Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
File: HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft (raw, json)
Hash identifier: FU+tkaZoyDWQ+EPloDG7eqoRNXeRR6j0W+XH7u/RJRo=
Subject key identifier: 4A:7C:05:CE:6E:BC:63:73:25:36:F7:E3:98:1E:C3:82:70:AE:FB:EF
Authority key identifier: 1C:8F:BA:99:36:50:34:8A:13:51:52:EE:C3:48:A1:19:43:0E:63:40
Certificate issuer: /CN=1c8fba993650348a135152eec348a119430e6340
Certificate serial: 019A71B8E5696C9476D0EB05DEB18717F1AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
Manifest number: 01E4
Signing time: Tue 11 Nov 2025 07:02:13 +0000
Manifest this update: Tue 11 Nov 2025 07:02:13 +0000
Manifest next update: Wed 12 Nov 2025 07:02:13 +0000
Files and hashes: 1: GuJV6tWvMc7hiklHxH5EzaRwm8k.roa (hash: SFtJeLYX3k0Bqhlczs2KFJUiSZerZ8nM1VQXRCJtLKQ=)
2: HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl (hash: di7eCSQZOMWtksACULuDKcXQ9oqF+uc7VkbyvaUasl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:e5:69:6c:94:76:d0:eb:05:de:b1:87:17:f1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c8fba993650348a135152eec348a119430e6340
Validity
Not Before: Nov 11 07:02:13 2025 GMT
Not After : Nov 12 07:02:13 2025 GMT
Subject: CN=4a7c05ce6ebc63732536f7e3981ec38270aefbef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:9a:2e:01:c1:c7:a9:6a:2f:36:b5:d0:8f:
0d:39:59:5a:e1:28:4a:2e:44:47:bb:62:9f:cf:57:
8f:f6:0e:9a:87:96:3a:59:d1:44:03:59:9b:01:4f:
cf:dd:2b:7d:98:55:e6:c3:af:49:0d:ed:7d:42:71:
3d:6f:7e:9e:e7:27:7b:84:59:89:cd:f6:81:8b:5a:
a0:fb:f3:a7:db:51:18:8b:a0:8f:80:c7:26:0b:dc:
b5:ac:20:5b:f4:3a:de:74:8d:ed:b0:5f:f7:7c:82:
61:0c:f8:00:f5:f0:3c:96:b9:a9:c0:84:37:1b:c2:
f3:c6:f7:c2:56:26:9d:50:5a:1e:fe:b0:dd:27:46:
d8:83:1a:9d:a4:82:61:f8:23:19:03:d5:5a:e2:1a:
51:35:19:79:5f:b7:52:cb:68:1e:d4:77:98:4f:72:
63:9f:f0:51:b5:79:48:e6:38:ec:bf:7f:88:7e:88:
ee:bb:a5:a4:88:ff:af:f3:7d:69:2b:c8:d3:84:5a:
09:b4:8d:3f:27:bb:ee:80:13:2c:46:5d:fd:d8:c8:
44:80:92:a9:f1:48:cd:20:cf:e1:a8:fc:97:74:67:
77:cb:36:15:74:86:89:64:7a:74:d8:ae:ec:6b:34:
50:65:23:10:81:c1:a8:93:11:69:4c:1d:78:a5:aa:
a9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:7C:05:CE:6E:BC:63:73:25:36:F7:E3:98:1E:C3:82:70:AE:FB:EF
X509v3 Authority Key Identifier:
keyid:1C:8F:BA:99:36:50:34:8A:13:51:52:EE:C3:48:A1:19:43:0E:63:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HI-6mTZQNIoTUVLuw0ihGUMOY0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f0b84b-1145-4063-86b7-d5d8b44fce34/1/HI-6mTZQNIoTUVLuw0ihGUMOY0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:af:47:55:45:a7:40:83:76:86:7e:72:4d:bc:56:e9:62:1e:
24:bb:4c:f6:ed:1d:62:f2:e5:eb:f3:3f:84:f8:42:34:18:1b:
a5:60:9f:26:55:8d:2b:ad:16:95:79:6c:81:42:9e:13:c0:f5:
0a:36:5f:5c:ec:0f:b9:8b:fd:f1:54:0c:5b:36:88:be:fa:f8:
a7:03:48:62:c7:e8:64:13:57:93:a9:53:c8:a9:43:a1:49:ac:
18:fb:e6:36:50:fc:29:3a:ca:26:e2:af:1e:67:2f:73:fc:4a:
4f:6c:4b:4c:09:95:a1:45:84:31:02:ce:1f:5c:54:df:aa:6c:
1a:14:31:60:48:8d:3a:87:21:bf:72:4f:cd:6e:a9:75:b3:f2:
d6:5a:58:c1:6e:47:28:86:81:22:b7:16:01:65:44:58:20:83:
7b:5a:f4:93:3f:90:eb:97:5c:3c:11:a1:0a:f0:d9:a4:b8:58:
aa:a7:b2:b8:10:7f:93:ee:f3:20:88:10:82:a7:67:c4:9f:e9:
33:2f:1a:ba:3e:f7:db:49:23:9a:77:8b:fc:6e:02:a2:81:c4:
e3:4d:51:dd:39:ca:73:e4:fe:8d:b4:e6:20:c9:ee:09:e7:b9:
fe:2c:6d:9a:19:aa:5e:d6:db:f5:9d:7d:27:9b:ef:6f:d3:23:
ae:18:be:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:17:32 2025 by rpki-client