Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
File: _HlIirThrA9L1GfStNNiHGsY7qA.mft (raw, json)
Hash identifier: buCwdIzwizIF29KzScFDF2NpCfdaS/7RJ4riW8zStuk=
Subject key identifier: 70:9D:16:75:49:AF:92:32:28:B4:DB:57:BB:25:BE:C3:20:93:9C:C0
Authority key identifier: FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0
Certificate issuer: /CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0
Certificate serial: 019A71EE8C1FD03C143B5CAE2805C809F14A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 08:00:50 +0000
Manifest this update: Tue 11 Nov 2025 08:00:50 +0000
Manifest next update: Wed 12 Nov 2025 08:00:50 +0000
Files and hashes: 1: Fxxp-LRkqvfLrMmhXHpze09Zypk.roa (hash: VeSras0PkAsQ1iWlGxVtQbCw1RAH/pLCo7L2bleBamo=)
2: _HlIirThrA9L1GfStNNiHGsY7qA.crl (hash: L5N9HmkucPX8aT4mhsncQ5o0XieYm3tWEOM7xaKHejQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:8c:1f:d0:3c:14:3b:5c:ae:28:05:c8:09:f1:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0
Validity
Not Before: Nov 11 08:00:50 2025 GMT
Not After : Nov 12 08:00:50 2025 GMT
Subject: CN=709d167549af923228b4db57bb25bec320939cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5f:f0:ca:1d:2c:a3:66:aa:9d:77:c0:58:ff:
af:dc:0f:09:b9:e1:58:82:6d:a0:70:e0:7b:91:93:
1b:1a:e7:da:2f:f1:cd:3d:29:64:d3:37:f8:4c:00:
5b:9e:3c:8e:46:b9:55:03:4e:e0:db:4c:f6:12:02:
a5:9b:aa:3b:3d:5e:72:16:62:84:ca:97:71:7c:20:
af:9f:d0:ad:0e:b1:e4:a3:95:11:7a:ef:2d:5e:b6:
73:df:6b:50:31:98:63:86:32:a2:e7:60:99:55:b8:
57:75:cf:22:1c:3b:a0:0a:0e:74:49:e3:7e:c3:c9:
d3:08:7e:d3:88:41:3a:b4:14:89:da:ad:6b:ef:fd:
c0:08:11:09:76:0b:88:87:31:28:f9:43:b5:b1:bf:
1c:23:d9:34:ff:91:3d:01:6e:a8:83:3f:f8:de:5e:
49:92:25:06:58:1c:b9:63:94:20:1c:00:dd:d2:a2:
5d:cb:b0:01:94:5c:57:aa:58:e6:0b:20:27:8a:e2:
74:07:3d:0c:d7:32:ac:fa:c7:42:fd:81:e5:6b:97:
06:6d:13:22:dc:5e:4f:2d:47:17:c2:ca:a1:45:07:
c2:7a:72:7c:78:5b:49:c9:dc:56:21:f6:3a:ec:e6:
21:de:89:e9:17:5c:3f:8e:ad:69:89:0a:f8:58:85:
c1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9D:16:75:49:AF:92:32:28:B4:DB:57:BB:25:BE:C3:20:93:9C:C0
X509v3 Authority Key Identifier:
keyid:FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:10:55:d0:b1:47:15:55:0c:4a:e0:f2:d7:3a:85:be:7f:55:
2d:97:70:e6:ff:0a:d6:53:13:9f:ed:8b:9c:ff:fa:b9:38:8d:
be:43:09:8a:08:c3:ca:8b:5e:dd:0e:ee:6f:66:ed:2c:f8:df:
45:b6:d6:c4:a3:93:6a:7a:c7:2a:a7:50:72:5d:9b:20:f8:88:
c4:6c:5b:50:48:2d:a9:72:ed:6f:a8:7b:25:52:55:c1:5e:eb:
d5:27:c3:a7:36:ef:39:67:1d:90:fa:78:52:d4:7b:10:ad:89:
f4:8a:de:3d:2c:1e:f4:f9:2f:d5:a9:20:9c:b4:46:29:db:04:
e3:2c:fd:21:20:37:9b:27:3b:6f:46:19:ec:99:68:5f:4e:bf:
79:40:e1:cf:5b:15:2a:5c:52:b4:29:d1:da:a9:79:b2:94:e5:
9e:3f:20:48:d4:96:eb:05:bd:42:a6:a0:4c:68:83:e7:2a:f7:
f8:02:03:91:ca:72:c5:7d:55:68:75:b4:dc:05:a8:6a:33:f5:
16:d0:bd:a1:c7:aa:5f:d3:15:70:9e:a7:8a:9d:81:02:fc:2b:
44:dc:cc:66:5e:2f:f6:33:22:4c:40:17:f2:a2:3b:83:cf:d0:
46:da:be:e4:5e:e3:51:3d:70:e4:30:64:e1:21:c1:0e:90:be:
8c:1b:20:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 17:19:30 2025 by rpki-client