Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: kRNMWAuaFFTlfgf50gdmgH7sS2sUNwk3fln2DUtqmyY=
Subject key identifier: BA:DE:C3:19:98:A5:45:57:3E:BD:F4:18:BB:D0:15:55:E2:ED:BA:4A
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 019A71B7D6D6DA62959B16F775A9E27C23DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 115B
Signing time: Tue 11 Nov 2025 07:01:04 +0000
Manifest this update: Tue 11 Nov 2025 07:01:04 +0000
Manifest next update: Wed 12 Nov 2025 07:01:04 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: v+Vya8GxDfnYZdrewwq6SZsAUa/myOOP5l9qGFUk4Nw=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:d6:d6:da:62:95:9b:16:f7:75:a9:e2:7c:23:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Nov 11 07:01:04 2025 GMT
Not After : Nov 12 07:01:04 2025 GMT
Subject: CN=badec31998a545573ebdf418bbd01555e2edba4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:98:2a:bc:42:9f:c7:a5:f6:cf:17:4c:29:36:
d8:95:14:41:72:60:39:a7:75:d0:3e:14:d8:4c:0a:
f7:d0:21:38:cf:85:e6:7f:8a:09:a7:34:ea:be:f7:
a6:4e:bc:5e:fb:4f:ac:68:ae:e7:07:36:30:f6:a1:
81:1a:7a:4a:25:e8:e6:27:92:21:2d:1f:13:0d:d4:
a9:16:fe:08:97:e3:b6:85:b4:6c:b9:5b:c6:f9:5c:
5c:c2:61:ac:01:ff:60:ba:36:3f:fe:77:50:fd:93:
9b:8a:a1:76:f8:1b:21:23:2a:5d:be:0a:62:23:60:
ac:52:76:b7:70:3b:1f:bb:b0:08:35:fe:f8:4e:14:
2a:29:5b:22:43:09:2f:35:75:b7:c3:31:f5:ec:0e:
bb:92:ae:10:b9:8a:71:fb:24:ee:2c:27:7a:89:39:
f6:0e:7b:2a:e0:b4:67:fc:23:e4:21:04:bc:1a:e7:
c7:ff:7e:86:3b:13:2e:bb:1b:13:49:cb:0a:9e:32:
0a:85:bf:e2:4f:b5:07:6c:86:95:ac:f2:4e:a1:12:
e4:e8:03:0b:fc:c9:49:2f:86:9f:41:1f:a6:98:06:
77:df:5b:41:a3:d2:3d:27:ee:01:7a:a5:e9:6d:49:
0a:b8:51:41:46:95:d1:85:0d:02:dc:60:13:30:31:
a5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DE:C3:19:98:A5:45:57:3E:BD:F4:18:BB:D0:15:55:E2:ED:BA:4A
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:8c:5c:b5:44:13:56:b8:31:b9:08:ca:b5:79:99:ed:d2:80:
ef:d5:55:e9:35:17:87:29:b1:b2:69:34:59:98:10:0f:d0:01:
3d:25:e6:66:d4:3c:8b:79:aa:4b:5d:45:50:24:ca:93:26:d1:
03:a3:2b:fd:98:73:c9:59:d3:64:51:25:5b:89:74:bb:78:32:
cd:46:e7:9a:59:1e:ac:5b:ec:98:45:53:6b:0c:c7:b7:ba:4c:
66:2f:34:ba:ea:c7:45:3d:78:6a:62:50:1f:64:36:b9:a9:65:
83:92:42:a7:a5:e9:94:96:cc:6c:de:53:a2:59:9e:c8:86:24:
e3:18:cd:4f:ac:af:d7:dd:ca:39:3a:18:0f:4a:d6:24:0a:27:
c7:b2:46:8e:44:cd:a9:0f:f9:22:31:8b:56:52:65:13:33:25:
50:35:54:63:5f:ab:ed:37:70:a1:5f:01:6f:e7:d8:29:d7:d9:
ea:82:be:f3:58:8d:ef:bc:d8:bc:d6:f1:8f:bf:72:5c:02:1c:
ae:7e:3a:ef:b7:fc:84:cd:32:79:31:ca:48:8c:ee:bc:31:83:
82:85:e6:ec:cd:e0:4c:bb:cd:7a:22:27:be:9d:01:8b:75:05:
4b:3f:95:7c:b2:72:d8:0e:87:6f:1a:ba:82:53:96:a4:ed:a3:
69:2a:cc:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:07 2025 by rpki-client