Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
File: Hrq0DWCBM83fdsO1pvgV34H7x90.mft (raw, json)
Hash identifier: krLhujKv9rZvZli98YtflkFtsXycX5SHmzhFL/hnVQY=
Subject key identifier: 56:89:56:B7:95:A5:EC:50:33:B0:45:44:1C:40:07:DF:30:6B:BE:2D
Authority key identifier: 1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
Certificate issuer: /CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Certificate serial: 019A0DF025074AD764B405DDB53965CC5F51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
Manifest number: 0236
Signing time: Wed 22 Oct 2025 22:00:33 +0000
Manifest this update: Wed 22 Oct 2025 22:00:33 +0000
Manifest next update: Thu 23 Oct 2025 22:00:33 +0000
Files and hashes: 1: Hrq0DWCBM83fdsO1pvgV34H7x90.crl (hash: kABWsnW0NJ8I93OX2iuR3r3OYKwlcGhjJH0Gzu9zC+E=)
2: dOirMHERf2S7XaVhDBj8pRwQyLU.roa (hash: RUHnPEXdDgz2x6FeuZ8yiEPV6rqAxw/OAxkwBlLK73U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:f0:25:07:4a:d7:64:b4:05:dd:b5:39:65:cc:5f:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Validity
Not Before: Oct 22 22:00:33 2025 GMT
Not After : Oct 23 22:00:33 2025 GMT
Subject: CN=568956b795a5ec5033b045441c4007df306bbe2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:82:78:fe:5e:33:5f:57:e7:ad:98:0a:66:50:
a7:eb:47:63:06:43:fd:66:f7:48:d9:a4:ad:e7:b7:
78:b9:05:f3:4f:0f:2d:d6:ad:52:8a:cd:04:fc:e1:
44:81:9c:31:a3:01:19:b4:4e:79:6e:70:80:8b:17:
11:d6:9b:90:68:6b:64:6b:62:84:66:50:3a:be:84:
d9:7b:19:1d:69:c1:60:09:76:94:09:db:27:fa:9f:
f2:5d:63:cf:57:de:6c:8d:5a:ca:e3:c8:37:17:e1:
e9:c3:87:23:a7:bb:6e:32:58:45:59:87:86:d8:34:
12:69:24:19:ce:8a:b4:8b:a6:3e:91:49:37:8f:ca:
7d:3f:0e:1d:fa:44:cb:5d:57:5f:d2:a9:51:a0:e3:
e3:17:b3:c6:ac:fc:b4:2c:bc:59:05:63:bf:98:84:
c6:2f:7c:4e:80:7f:53:24:45:16:1d:3c:77:c5:0a:
d1:26:6d:d4:af:3a:08:90:13:12:a0:56:a7:1c:2a:
34:a2:8c:fe:ca:be:ff:98:5b:f9:12:bd:a8:b4:a5:
12:42:fc:4f:c8:e5:d0:54:9e:d3:71:5c:01:61:8e:
5f:62:73:87:9d:c1:89:21:1a:cc:b1:e8:fa:cf:b6:
d4:9a:00:c6:b2:c2:df:fb:4a:bd:2c:24:87:e4:75:
f4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:89:56:B7:95:A5:EC:50:33:B0:45:44:1C:40:07:DF:30:6B:BE:2D
X509v3 Authority Key Identifier:
keyid:1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:7e:41:2f:51:60:9a:5b:55:79:00:b2:e7:5c:9c:a1:7b:e1:
11:b3:26:94:bc:e6:cf:b1:88:8f:08:ab:d6:66:ee:a5:79:fe:
70:51:b8:90:5e:3e:bf:8b:2f:46:fc:d3:af:61:48:c0:c3:50:
88:b8:a7:13:9e:24:40:94:71:2f:2f:2f:de:ab:f1:eb:d3:b2:
b3:3b:ec:26:05:54:4e:46:1e:69:9e:98:d5:dd:66:a4:8e:d4:
16:4f:3b:ef:98:d5:e6:c9:6e:a9:26:f8:65:a2:21:b8:d1:b8:
d9:15:92:3d:17:33:5e:0b:96:96:c1:e2:2e:c0:00:30:41:83:
00:8e:bb:e0:4a:e8:b5:5c:4d:43:84:63:03:f4:75:29:74:b4:
ae:33:e5:55:95:d6:cc:c0:aa:55:e2:b3:90:03:24:4b:24:43:
3e:54:dc:59:82:f8:0e:a5:0e:61:8f:d1:15:07:4a:23:8c:d5:
ba:e0:83:5f:2b:a3:40:0d:fc:1a:13:11:6d:6e:98:e4:c3:b3:
e6:93:ef:60:88:a7:88:da:7e:67:bb:6c:16:bb:55:d0:2f:d1:
94:25:30:2a:b9:92:7d:17:91:25:03:0e:25:ee:9e:b7:58:43:
ac:79:76:df:88:88:dc:0b:4e:92:b6:8f:a1:0b:01:86:01:8c:
fe:3f:82:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 03:49:57 2025 by rpki-client