Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: wLqKsuV8gP6znySNzfHYpZwmWP5ZqtSb/IV02k9K1+I=
Subject key identifier: F1:93:75:48:98:8A:06:D8:38:6C:05:D5:05:79:4B:56:8B:76:FC:6A
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 019A0523D5AA7CF7C88CCC75BFF83743CC77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 16EA
Signing time: Tue 21 Oct 2025 05:00:25 +0000
Manifest this update: Tue 21 Oct 2025 05:00:25 +0000
Manifest next update: Wed 22 Oct 2025 05:00:25 +0000
Files and hashes: 1: 0EXTA2fh52m_pdzndlQONOR-ALo.roa (hash: 6rMWco6WBnZhVNOyIqX9uMPGJDuagIsvvOicEopd/aI=)
2: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: FCqwnvj3bZjyPjXlxTFyiZcCHfUfrK93bLt1oFr+Yq8=)
3: pdSwS3q_Aq9iIM8JVjDKkb9Kesw.roa (hash: Ci1NRJKdqWSbaDsRVp57BbXUB2naGLYnO5kSwluYKxo=)
4: ztoXV0czkggEzKpWeBIPpNx7Y00.roa (hash: MW72dY631rN8xBMa8x273b/yH8cBTnl1fp+7hzq29aE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:05:23:d5:aa:7c:f7:c8:8c:cc:75:bf:f8:37:43:cc:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Oct 21 05:00:25 2025 GMT
Not After : Oct 22 05:00:25 2025 GMT
Subject: CN=f1937548988a06d8386c05d505794b568b76fc6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:51:f3:05:f4:25:90:62:a1:e8:e0:17:df:bc:
8e:66:cb:3b:bc:97:26:f1:f1:f0:c1:2c:ad:24:49:
60:a8:d2:e4:e4:2a:ad:9d:74:5d:d5:6b:cd:b9:39:
53:87:bd:0f:ac:b6:cb:fd:68:d7:89:84:3d:1a:b1:
1b:2d:fb:06:93:1d:82:29:7b:36:e4:f3:29:9f:e5:
4c:44:2f:ee:fd:30:a6:1d:df:80:54:ec:b1:b0:36:
88:66:e3:95:7e:42:7f:78:ef:4b:c2:2f:23:6d:00:
73:57:93:ac:ec:c6:61:ab:7d:8e:77:f2:e1:a7:9d:
5b:46:81:18:af:2b:81:41:9a:3d:f4:c8:5f:e3:e0:
8a:1c:ad:82:d0:8d:33:c8:91:df:d7:e1:5d:a2:bd:
52:94:73:e1:9f:7b:49:a0:2e:45:6e:33:aa:e9:e2:
27:98:fa:1f:53:69:ae:73:00:55:3d:eb:46:0b:eb:
d3:10:0c:c0:10:eb:1f:01:66:1c:e2:22:e5:6e:65:
2c:45:d9:d4:7b:bf:f2:92:af:33:88:68:eb:3f:55:
3b:fb:32:8a:77:9c:15:2b:15:c7:03:e8:2d:ef:60:
03:21:8a:a4:48:be:ba:54:22:31:69:fb:11:11:8b:
83:bd:52:42:55:f1:b8:69:18:22:80:00:6d:c8:f8:
3b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:93:75:48:98:8A:06:D8:38:6C:05:D5:05:79:4B:56:8B:76:FC:6A
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:98:c8:4f:5c:a5:f5:d0:5a:65:84:6a:22:5b:56:2d:98:96:
0d:a7:08:92:c8:09:79:b6:9a:ad:58:89:56:de:9a:9e:0b:ef:
a7:31:f5:2b:83:c0:54:cc:17:70:12:cb:3d:51:9d:90:fb:84:
70:38:d2:51:2c:fd:ab:87:6c:2e:73:29:07:30:52:00:55:cb:
05:01:5b:e7:ae:ee:7a:f4:ac:59:17:c5:e0:e4:5a:a0:90:26:
b2:36:fd:cd:86:6f:ed:40:bf:e6:b3:f3:8a:82:9f:70:ff:90:
28:d7:ed:f7:2a:c6:d6:ea:d1:ce:52:91:19:32:aa:7e:e9:30:
a7:f4:ea:08:0b:ee:0d:88:56:89:6b:09:67:e0:bd:b5:95:b5:
36:d2:65:d8:c9:9c:52:65:66:a9:4e:66:3c:1e:1a:ec:f6:88:
9c:ac:9c:94:cb:04:99:14:1d:1c:46:6f:e4:a9:53:cf:db:26:
cc:8d:dc:7c:75:de:2f:5b:a9:c0:42:3b:9f:7b:3e:9e:3b:7e:
9e:55:a2:1e:4d:53:4f:dd:2b:18:96:a2:18:64:2e:55:e6:c8:
31:ec:68:ca:3a:28:6f:dc:ca:06:f3:94:df:33:5a:73:87:a1:
08:1b:4c:04:7b:8f:fc:9e:7f:fb:38:05:5e:b4:fe:41:bf:12:
db:47:fa:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 07:52:15 2025 by rpki-client