Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: 7s9rxiCbcroEmRGvCY9835yXg0sHr5rL+tKpar5oQLw=
Subject key identifier: 9D:13:68:1B:F6:FE:6D:DF:A4:EB:E3:C4:F2:39:45:1E:4E:6C:F8:22
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019965B662492BE86592DCA9390F090E592F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 01BA
Signing time: Sat 20 Sep 2025 06:01:15 +0000
Manifest this update: Sat 20 Sep 2025 06:01:15 +0000
Manifest next update: Sun 21 Sep 2025 06:01:15 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: AjoM+Ud1BAQN5jKKF9SeuYPqyo5O0R0GkWTPrs7ddaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:65:b6:62:49:2b:e8:65:92:dc:a9:39:0f:09:0e:59:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Sep 20 06:01:15 2025 GMT
Not After : Sep 21 06:01:15 2025 GMT
Subject: CN=9d13681bf6fe6ddfa4ebe3c4f239451e4e6cf822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:dc:94:55:e7:15:94:58:95:1f:f6:16:52:6e:
60:5d:5b:ba:1d:b5:25:49:78:5d:91:84:be:1d:5c:
fe:62:82:bd:7c:2f:ab:6d:b5:f6:99:b8:13:c9:cb:
e9:95:fc:2e:4d:50:48:9d:83:46:db:7d:82:40:07:
cc:75:21:e4:0e:35:fe:03:ea:da:aa:76:ef:ba:99:
5a:97:75:ab:b1:89:1e:d0:d3:0a:50:dd:a6:cc:ac:
af:cb:8b:3b:24:ee:8a:bc:84:4c:a5:e0:11:b6:b5:
26:f8:b5:0c:9e:19:ef:00:82:77:86:10:26:e1:1a:
e1:75:22:64:1e:31:df:8d:1f:13:cd:26:9e:f2:a5:
6f:c2:b6:26:ca:03:c1:2b:76:e1:c3:14:c7:40:37:
c1:ea:8b:6d:c6:7f:56:c3:c7:d6:bf:04:1d:fe:40:
d4:ce:c8:ac:3c:1b:79:0a:21:eb:7f:a8:20:81:5b:
e7:e2:ff:94:e6:c3:68:a5:93:4e:39:c6:87:28:58:
ea:d0:3f:12:57:f8:09:83:c2:ee:28:e2:25:45:4f:
19:01:cf:eb:fe:ca:aa:62:d8:17:41:0f:b4:47:7c:
3f:32:82:bd:45:58:73:fe:d0:d6:0b:7d:2e:91:a0:
cc:11:6e:85:8e:58:a5:da:53:9f:1c:c3:57:f9:61:
f2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:13:68:1B:F6:FE:6D:DF:A4:EB:E3:C4:F2:39:45:1E:4E:6C:F8:22
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:b3:40:ea:9d:d7:c7:6e:ac:c6:e4:be:fe:94:4b:4c:6f:2c:
46:fd:65:7e:ae:06:bf:37:ff:12:cf:9e:c4:83:38:3d:ce:80:
8d:4c:6b:ab:90:87:9e:ca:4a:f1:07:17:03:a6:ce:2b:9a:c1:
12:9c:0a:31:96:6a:a4:ba:78:b5:2e:2e:aa:8f:af:f8:7a:07:
19:91:1e:c3:d8:66:db:d7:de:a0:6a:4c:49:37:d4:0e:c0:8b:
69:6f:ea:61:13:5c:92:0d:29:81:64:f8:1c:1d:46:de:c9:76:
9b:b7:72:b6:6f:82:9b:e6:35:db:67:aa:9d:34:e9:40:29:46:
98:ec:95:e2:47:c0:04:23:00:f9:5e:99:66:d7:48:fd:86:01:
67:01:51:7d:dc:24:e7:38:13:23:22:2c:41:ed:60:60:c0:6c:
07:ad:08:0b:5c:40:29:71:43:2e:06:ab:bb:05:58:86:fc:d1:
83:7d:b4:08:17:53:a5:de:4f:e8:f9:2b:34:f3:c8:6f:0b:b9:
50:a7:67:7d:aa:c3:3e:fc:18:83:9d:b2:94:e8:a0:6a:69:c5:
8a:09:17:92:ac:fc:fb:80:56:7a:e1:1d:b6:92:b1:54:57:2b:
21:40:a8:9e:db:92:86:d3:31:b0:27:f4:5a:75:33:9c:6a:51:
0f:23:ee:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 10:36:31 2025 by rpki-client