Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
File: htqvTmjTIiSCMFRM2NspVo5s8AM.mft (raw, json)
Hash identifier: ZJ1gXl8KD91LcXyqsVKstiLW0y1Ff5awgCCmwSSGRLA=
Subject key identifier: B0:62:7F:4A:23:48:66:D7:B3:59:66:73:12:EC:AD:B4:13:93:ED:72
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 019A71B8628988FF13E63F1E944529592B13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 07:01:40 +0000
Manifest this update: Tue 11 Nov 2025 07:01:40 +0000
Manifest next update: Wed 12 Nov 2025 07:01:40 +0000
Files and hashes: 1: htqvTmjTIiSCMFRM2NspVo5s8AM.crl (hash: DdIw/M0LlqK+bi3u5p5tMuECtEZ/CPkOMf8ArvCTV6I=)
2: uiT-f1UkP8u3VtHM1H2WjnfclYk.roa (hash: tX+V4MHF7T2iULGYZ2/cXlHTKSsA+WHHf7K/tt0Vdcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:62:89:88:ff:13:e6:3f:1e:94:45:29:59:2b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Nov 11 07:01:40 2025 GMT
Not After : Nov 12 07:01:40 2025 GMT
Subject: CN=b0627f4a234866d7b359667312ecadb41393ed72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d7:4b:74:97:7c:08:6e:12:f3:70:8d:9f:38:
fe:b4:d5:b1:9f:3c:ef:31:6d:a6:bc:43:9d:6c:de:
be:39:34:8d:2c:f6:05:80:1f:2d:75:ff:f7:b0:74:
4b:6b:b9:cf:c8:98:69:75:df:4c:ce:77:57:34:a5:
7d:c2:a0:68:e5:b8:b3:d4:1e:ed:49:80:94:a0:9f:
e1:b0:ad:dd:f7:04:4e:a6:cd:91:10:96:e9:60:b3:
c2:24:49:74:f2:e5:60:aa:6c:49:ba:56:41:69:60:
16:62:04:69:d9:8a:9f:f7:4e:ec:81:bc:50:ac:98:
ec:0a:40:4c:2d:80:65:c9:a4:a5:b2:1c:bd:b2:3a:
ef:c9:04:83:7d:ae:e6:48:94:79:87:66:d7:f7:91:
2e:59:7c:3c:ba:96:9a:fd:4f:8c:18:b8:ce:54:2d:
09:64:29:6a:aa:29:b2:b3:6b:93:17:1f:85:c4:21:
aa:49:f9:63:43:d3:31:cc:64:9e:77:42:a0:73:18:
6d:fd:8e:77:dd:0a:c7:b1:0c:35:86:01:d7:c6:cb:
fd:e1:57:4b:1d:3e:4a:68:88:95:52:c5:82:70:f6:
06:48:00:6a:b8:82:a0:25:9a:6c:56:35:ad:49:31:
9b:af:fc:83:16:63:85:b8:09:96:7e:a5:43:3f:2d:
3d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:62:7F:4A:23:48:66:D7:B3:59:66:73:12:EC:AD:B4:13:93:ED:72
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:b1:69:ee:67:10:ce:41:f4:19:22:29:90:cb:02:33:8e:29:
bb:55:3e:1d:25:c0:20:84:e4:fa:45:56:c0:8b:2c:19:f3:24:
8d:d2:be:00:e8:58:58:ee:c5:0d:29:cb:66:b6:74:a7:c6:8f:
de:43:33:25:68:13:c1:26:be:cb:21:12:5a:68:84:e8:42:26:
8b:7e:bb:fc:b7:4b:41:e4:d2:9d:80:56:2f:f9:64:a3:b4:51:
45:c1:80:ef:d6:6f:4c:88:0d:8e:9f:26:4a:90:34:68:6d:f6:
c8:3b:34:7a:e4:73:ec:c8:bf:1e:a3:c3:4e:6b:02:85:98:4a:
52:97:29:40:0a:c6:be:51:88:52:3c:1e:78:75:56:31:88:60:
3b:7c:a1:6d:8b:7a:15:f8:1b:1b:a0:27:25:dc:2f:c7:15:1f:
23:11:7a:29:41:69:40:1c:dd:5f:1c:50:33:b2:26:67:9d:f0:
e3:1a:bc:fd:76:61:dc:d2:65:0b:76:86:ef:8d:3e:79:da:15:
ab:e5:db:98:1f:7a:30:97:9e:55:36:24:28:e4:99:f3:b0:06:
e7:02:79:03:92:46:d2:8c:9d:b9:e3:6c:27:47:5c:bd:37:98:
97:c1:32:db:8e:cb:a8:e7:3b:57:e1:5d:c0:4f:e1:aa:7f:29:
7b:76:18:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:50 2025 by rpki-client