Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: SYrTcrXLATNk3GrF67saOgzwycPGW3Zs+lcjRE5mmlU=
Subject key identifier: D9:62:58:9D:BD:79:3B:79:B9:94:17:92:C8:21:F7:49:61:1E:85:68
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 019A71EE88FEE08970C393348EF8254DDF68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 0836
Signing time: Tue 11 Nov 2025 08:00:49 +0000
Manifest this update: Tue 11 Nov 2025 08:00:49 +0000
Manifest next update: Wed 12 Nov 2025 08:00:49 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: pbPks/pYfyEnhxXJTbFqVA6HWOgIq2db76VEt0UVbv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:ee:88:fe:e0:89:70:c3:93:34:8e:f8:25:4d:df:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Nov 11 08:00:49 2025 GMT
Not After : Nov 12 08:00:49 2025 GMT
Subject: CN=d962589dbd793b79b9941792c821f749611e8568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0d:24:aa:20:db:e3:e3:70:0b:e4:08:ad:97:
0c:5c:21:7a:f4:51:ed:6b:0d:2b:37:74:08:73:c7:
1b:bd:32:b3:8f:66:3e:cb:24:bf:bd:8e:76:a0:a0:
91:f3:8f:05:3b:b8:ee:b8:ad:e3:76:f2:f4:56:dd:
45:58:63:7f:1f:b1:ca:2e:0e:f7:b2:c7:02:8e:e4:
72:76:f2:82:aa:91:90:ee:ed:2d:9d:c1:a2:85:a5:
a0:cb:b6:1d:f0:2e:a8:93:cc:05:1d:0a:3c:70:95:
6b:7a:93:19:f7:6d:a8:7f:34:0a:13:20:1b:a0:a1:
46:28:20:60:59:46:03:d2:aa:a6:9a:fb:78:37:1b:
e3:5b:1b:e7:1b:0a:60:a3:1a:4b:f3:25:8c:ae:bc:
6f:26:50:d9:3e:59:6a:1b:39:aa:4c:0d:68:b5:b1:
06:dd:a4:39:39:bc:14:fa:63:4d:09:cf:a8:ad:6b:
b8:5e:72:6c:36:74:f2:a1:25:02:96:30:d7:04:3f:
44:1b:e5:d5:13:a5:bb:9d:36:3c:10:d5:7e:b5:9a:
41:85:f3:a2:db:9c:75:82:2d:73:f2:7e:d8:d6:bd:
82:bd:dd:ee:35:ab:a7:9b:c2:6a:99:d8:38:71:82:
88:dd:d2:25:93:24:c9:96:8c:4f:0f:8a:65:75:3a:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:62:58:9D:BD:79:3B:79:B9:94:17:92:C8:21:F7:49:61:1E:85:68
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c1:2d:a1:d3:55:b0:21:ad:55:50:ba:58:f3:64:81:44:5e:
11:94:74:7f:b8:cd:3e:c7:b4:01:3b:c2:8f:8e:7b:4c:fd:2e:
f6:2e:65:24:3e:29:87:72:d5:35:dd:ee:5f:fd:3c:39:e2:20:
e8:cf:b1:1c:4d:7c:16:54:49:80:a4:ab:7d:e5:df:2f:2d:03:
32:15:17:05:23:aa:7c:64:33:d4:bc:49:55:e6:bb:34:35:c9:
f3:44:c6:5a:8b:08:fb:f5:6d:80:c5:b8:92:5d:0e:f6:4a:e0:
c1:80:c6:3b:28:86:8d:07:4d:d1:49:eb:50:e3:83:93:fa:f8:
a4:e3:73:02:5d:5f:f6:27:42:50:16:c5:a5:e9:02:5e:b8:86:
3d:51:cf:2e:a4:b6:25:77:49:de:b4:11:d3:a4:b0:ff:32:db:
b8:bf:59:20:b2:e6:01:ee:39:42:12:2e:34:c7:96:21:5a:49:
07:2b:ca:1e:53:84:30:78:9d:bc:10:b3:34:d6:c6:a5:89:f5:
99:c8:df:ee:26:ff:cd:08:5b:e2:66:16:f9:f2:14:63:b3:85:
fc:61:6f:37:4b:82:9a:a3:6a:87:bb:72:96:a4:44:0a:c8:74:
19:1c:59:ca:30:34:53:07:b4:e7:fe:69:da:30:3e:8d:7d:cf:
05:c3:a2:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:19:06 2025 by rpki-client