Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json)
Hash identifier: FQZzaY7G4lpfbp+uaEy1rM4hdnpHxhyFDC/dzUdsZA4=
Subject key identifier: EA:C4:81:15:90:B9:C0:EA:DE:89:E8:86:14:B4:00:19:CB:4F:44:25
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 019A7301A354555AC3CA6AF83CBA39D8BF95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
Manifest number: 0EB0
Signing time: Tue 11 Nov 2025 13:01:18 +0000
Manifest this update: Tue 11 Nov 2025 13:01:18 +0000
Manifest next update: Wed 12 Nov 2025 13:01:18 +0000
Files and hashes: 1: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: 88fHLOwPyBEz6FiqXwIvfh3s6eZm/+gv3wdb8O/sf2Q=)
2: tpGVDM97XGpA5ofHLGA9otQIFM8.roa (hash: aWl1cnx2HDb3renuM7Fi/tYunaPtkTPWaRgrB19Lp4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:a3:54:55:5a:c3:ca:6a:f8:3c:ba:39:d8:bf:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Nov 11 13:01:18 2025 GMT
Not After : Nov 12 13:01:18 2025 GMT
Subject: CN=eac4811590b9c0eade89e88614b40019cb4f4425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ca:21:1d:cf:0d:b9:b7:0c:65:5a:0c:74:5c:
59:bb:1d:db:32:7b:ef:2e:f8:86:58:29:08:f5:01:
3e:00:60:d2:50:40:9c:ab:73:17:e3:c6:7a:cf:1e:
cb:3b:af:cd:cc:5e:0c:79:a9:1e:ba:e7:4e:38:91:
8e:db:3f:f5:b4:68:c8:a9:59:95:4e:51:19:e2:8e:
a8:ee:85:b6:ca:f8:be:18:93:a1:1f:e4:c1:0c:33:
39:2f:75:4b:32:94:aa:69:e9:1a:c2:b9:59:35:b4:
76:07:68:dc:34:c6:08:7e:b7:5a:10:22:c4:ff:50:
55:1d:84:73:b2:43:f5:58:50:2a:01:79:97:cc:b1:
db:ce:2f:fb:d2:d4:2e:27:4a:0d:be:34:65:73:f6:
c2:ac:90:da:58:4c:fc:1c:f2:45:9d:3b:e4:17:ae:
34:a6:98:fa:fa:08:59:5b:71:a4:de:b0:bd:f2:21:
58:20:de:b5:81:6a:73:18:45:c2:85:89:57:83:64:
92:e3:27:7f:38:e7:df:86:b8:04:7d:de:16:a2:d4:
e2:04:ca:ad:e3:f3:13:f8:06:90:f1:62:2f:fa:7d:
02:9b:08:4d:d5:ca:c1:26:43:e1:72:eb:de:0a:b5:
8f:21:6b:cc:17:76:af:8b:d7:e3:c5:cf:ba:d6:a6:
08:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C4:81:15:90:B9:C0:EA:DE:89:E8:86:14:B4:00:19:CB:4F:44:25
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ef:05:76:4a:8e:b9:63:b6:fd:21:e8:eb:4d:a9:40:37:e7:
b9:86:75:77:8f:1e:4c:3c:41:1a:1b:64:28:8c:f6:e1:c0:6c:
2a:d7:3a:95:96:78:bf:ba:3b:f7:9c:15:b8:cc:e0:64:0e:e5:
c6:3a:d2:25:92:9f:8e:fd:53:ff:3f:87:cf:14:45:30:ee:39:
6e:89:3f:73:2e:19:98:6c:25:8a:ff:89:f6:03:24:b3:b9:7c:
66:82:36:c9:5f:6b:c5:25:62:63:ec:82:d5:51:ac:45:b4:cc:
ec:c0:78:21:95:14:54:14:85:ee:f1:54:62:9e:2a:d0:ef:a1:
d7:ae:17:46:46:b8:e7:2d:ec:c2:2d:05:be:5e:fb:41:13:dc:
4d:c3:18:27:ac:68:40:da:a2:85:7c:c7:a7:2f:89:89:f8:52:
2d:14:03:01:9f:c1:28:ca:c0:b1:c8:63:76:33:eb:0b:96:a6:
14:c1:54:d0:f2:a8:e2:ff:ed:fb:44:80:62:ba:ea:1a:5a:05:
88:c3:9b:d8:de:58:50:c9:05:bc:0f:20:7d:ff:ec:74:14:25:
de:5b:4a:2f:c8:28:1d:ce:01:b5:63:04:6c:6e:13:f9:89:c1:
5a:e6:7b:30:d3:8a:5f:ec:95:f3:13:3e:53:15:22:74:b2:f8:
6a:aa:42:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:39:33 2025 by rpki-client