Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: kEbl+0O7RGUjvLS+ZcewvSEquzdWmqMFtDHvr6mBjrk=
Subject key identifier: 72:38:72:8D:FE:E9:D0:83:CA:4B:E8:E1:04:2E:3D:FF:73:F9:C8:66
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019A1E07D4D51804AA16AFC3C7C9A5467A53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0309
Signing time: Sun 26 Oct 2025 01:00:21 +0000
Manifest this update: Sun 26 Oct 2025 01:00:21 +0000
Manifest next update: Mon 27 Oct 2025 01:00:21 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: sEyeo55UBd3jDHOfxBmpvr/jK4C9oFS8k8Z3I0yjcXI=)
2: aMYTDoy-atROFcdvcAZ3DJlPN5M.roa (hash: xs/811bK0GOCRDo/JHIlphnjgoQcSZGktyUSLqywPok=)
3: hc_WEE647lzFURB_xuAQSI93cMk.roa (hash: dEd68WTNgomGf/knb8KdzL0EdhKoQSwJyVCrqzwbNzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 01:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1e:07:d4:d5:18:04:aa:16:af:c3:c7:c9:a5:46:7a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Oct 26 01:00:21 2025 GMT
Not After : Oct 27 01:00:21 2025 GMT
Subject: CN=7238728dfee9d083ca4be8e1042e3dff73f9c866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bc:59:ee:07:24:5b:e1:60:b1:bb:3d:92:ca:
0d:df:33:9b:4a:54:ab:cb:11:04:df:8f:04:3e:3e:
d4:52:31:0f:ae:74:d0:49:aa:52:08:4b:68:13:70:
ea:cd:02:56:1d:44:4b:2d:4e:97:8d:3c:c5:8d:f0:
f2:56:1d:ef:52:31:49:aa:a1:e8:84:4d:e3:33:f5:
3e:96:5e:d5:25:e2:51:15:a8:54:bf:90:2b:ed:aa:
1c:21:76:a9:fc:fa:95:c6:d6:da:e7:89:cf:25:19:
50:8e:dc:c1:9d:4d:a0:a9:4d:2e:4e:24:ef:55:8e:
8b:04:fc:e6:76:4a:a1:08:c5:15:93:87:5f:6c:d1:
4e:1c:26:97:82:d4:18:b1:bd:58:3f:44:1d:1c:64:
08:a4:7f:9a:bf:92:a7:93:63:55:5e:e4:9a:50:15:
d2:56:ef:88:32:ff:3f:44:3f:cc:bc:07:ab:b8:1f:
1e:0b:18:8b:17:7c:a2:6b:58:4f:e3:4a:4d:de:ef:
9b:e7:86:fc:a3:a0:47:c2:81:ec:37:1e:84:de:92:
21:d4:3a:33:cb:92:b0:60:4a:e0:69:d7:e1:e3:7d:
f1:38:d4:89:c1:a3:da:96:c4:82:ee:71:70:17:da:
3f:ef:2a:e9:6c:ac:71:a0:e6:1d:16:26:94:5a:d1:
48:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:38:72:8D:FE:E9:D0:83:CA:4B:E8:E1:04:2E:3D:FF:73:F9:C8:66
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:cf:5c:9c:48:c2:1f:37:3a:21:96:75:81:33:de:a8:d1:76:
d8:a1:31:b6:eb:54:cf:9c:32:da:c7:4e:96:f5:85:bc:d0:ae:
25:1f:65:5b:20:22:9d:28:e6:e0:d7:98:1c:cb:0a:75:26:2c:
55:68:6e:cb:7d:6c:28:77:6c:e9:c2:08:f3:a5:19:8c:b1:27:
fe:19:fb:bb:7f:f3:4d:ea:f3:2e:23:17:b4:fd:68:23:28:8d:
8f:09:a6:14:cd:4e:a6:26:ed:0c:ce:55:84:0e:dc:1d:f0:66:
8f:c2:d0:a6:6c:b2:72:b9:c6:b0:75:61:22:e7:2f:c0:f4:f7:
34:22:73:b2:19:23:83:88:15:3d:02:2f:74:80:29:89:8c:b3:
93:e7:e8:55:e1:40:25:d1:12:fd:c3:ac:92:86:61:28:d4:80:
e8:bc:7c:94:0b:1c:8d:bd:d6:2e:31:e0:7a:bb:b9:53:aa:af:
88:1f:b9:87:c8:97:bf:13:56:87:3d:e4:8e:b2:01:e2:c6:81:
df:fc:11:da:d4:ef:da:00:54:d2:19:ac:6f:d7:47:66:5a:c4:
9a:f2:ad:9d:7f:0d:64:f5:f9:9d:68:ce:87:b4:bb:03:10:6c:
73:74:8a:45:c8:53:69:b6:3d:2a:d8:8c:74:ac:d1:5e:e2:2f:
aa:86:0c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 11:12:47 2025 by rpki-client