Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
File: H7XBu67UTItq4_K1ZtAcwljfws4.mft (raw, json)
Hash identifier: WL4HthkAO27pq7zkDX8SUYpl0uZHRi6XFF8wel641YU=
Subject key identifier: ED:73:0B:20:48:C0:AC:32:3C:EC:74:B7:06:17:D1:7D:2F:AB:71:F1
Authority key identifier: 1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
Certificate issuer: /CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Certificate serial: 019A7293633CFBDCD9ED0DFE466BD019753C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
Manifest number: 12A6
Signing time: Tue 11 Nov 2025 11:00:53 +0000
Manifest this update: Tue 11 Nov 2025 11:00:53 +0000
Manifest next update: Wed 12 Nov 2025 11:00:53 +0000
Files and hashes: 1: H7XBu67UTItq4_K1ZtAcwljfws4.crl (hash: l0tqaw92epp5Okanm006n9VUo5SSZ3RRqcJTC++QTJ4=)
2: MEWWY0epwShfEJbfHo9y4r51GYY.roa (hash: SGRcwmohz12gMReH4Cn9V8oKzsRQ7LvpKURqTZBMtCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:63:3c:fb:dc:d9:ed:0d:fe:46:6b:d0:19:75:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Validity
Not Before: Nov 11 11:00:53 2025 GMT
Not After : Nov 12 11:00:53 2025 GMT
Subject: CN=ed730b2048c0ac323cec74b70617d17d2fab71f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:32:cd:6b:a4:57:5c:a0:ba:bd:3e:a8:a7:39:
b0:aa:44:9e:e8:0f:93:6f:dd:59:ff:79:a6:c2:0a:
95:62:f9:27:9f:2f:fb:97:c9:b9:4f:ec:87:04:d2:
f5:7c:44:f1:aa:4d:2d:e4:92:19:14:c2:79:10:68:
6c:1c:67:9d:07:c3:33:a8:e3:9e:a2:68:1e:46:9b:
3b:4b:1e:cc:be:31:f8:7c:c2:39:63:3f:b6:94:4f:
a9:cc:bf:26:41:37:51:94:a9:ff:3e:dd:ed:91:5f:
7e:1b:9b:27:f8:dd:89:b0:15:b6:d8:0a:00:a9:9a:
9a:07:e1:da:fe:f7:72:fe:07:12:5e:e2:86:94:bc:
36:15:ad:b7:6a:06:95:1f:a9:0c:ab:47:5c:76:5e:
e6:54:e2:96:11:27:7f:1d:bb:57:a0:6d:a2:25:4f:
50:eb:60:2e:e2:b0:4f:ae:3b:23:16:d4:6e:a0:dc:
76:b0:86:6a:1a:7b:b9:2d:04:28:d8:55:f5:3a:38:
f7:c5:cd:c7:8c:bb:52:6a:ac:48:15:02:0a:27:cb:
c8:6f:62:9d:70:eb:e9:fe:ca:9a:14:e1:86:43:91:
69:5c:35:4b:9a:58:8d:e5:f9:2f:d0:96:a4:fe:ea:
e9:88:c4:b1:85:6d:5f:ac:4d:23:2c:89:be:b6:ce:
03:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:73:0B:20:48:C0:AC:32:3C:EC:74:B7:06:17:D1:7D:2F:AB:71:F1
X509v3 Authority Key Identifier:
keyid:1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:84:13:b0:6a:9d:f9:47:0f:30:68:c8:ad:64:f2:83:c0:0a:
42:98:8b:79:7a:15:a6:2c:ff:64:46:d7:bd:f0:90:04:36:f0:
9e:8f:e6:2c:49:a9:8d:3a:c5:f2:14:ed:92:31:93:14:06:0d:
3c:ff:a4:37:11:7b:52:54:16:be:d0:df:45:91:17:d2:32:3d:
75:08:d7:6f:ea:90:02:c6:4e:93:d1:66:b4:1c:fa:99:4d:67:
75:1d:02:32:5b:5d:59:e5:7a:87:5d:44:c7:99:fb:05:f0:15:
ec:8c:0b:d0:37:1f:9e:da:c3:84:60:7e:48:d4:da:14:f4:17:
f3:f8:11:58:3c:69:2e:e4:93:17:1e:f8:8c:28:59:85:a3:a0:
eb:fc:d7:d4:56:c6:6c:eb:f4:92:3d:a4:83:ff:a3:56:8c:d5:
73:e5:25:a7:7e:16:b3:b3:20:43:51:8c:26:be:e1:93:7a:48:
f0:57:e3:44:68:0d:82:70:23:19:e0:98:6f:76:e3:fe:58:5d:
3c:d3:82:d5:b7:be:65:ae:a3:e7:a8:d8:7f:f6:c1:41:c8:0f:
a9:b6:26:35:51:82:f1:0f:cc:2e:37:2b:cf:c6:e7:5a:6c:c0:
3f:e8:72:fd:fd:cc:6f:d3:18:79:c0:31:8a:57:f0:33:88:38:
5e:b5:71:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:13:53 2025 by rpki-client