Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
File: hiuiH8_MNMnZtafGCBWF4KDucK4.mft (raw, json)
Hash identifier: Xtn6OR9Ea9WQhY7+2yfYOm67IjN1WA6ugMgZVoYs4qI=
Subject key identifier: D1:DD:B8:6E:95:32:50:69:8D:2D:B8:8E:09:E0:A3:8D:92:9A:65:8B
Authority key identifier: 86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE
Certificate issuer: /CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae
Certificate serial: 019A72CA2AC1BEC6367B7F9D7F19DA105C52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
Manifest number: 0819
Signing time: Tue 11 Nov 2025 12:00:43 +0000
Manifest this update: Tue 11 Nov 2025 12:00:43 +0000
Manifest next update: Wed 12 Nov 2025 12:00:43 +0000
Files and hashes: 1: hiuiH8_MNMnZtafGCBWF4KDucK4.crl (hash: xuH+VZAa6+s0ioHKD7m6dOuco/0bxJgO6EPSIuQ88dY=)
2: iVxulShReTYBVaVMHOSAPgJMX4w.roa (hash: K1U4ekJDUmOT/6sNVV1rdRQsFS3D9+kf/By0ijYc4Q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:2a:c1:be:c6:36:7b:7f:9d:7f:19:da:10:5c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae
Validity
Not Before: Nov 11 12:00:43 2025 GMT
Not After : Nov 12 12:00:43 2025 GMT
Subject: CN=d1ddb86e953250698d2db88e09e0a38d929a658b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:17:39:c9:0d:7c:b5:f4:e5:cf:00:6c:c2:22:
c5:22:65:51:35:5d:a3:6e:83:da:72:74:08:28:81:
de:f4:c4:d6:71:c0:8d:12:a5:03:16:ae:a7:90:bd:
d7:b4:ca:a5:bb:f7:9f:b7:42:2f:5f:55:f0:66:cc:
d2:01:46:95:e3:c9:2f:42:d6:98:0c:82:84:6c:49:
6d:74:c9:de:23:b7:f2:6a:41:15:83:f6:d2:49:6f:
42:08:33:77:75:6a:80:54:b8:63:f5:a0:e9:3d:56:
c0:f9:f3:e8:b6:f4:df:e6:5c:90:7f:76:1e:49:31:
ce:e9:19:04:05:ed:4e:fa:83:40:fe:53:94:0e:a3:
b2:a6:2d:61:a4:42:be:e3:3b:47:ab:17:ad:14:c9:
e0:8d:83:c6:dc:ee:16:fe:c5:f4:44:3e:f2:90:da:
a0:02:5c:31:99:14:07:a7:6f:ea:f4:12:6d:1a:b3:
fc:3e:de:20:5d:41:7d:cf:b5:3b:6b:12:5d:f5:94:
4e:8e:51:0a:3e:0d:e4:ae:7b:83:4a:45:ef:ab:54:
ce:ad:80:59:dd:d0:9d:bf:3c:0a:c9:38:de:9e:1b:
49:ed:de:21:a2:c8:08:a1:c9:e6:c2:bc:25:17:44:
f6:ed:da:45:e7:c5:86:02:c8:96:e8:98:be:d5:1b:
5b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DD:B8:6E:95:32:50:69:8D:2D:B8:8E:09:E0:A3:8D:92:9A:65:8B
X509v3 Authority Key Identifier:
keyid:86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ca:1f:8f:87:90:a8:88:7f:a4:2a:7d:33:ef:2a:88:74:fa:
46:ad:7e:8b:d9:ec:fd:8a:4b:f3:6b:c3:3b:ec:2b:38:da:fa:
6b:de:86:df:2d:4d:98:1c:a6:f3:3e:b3:37:e2:24:a6:d6:e9:
b7:19:a5:f5:3a:2e:44:f5:e6:01:f5:1c:94:02:9f:e5:6a:40:
87:48:8d:54:bb:90:e8:60:59:a2:fb:1f:37:a7:2f:6a:99:81:
d5:35:37:e7:0a:f4:ce:27:9c:4c:00:8c:1c:5c:c5:e6:99:b3:
d0:b2:03:9c:1e:83:70:a1:50:c5:bd:43:00:4b:ac:bb:f7:95:
95:66:6b:7b:35:41:62:f3:d1:59:f2:dc:a9:40:22:d2:f4:3d:
02:99:7f:44:9a:3d:fe:db:8b:de:d9:5a:97:83:1b:ad:8d:4c:
65:cf:af:e4:af:5e:76:f2:e7:a3:70:60:e0:fc:64:7d:d6:2d:
0d:1f:4c:e0:5f:90:fd:8e:44:56:f7:56:68:ab:cf:7b:35:2f:
d8:76:93:57:19:fc:79:ff:11:2a:f0:15:38:65:e4:a9:94:48:
2d:e2:1b:67:f1:74:d3:ca:c1:3a:f3:6e:c1:1b:e7:7a:bc:8a:
78:ea:24:41:80:9e:00:15:05:23:06:b3:21:70:0a:f1:a4:9c:
1c:9d:4f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:15:33 2025 by rpki-client