Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
File: HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft (raw, json)
Hash identifier: UcJYHUuoMWAC8rRca6P94Rk8QF6hh/Y4mzOtWORgj2U=
Subject key identifier: CF:E6:D5:1D:BF:04:E0:1B:90:08:41:09:1C:30:A6:20:7B:A0:54:94
Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Certificate serial: 019A7225829CF146C42A81CC807EBC68A0FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
Manifest number: 1443
Signing time: Tue 11 Nov 2025 09:00:52 +0000
Manifest this update: Tue 11 Nov 2025 09:00:52 +0000
Manifest next update: Wed 12 Nov 2025 09:00:52 +0000
Files and hashes: 1: HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl (hash: fwTWUHT01h9IZHeYaixd67fZ0qkSCpySgSCN9kvbwyM=)
2: Vu2y-aZXZUUf1w0WU_d1LDGMCjI.roa (hash: FtyHvpwzr+fctqlndkuiTxqEdI3uy3i+5i35b5nlvso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:82:9c:f1:46:c4:2a:81:cc:80:7e:bc:68:a0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Validity
Not Before: Nov 11 09:00:52 2025 GMT
Not After : Nov 12 09:00:52 2025 GMT
Subject: CN=cfe6d51dbf04e01b900841091c30a6207ba05494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3a:51:ea:3a:2f:4d:b4:fa:97:54:67:05:87:
8c:f4:d5:5a:3c:fa:59:f4:4a:ff:62:e6:69:59:0c:
e7:ef:6b:1f:74:4e:0a:db:5d:25:f7:a6:df:56:00:
64:41:8e:76:62:ff:de:23:a8:f7:ea:15:4e:5b:eb:
be:15:44:9a:d9:a7:cb:0f:c7:0e:54:1f:bc:8c:69:
0a:87:88:7f:83:41:2a:bb:a3:dd:db:ba:e3:c8:ca:
ae:01:44:c3:68:96:c9:9f:fe:c5:9f:e8:54:73:8c:
c1:bd:73:82:5f:33:d1:8b:cb:ea:4d:9f:50:f9:e7:
a0:ff:1f:7b:65:11:b7:95:08:12:9a:94:a0:9d:06:
4f:af:ca:9d:16:7f:3d:1b:92:f6:e1:da:62:43:2a:
88:6c:9f:da:39:f1:2b:51:8e:4f:be:f8:d7:95:5c:
36:1d:5b:e0:17:bb:e3:4e:1d:fd:90:1c:14:4b:22:
13:e0:6f:49:ae:ec:61:8b:33:e7:b0:bd:8b:45:c0:
f8:44:79:24:0f:25:03:48:aa:ed:16:80:c2:38:af:
fe:28:93:c1:90:44:1b:81:1c:45:40:ff:f9:7b:59:
b2:ea:fe:b7:69:c9:5e:74:f8:10:dc:a5:33:45:af:
0e:06:4e:bf:83:bc:2a:62:03:06:48:78:09:5c:9e:
ea:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E6:D5:1D:BF:04:E0:1B:90:08:41:09:1C:30:A6:20:7B:A0:54:94
X509v3 Authority Key Identifier:
keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:90:72:b0:eb:91:6e:04:34:82:27:b5:03:54:3a:31:9a:99:
7f:b4:e7:0d:c3:33:2d:28:53:db:32:92:d8:1c:43:af:f6:4b:
30:da:27:29:63:40:5a:e1:c0:00:33:c5:86:3b:49:8f:77:6e:
19:66:ce:fb:1e:2f:fd:26:57:80:6a:2f:88:80:0f:2b:40:ee:
dc:2f:56:00:f6:e6:64:cf:3a:08:c3:53:90:f8:8a:2e:b3:09:
a2:0b:0f:bd:a7:0c:01:fa:45:c4:60:5f:82:b3:8f:5b:3d:e4:
72:ac:89:5f:1f:b5:a5:07:0b:67:85:92:14:db:e9:3b:ab:d1:
8c:a8:3f:a3:7a:11:4b:b6:61:e5:ac:32:e4:72:f5:df:de:d1:
0a:7b:e5:a7:6e:24:23:20:19:d7:4a:f7:f3:b7:cd:b4:f9:73:
bc:8a:47:5a:55:76:a8:5e:97:03:6c:df:d1:2e:5d:f6:cc:7c:
9c:19:c2:aa:32:7e:3a:63:ff:8c:c6:db:2a:8d:df:e2:2f:91:
5e:20:c0:f8:ed:b4:e4:3c:f8:17:78:57:9a:5e:53:ff:b1:77:
6a:06:b7:18:15:c5:46:1e:14:e2:57:b5:e5:44:31:8a:f5:06:
5f:62:0b:43:ee:7a:34:7a:53:96:2f:88:67:3d:d2:87:ae:08:
d7:ff:8f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 16:48:34 2025 by rpki-client