Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: Or8Tog1umFmILofjHq8WzHpe0z//hsA4NSZOtj1dD5o=
Subject key identifier: 34:4A:F5:F4:3E:19:7B:39:DE:9E:D8:0C:9E:E0:6F:4C:2C:6E:F6:70
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019A71B86EB4172692DBF4411CF5DE97D336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0EA4
Signing time: Tue 11 Nov 2025 07:01:43 +0000
Manifest this update: Tue 11 Nov 2025 07:01:43 +0000
Manifest next update: Wed 12 Nov 2025 07:01:43 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: 4iGoJvcbXkWPHLJZxolT5AN/Jj6hWDgXXJ6lUN18IHM=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:6e:b4:17:26:92:db:f4:41:1c:f5:de:97:d3:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Nov 11 07:01:43 2025 GMT
Not After : Nov 12 07:01:43 2025 GMT
Subject: CN=344af5f43e197b39de9ed80c9ee06f4c2c6ef670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ab:3c:56:d2:f4:41:c4:76:65:14:cc:33:0c:
34:99:71:69:3a:1b:dc:c6:d7:e8:2b:0d:20:e3:bd:
9e:59:6c:f4:59:b0:8b:9c:5a:0d:3f:09:f8:f2:e1:
04:bf:b0:60:53:42:9c:de:e9:cc:6a:ab:28:d5:fa:
45:17:ca:63:08:d1:3a:1f:4e:15:06:54:6d:a7:d8:
01:13:46:7f:5b:fe:03:0b:85:f9:ce:9b:04:9f:4f:
f2:a9:d7:9e:5b:ea:15:ea:b2:fd:b3:13:c7:26:f4:
17:ed:74:a5:fc:cc:5d:51:8d:5b:6d:42:42:54:5c:
b7:54:b4:f7:b4:4a:75:7a:f0:c7:83:6b:72:49:68:
17:2c:f6:d5:4a:0b:f3:14:5f:80:a5:0a:13:85:c2:
58:c5:93:39:f9:23:8b:83:15:32:3c:27:c6:b7:3d:
41:bd:71:24:27:86:11:b2:e8:51:32:32:09:7c:b7:
4a:cf:98:8f:52:e4:b1:24:3f:de:aa:2f:20:fd:66:
0c:fe:db:c7:51:83:62:03:13:e6:42:a2:77:81:ad:
e9:19:4d:4c:a8:8f:31:20:be:56:bc:fb:78:f9:a7:
11:ce:9f:bc:e5:b5:34:d5:18:1d:c3:96:03:fe:5c:
bf:27:03:0b:d5:25:9e:1c:72:3d:e3:dc:5c:ae:01:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4A:F5:F4:3E:19:7B:39:DE:9E:D8:0C:9E:E0:6F:4C:2C:6E:F6:70
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:c1:1c:3a:1b:fc:30:8c:fb:d5:bb:05:7d:0a:93:fe:c7:51:
85:a5:21:f3:d7:bb:05:d0:23:19:51:39:c2:7f:f9:06:41:cd:
47:ae:50:fd:11:65:f2:5c:43:0c:f0:4b:3b:dc:cd:e4:c3:a3:
0f:3c:88:04:19:ef:e5:05:1c:b3:f6:ff:ac:cc:be:d8:d1:91:
5e:51:a3:5b:44:52:b5:9a:d7:18:aa:b7:e1:8f:9d:89:c3:da:
8d:e2:b8:aa:8b:19:5d:81:3c:8e:7f:2a:01:10:db:9e:2c:40:
b1:c9:3c:a6:36:f3:95:61:b6:39:f5:87:0c:d4:e7:31:a4:b3:
8e:f5:da:e8:ad:29:f4:e4:a2:b9:6d:49:41:58:d0:61:b0:14:
95:01:80:50:d9:fd:ab:fe:d6:47:18:80:83:2c:4e:2b:18:9c:
42:55:2c:39:4e:59:4f:70:02:ce:47:45:35:6f:66:70:da:58:
db:cc:07:ce:c0:58:aa:77:e5:1e:c8:dd:57:90:e0:2e:3c:a9:
8a:15:a7:76:50:34:f1:dc:a3:64:16:d4:c2:b6:7e:a0:1e:02:
56:2e:05:49:76:29:b3:1a:0f:b9:af:49:e2:56:36:05:95:88:
33:2c:a7:e6:2a:c8:21:d1:10:15:72:95:19:a4:50:61:99:e9:
54:4c:f1:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:53:06 2025 by rpki-client