Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: 9TMdUAhOJ8ZEe9dqqiox9mSN/kaNyl+87LtOI7/cN2M=
Subject key identifier: D6:41:D3:AC:9F:CC:31:C5:63:59:8E:C4:8C:CD:BD:AC:A3:DB:D1:B8
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 019A70DC1CEE64AAE00C2CB352B72DB073C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 16B2
Signing time: Tue 11 Nov 2025 03:01:04 +0000
Manifest this update: Tue 11 Nov 2025 03:01:04 +0000
Manifest next update: Wed 12 Nov 2025 03:01:04 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: RdgZYIkDe/txBK6mymzCu9M8/Zh13H+WRW1cTT5o1dg=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:1c:ee:64:aa:e0:0c:2c:b3:52:b7:2d:b0:73:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Nov 11 03:01:04 2025 GMT
Not After : Nov 12 03:01:04 2025 GMT
Subject: CN=d641d3ac9fcc31c563598ec48ccdbdaca3dbd1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c1:32:58:41:50:e1:eb:0b:9e:41:9b:82:69:
c9:ef:89:f3:29:5f:e2:f6:8c:23:7c:ba:1e:27:7c:
61:57:da:3a:08:02:47:be:15:af:a1:bb:e3:64:60:
31:19:fa:0d:59:b2:f1:0b:40:31:28:db:44:e6:35:
66:a1:9d:42:1c:6f:28:63:33:eb:0f:ef:4f:e8:56:
d8:8d:42:44:3b:c4:d7:31:8f:a9:6a:80:95:ef:9f:
fc:2b:c5:11:57:4e:85:47:d0:8d:88:1d:99:62:78:
b7:bd:47:3a:7c:2c:ab:b1:1c:17:6d:6e:5b:ae:4e:
fa:f3:a8:01:0a:8f:57:59:a0:03:76:4b:df:84:8d:
86:16:da:6f:13:15:18:1d:54:8e:db:34:45:ff:1a:
b9:8f:54:11:cf:d2:68:f3:41:2d:9f:0a:7c:da:0f:
5a:65:37:71:9f:29:e9:be:45:a9:52:33:b1:dd:3e:
9a:32:74:59:4e:8b:a1:f0:37:4a:44:e7:87:24:c6:
02:b9:2c:32:c2:4d:10:bf:6d:02:15:4c:93:63:50:
e9:0e:b6:b0:cf:a0:c1:8a:11:b3:fa:ee:c1:7a:40:
9e:0e:47:75:f9:01:f5:96:5e:fa:64:4e:eb:a7:fa:
a9:47:6a:ff:bf:7c:b7:a7:94:1d:bb:fe:91:8c:a3:
5d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:41:D3:AC:9F:CC:31:C5:63:59:8E:C4:8C:CD:BD:AC:A3:DB:D1:B8
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:47:95:95:2e:db:23:8b:a3:f7:1d:dc:27:96:ba:de:2d:25:
d8:85:6a:53:0a:72:2f:88:bd:84:b0:36:09:36:c5:81:1e:e9:
c9:85:21:38:21:e8:d7:9c:4d:03:c3:a3:93:7b:95:86:2b:37:
44:d6:c0:d1:19:8f:c7:e0:80:89:da:21:b9:fc:01:4c:31:ee:
80:d5:e5:8d:24:10:c2:de:22:b8:d7:b3:54:ce:6c:5b:38:41:
66:41:3b:cd:43:ee:bb:f6:fa:6f:f4:52:76:be:3f:4e:39:9b:
fe:e9:be:40:88:9c:4c:c7:d6:92:ec:78:73:ed:42:12:79:f2:
3d:80:f0:83:36:61:f8:33:41:4a:64:04:48:8b:4c:9c:79:3e:
44:6d:3a:b3:2c:c1:ad:c9:cf:d6:25:46:fe:0f:d9:70:53:48:
ad:f4:d6:bf:fb:44:0d:52:c5:a5:36:b3:2e:b1:09:a5:2f:8c:
82:59:cc:48:4b:b9:69:41:d9:5c:de:11:d4:f7:12:89:45:cf:
2a:44:27:85:14:53:af:66:c5:da:46:3a:20:a0:80:db:68:2c:
37:71:57:e6:3d:bf:48:c1:05:52:b8:7d:56:8b:ec:6f:b7:f1:
fa:7f:40:e3:df:e0:71:e8:e9:bb:9d:f6:e6:78:d0:48:6f:bc:
e1:e6:74:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:51 2025 by rpki-client