Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
File: HHOn_DBLwC2AdEdtB121zc0tq94.mft (raw, json)
Hash identifier: rVM46MtR2ZJhBg+xq/b8/s8UduOe9CPUH4kAgGndths=
Subject key identifier: 2F:AA:7B:DC:49:0A:CC:65:F0:3F:9C:C6:0E:3F:C6:F8:BF:F2:CC:E0
Authority key identifier: 1C:73:A7:FC:30:4B:C0:2D:80:74:47:6D:07:5D:B5:CD:CD:2D:AB:DE
Certificate issuer: /CN=1c73a7fc304bc02d8074476d075db5cdcd2dabde
Certificate serial: 019A7112EA5D10DDC00DC2AED8634188EEE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHOn_DBLwC2AdEdtB121zc0tq94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
Manifest number: 171C
Signing time: Tue 11 Nov 2025 04:00:56 +0000
Manifest this update: Tue 11 Nov 2025 04:00:56 +0000
Manifest next update: Wed 12 Nov 2025 04:00:56 +0000
Files and hashes: 1: HHOn_DBLwC2AdEdtB121zc0tq94.crl (hash: tALxFG86dKBV3qlZC8FIQ/xifAYTlmPD1nxfXteYxNQ=)
2: XYgFwZ2CqAs8qGiTQfLochhhVr8.roa (hash: BIq6NWuUjoCoJhl8MtA2+RZunC4kB77cQPXrKGuFmZs=)
3: t0qPcPRjVDt7pBpmEOs0txskz9Y.roa (hash: XD1Ri+rvAUqquChGrpBG2cA7FtrzDzcA4IhVajyPuaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HHOn_DBLwC2AdEdtB121zc0tq94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:12:ea:5d:10:dd:c0:0d:c2:ae:d8:63:41:88:ee:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c73a7fc304bc02d8074476d075db5cdcd2dabde
Validity
Not Before: Nov 11 04:00:56 2025 GMT
Not After : Nov 12 04:00:56 2025 GMT
Subject: CN=2faa7bdc490acc65f03f9cc60e3fc6f8bff2cce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0f:26:eb:2e:39:9b:36:3d:3f:de:d6:83:52:
93:c3:ec:0f:b0:b8:62:19:2f:b4:b6:42:b2:36:14:
40:66:46:d7:96:e8:7c:bc:33:ba:65:1b:4f:f4:0d:
4d:44:73:ba:5a:1e:8c:89:fb:d3:29:ed:75:65:a6:
eb:80:d0:63:e6:f2:cf:c2:5c:ef:63:31:6d:06:00:
e5:ad:dd:b6:51:7c:09:bc:14:03:94:bf:fc:10:60:
70:8c:48:28:22:ee:ed:67:63:f1:ae:28:b5:a2:8e:
cd:aa:de:45:81:f3:fc:26:0d:f4:13:5e:e6:b8:d8:
99:4b:c8:0a:77:18:c5:fb:36:49:11:c1:04:40:fc:
b1:f9:c8:0b:b8:eb:0e:7c:22:eb:20:41:73:35:bb:
17:aa:dd:b0:63:91:c5:c8:a5:12:8c:b4:59:9e:1c:
24:43:98:7d:6b:ca:ca:a9:28:8a:7c:bf:9e:a7:cb:
82:2b:1c:d6:d1:c1:0e:ed:19:de:d5:d1:7e:06:7d:
d0:b0:d9:d8:a7:e6:14:3a:3c:8e:26:78:07:85:fd:
e9:00:d0:4e:bf:fc:43:b9:f0:4e:c8:23:9e:59:d4:
f9:44:6e:54:64:90:f7:f1:87:19:b2:bf:c3:5c:c7:
c2:2e:4a:28:bd:c2:ec:c3:4d:2c:ca:c5:4f:71:97:
cb:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AA:7B:DC:49:0A:CC:65:F0:3F:9C:C6:0E:3F:C6:F8:BF:F2:CC:E0
X509v3 Authority Key Identifier:
keyid:1C:73:A7:FC:30:4B:C0:2D:80:74:47:6D:07:5D:B5:CD:CD:2D:AB:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHOn_DBLwC2AdEdtB121zc0tq94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/810c72-d416-4a14-8aca-a8faeeb7ee52/1/HHOn_DBLwC2AdEdtB121zc0tq94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:53:01:a2:16:85:85:6c:bc:39:16:30:93:82:f7:6f:7f:f7:
f9:94:e9:b9:26:12:ce:00:99:b4:f7:cc:61:eb:87:be:98:03:
38:2e:bc:54:58:fe:b6:24:5e:fa:c9:00:3c:45:1a:2e:43:12:
1f:d2:4c:e6:59:d8:71:6d:af:fa:04:57:ad:4a:6d:c8:d5:73:
0e:b4:26:89:11:87:e8:63:38:89:cb:57:67:2e:92:ba:f7:9c:
b3:44:74:71:26:06:c3:9a:27:f3:73:b6:ed:5e:70:05:68:d1:
40:0a:3c:91:3f:d7:5f:c0:db:55:41:2d:3f:8a:a1:c5:7c:db:
e1:a6:43:ec:f3:74:48:9c:3b:37:cf:4a:60:8c:9d:8e:db:84:
d8:1f:5e:29:28:34:c5:89:ba:a5:39:d6:44:31:fd:1f:78:de:
6b:69:8b:25:d9:9e:da:e2:34:25:be:18:6c:49:5d:6b:44:b4:
e1:30:a8:75:05:bc:d9:df:61:16:f5:19:70:29:91:b3:ce:c8:
fc:be:6f:68:d2:18:76:06:f8:35:09:6a:f9:5f:b9:ba:89:39:
27:9f:a2:2a:a2:0b:d8:39:78:12:f6:4a:e8:50:53:28:56:48:
4b:42:99:63:4c:1e:11:51:e6:cd:e5:0b:2c:ab:60:5b:1f:12:
46:2d:db:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:06:59 2025 by rpki-client