:d8:e4:ba:10:ac:7c:54:32:e0:8b:64:89:
69:0e:b0:e6:72:be:df:b7:d1:05:33:db:ae:53:96:
5b:ae:33:06:13:17:a3:a1:d1:8d:0c:b9:30:e5:45:
85:96:d5:88:c0:99:ce:bd:e1:2f:26:ae:5a:88:3e:
5f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:AE:C6:85:BB:A2:63:6E:FB:B3:38:6F:74:83:A2:7A:01:13:97:94
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:14:67:17:01:17:1a:eb:5c:9b:06:ed:43:31:67:44:d9:7d:
bc:49:64:34:e9:44:2d:bf:27:b3:c8:27:a4:e0:bc:ec:65:4e:
ee:93:9e:3b:36:f7:10:ab:4e:aa:5c:e7:75:33:67:75:a2:6e:
b3:d3:9c:9f:88:c2:45:71:73:b8:78:31:4d:e1:58:fb:f3:c7:
ff:5a:a5:87:3b:f8:e1:43:8d:8f:0d:b1:63:72:53:71:8d:23:
4c:37:ac:b7:9b:99:27:96:24:3a:31:ba:fa:b8:27:0f:28:59:
ac:f9:aa:11:51:93:88:11:fa:a2:b7:75:2b:55:74:de:34:99:
31:4e:41:0a:c1:9f:d3:1b:dc:71:e1:33:3c:1c:a5:cf:8a:1f:
98:cc:b2:f5:d4:88:6d:50:60:c0:fd:a0:24:5e:70:c7:37:38:
9b:4a:f2:f6:aa:8c:71:cc:dc:64:8b:90:ab:14:e0:c1:69:4d:
5f:75:d3:f2:31:d5:39:62:dc:a7:b9:aa:2e:49:55:c1:85:93:
97:ae:41:4a:9f:7b:32:a6:43:9e:ac:4c:31:c0:3b:e0:23:6a:
8c:de:f1:ad:bf:e6:08:38:f7:fd:86:46:5d:08:47:81:0e:a7:
f0:15:fc:c6:bf:25:fb:bf:0b:02:b2:67:c9:f9:93:5e:15:e8:
1d:98:e6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 20:43:32 2025 by rpki-client