Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: jUSp3JjkTARMqeRzM3J3Ku4jpEh9mpahHTUz1E2znA4=
Subject key identifier: 59:7E:C4:D3:F8:2E:9F:5C:7C:62:14:74:F1:98:1C:2C:86:B5:B5:83
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019A239BDA2FF8E08203131474E752D605D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 16F8
Signing time: Mon 27 Oct 2025 03:00:07 +0000
Manifest this update: Mon 27 Oct 2025 03:00:07 +0000
Manifest next update: Tue 28 Oct 2025 03:00:07 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: vvJF+HC0OGf0DaMOccYKg729fuBpkYKDy4KPllFHfeU=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 03:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:9b:da:2f:f8:e0:82:03:13:14:74:e7:52:d6:05:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Oct 27 03:00:07 2025 GMT
Not After : Oct 28 03:00:07 2025 GMT
Subject: CN=597ec4d3f82e9f5c7c621474f1981c2c86b5b583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7e:0e:41:aa:0f:f6:ba:14:50:82:83:ac:68:
c4:0e:75:5a:bf:62:e3:b7:94:eb:03:96:65:09:ef:
4c:1a:ba:c1:aa:a1:9c:e8:80:79:b4:2c:2e:e3:42:
fb:6a:92:a1:5a:64:f2:57:79:33:4c:6a:5f:da:76:
b7:07:12:38:b2:08:75:2d:9f:19:76:30:13:4e:eb:
52:8a:9f:21:7e:8c:53:20:09:4c:46:1e:cd:04:8c:
b2:44:8c:3d:43:53:f9:b4:b8:7d:ce:63:85:8c:f8:
4d:8c:73:11:ac:b3:19:e1:6d:9a:58:56:bf:59:5d:
e4:fb:1a:39:73:67:e9:73:52:1f:16:36:0e:25:73:
6a:d3:0c:f1:f7:3b:45:c4:7d:df:19:8f:9f:80:ac:
85:97:1b:f9:f9:9e:f4:06:52:d6:30:4a:5f:7c:b5:
b9:14:d4:6e:ca:d2:a7:46:e3:a9:7c:2c:e6:d6:bd:
66:02:b8:e8:db:9c:f3:05:cf:e4:1e:e5:1e:d8:27:
50:22:87:97:44:c9:2b:47:7e:c5:4c:1f:85:65:44:
6a:68:3b:5b:37:07:8c:41:d1:37:46:f8:3f:28:7b:
53:fb:3a:68:59:24:73:aa:e3:d4:7e:5d:36:06:2a:
6b:ff:a0:7d:69:10:0d:4c:f7:ec:d8:cc:3e:09:1d:
8f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7E:C4:D3:F8:2E:9F:5C:7C:62:14:74:F1:98:1C:2C:86:B5:B5:83
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:85:d5:45:cf:cf:49:7f:81:87:7b:2d:0c:13:17:d6:f1:df:
90:2e:1b:28:80:9a:94:cc:15:c1:b6:02:62:f8:7a:e6:22:67:
ff:b2:ce:8e:05:f9:3b:13:3d:cd:4c:4b:9e:9c:26:ea:7a:78:
f2:a9:8e:ec:5e:a0:b8:7f:8b:68:bb:8a:dd:2f:7f:c6:b3:e9:
52:ff:74:cb:cd:66:5f:cd:b6:b4:ca:ac:12:c6:21:17:48:a5:
1b:d8:7e:09:c3:54:a9:c8:5c:c2:57:a7:dc:96:f0:5a:7a:f3:
dc:c4:ea:74:45:50:37:71:e8:99:7a:49:25:05:c0:a7:c3:83:
29:c5:92:59:0a:9c:c5:8e:0c:8b:16:3c:df:c7:8e:1e:b1:df:
42:10:f5:f9:0e:d9:75:b1:1b:71:b0:36:ec:93:20:87:d2:bf:
00:b4:12:46:e3:6f:41:a5:96:29:a1:f4:ba:05:84:8a:1e:83:
e4:68:89:9d:61:22:cc:e8:54:05:7f:3a:95:6a:34:e9:22:80:
3b:d5:05:80:07:25:47:0c:99:09:29:1c:3e:18:92:fa:7b:0e:
cb:da:de:0b:29:64:7b:b5:d7:d2:1f:07:c6:25:fe:0f:17:35:
f2:cc:e8:76:e1:07:99:d3:18:19:6b:9a:08:b2:14:bf:6b:89:
06:f5:ce:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 09:16:00 2025 by rpki-client