Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: 797VXreXPREwvRfu/Zpn+lY/lvstao61ZbGXalDIJ9E=
Subject key identifier: 6C:BD:7B:8E:61:BD:F2:78:04:BD:94:47:18:D1:96:32:D6:56:E0:FC
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 019A64A112A37053ADC171727F4E4B510DE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 023E
Signing time: Sat 08 Nov 2025 18:01:08 +0000
Manifest this update: Sat 08 Nov 2025 18:01:08 +0000
Manifest next update: Sun 09 Nov 2025 18:01:08 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: 8qA2uBAZoNpISRHDGGaW/00VZBBAdSDFF7CQ0Sf+M7I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Nov 2025 18:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:64:a1:12:a3:70:53:ad:c1:71:72:7f:4e:4b:51:0d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Nov 8 18:01:08 2025 GMT
Not After : Nov 9 18:01:08 2025 GMT
Subject: CN=6cbd7b8e61bdf27804bd944718d19632d656e0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c9:ee:7c:e8:02:ab:df:b6:62:9e:8b:5f:67:
59:1b:88:4f:71:ff:b4:90:51:33:1d:89:63:c0:71:
5c:e7:93:d3:97:0c:ca:c7:40:13:a1:c0:ed:62:27:
77:28:d0:d0:a8:82:8a:52:8f:fa:cf:da:67:f0:5b:
46:63:d0:f2:53:2f:d6:4a:d5:f5:44:a6:cd:a9:6e:
ed:81:3c:26:cc:1c:82:91:28:74:f5:2f:d3:3c:32:
e8:84:86:54:75:eb:f1:62:c1:c2:97:e4:e0:44:89:
90:56:02:4f:09:33:46:54:07:94:92:bd:04:2a:46:
11:18:09:94:8b:c1:dd:5a:f5:1b:b5:ee:8b:a9:38:
b1:37:d9:8c:d1:c8:c5:97:1c:dd:41:c2:52:74:d8:
f9:79:e4:1b:e5:11:95:8e:a1:fa:59:63:8e:ce:98:
0e:db:dd:7e:a8:0b:16:99:37:a8:af:b3:04:11:ed:
03:86:66:82:f6:b6:d9:d2:56:d3:e1:ff:84:4f:9c:
b7:57:91:c9:43:f1:d5:ab:fc:d9:86:47:e3:b4:b9:
a6:29:cf:b1:bb:b8:17:7b:a6:ff:68:a4:1f:82:ef:
9c:0a:83:6d:dd:67:c9:90:0d:69:60:b6:98:3f:fa:
9a:ba:c6:47:e1:a7:28:4d:cc:95:67:21:3c:2a:32:
17:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BD:7B:8E:61:BD:F2:78:04:BD:94:47:18:D1:96:32:D6:56:E0:FC
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:3f:ee:a9:a4:16:4a:2d:4f:1e:50:06:ca:9a:9f:25:55:5c:
73:28:ca:36:a5:c2:45:e3:56:78:fd:5c:3b:d9:7d:cb:89:57:
26:66:cc:04:54:6a:68:66:7a:f2:46:e5:9a:33:17:ea:ea:20:
d2:25:da:0f:f5:57:63:db:06:bd:30:39:c9:a5:fe:12:83:5b:
9a:7e:7f:3d:77:91:18:b9:e8:9f:71:58:a3:00:63:d9:54:a6:
34:71:4f:bf:a9:a5:a5:90:e9:e8:d8:56:c9:21:58:0e:f8:0e:
bd:10:2b:16:ae:16:ee:45:7c:54:3f:4c:96:9e:aa:c3:46:73:
6d:6a:65:97:0a:cf:60:29:5f:a8:40:33:02:67:24:45:c8:5e:
6a:7d:b1:e4:06:7b:cc:ec:d0:28:e6:bd:76:63:8f:f5:93:fb:
d1:2c:3b:6e:4a:dd:2f:48:3c:f0:36:52:b0:55:cc:88:08:c5:
2b:d9:e9:c1:8f:3c:ad:5f:56:12:13:61:77:45:da:f2:2b:a7:
d6:7f:4a:3f:fc:cd:9d:23:8b:56:03:60:5f:a9:42:6c:c0:72:
7f:f3:5b:16:9b:ca:19:c4:9f:f8:b0:82:2c:70:33:80:59:0a:
9e:8e:62:b8:87:c4:bf:8d:01:ac:31:9e:8e:9a:20:89:ce:6f:
43:9f:d3:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpkoRKjcFOtwXFyf05LUQ3kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjE3YzgwODZiZTI5ZDUwZjgzYzhmZDhmYzkxN2IwMDlk
ZTNjODEwHhcNMjUxMTA4MTgwMTA4WhcNMjUxMTA5MTgwMTA4WjAzMTEwLwYDVQQD
Eyg2Y2JkN2I4ZTYxYmRmMjc4MDRiZDk0NDcxOGQxOTYzMmQ2NTZlMGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMnufOgCq9+2Yp6LX2dZG4hPcf+0
kFEzHYljwHFc55PTlwzKx0ATocDtYid3KNDQqIKKUo/6z9pn8FtGY9DyUy/WStX1
RKbNqW7tgTwmzByCkSh09S/TPDLohIZUdevxYsHCl+TgRImQVgJPCTNGVAeUkr0E
KkYRGAmUi8HdWvUbte6LqTixN9mM0cjFlxzdQcJSdNj5eeQb5RGVjqH6WWOOzpgO
291+qAsWmTeor7MEEe0DhmaC9rbZ0lbT4f+ET5y3V5HJQ/HVq/zZhkfjtLmmKc+x
u7gXe6b/aKQfgu+cCoNt3WfJkA1pYLaYP/qausZH4acoTcyVZyE8KjIXFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGy9e45hvfJ4BL2URxjRljLWVuD8MB8GA1UdIwQY
MBaAFBwhfICGvinVD4PI/Y/JF7AJ3jyBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1Zjkt
ZjM0YjMxZDNiNDNjLzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1ZjktZjM0YjMxZDNiNDNj
LzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATT/uqaQW
Si1PHlAGypqfJVVccyjKNqXCReNWeP1cO9l9y4lXJmbMBFRqaGZ68kblmjMX6uog
0iXaD/VXY9sGvTA5yaX+EoNbmn5/PXeRGLnon3FYowBj2VSmNHFPv6mlpZDp6NhW
ySFYDvgOvRArFq4W7kV8VD9Mlp6qw0ZzbWpllwrPYClfqEAzAmckRchean2x5AZ7
zOzQKOa9dmOP9ZP70Sw7bkrdL0g88DZSsFXMiAjFK9npwY88rV9WEhNhd0Xa8iun
1n9KP/zNnSOLVgNgX6lCbMByf/NbFpvKGcSf+LCCLHAzgFkKno5iuIfEv40BrDGe
jpogic5vQ5/Tpg==
-----END CERTIFICATE-----
Generated at Sat Nov 8 21:39:18 2025 by rpki-client