Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
File: hUwNsAZYRNlZTf6N2O_XftHkk_g.mft (raw, json)
Hash identifier: 5XBf0skhkk+OtYreWgJ6g1c4sn8vS3oYf6zD2JyWzsc=
Subject key identifier: B9:59:0C:15:26:11:B6:80:F7:DC:A1:AB:DA:E4:5B:72:43:3B:ED:70
Authority key identifier: 85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
Certificate issuer: /CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Certificate serial: 019A4C610165A952C9563E72CC12FC7053A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 01:00:16 +0000
Manifest this update: Tue 04 Nov 2025 01:00:16 +0000
Manifest next update: Wed 05 Nov 2025 01:00:16 +0000
Files and hashes: 1: hUwNsAZYRNlZTf6N2O_XftHkk_g.crl (hash: BaJ2lLwNA3SWKTrylbUnFKm3GJXTByyXP0ZfBlU7+eo=)
2: iM7SCQycar1nudDnDJd9cpfWE14.roa (hash: 7fSKbbU/ayenSU9Vz0FeCegebZtfdQUaQXiUz4lT3zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:01:65:a9:52:c9:56:3e:72:cc:12:fc:70:53:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Validity
Not Before: Nov 4 01:00:16 2025 GMT
Not After : Nov 5 01:00:16 2025 GMT
Subject: CN=b9590c152611b680f7dca1abdae45b72433bed70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:e0:f9:33:49:4c:56:66:21:c4:ee:a2:83:
34:cd:e7:98:1f:6c:f6:e3:8b:3e:10:88:0d:ee:95:
7a:cb:ea:f6:6b:26:b1:b7:9c:7d:4d:e9:82:7d:21:
e5:d7:b1:5f:87:ba:53:40:6e:2b:fa:65:e9:99:48:
7a:8c:cb:25:d8:fb:a0:51:3e:53:f8:21:e7:37:da:
7d:6f:77:be:1f:42:6e:74:59:89:85:a7:7e:73:c1:
e7:07:21:cc:f9:52:02:74:49:e2:94:07:c3:b8:f5:
40:19:41:29:e7:ae:29:5a:b7:48:67:09:88:52:86:
1f:dc:94:ad:12:3a:77:b6:87:ee:1c:45:3e:b5:70:
56:87:b6:2e:03:3f:cc:65:af:5a:a8:89:58:3f:28:
21:a2:93:7e:b0:e3:c7:89:bd:c6:81:1f:5a:64:40:
c5:c7:bc:2c:06:86:c4:81:22:db:ec:e9:81:bb:f7:
1a:48:24:6d:23:ec:f6:42:97:97:f6:43:83:7a:33:
b8:6e:dc:ec:5c:9c:5f:74:bb:00:ab:39:71:9f:b7:
48:33:0c:7d:6f:91:a5:95:83:05:d2:0a:fd:a9:7c:
34:24:aa:ba:17:58:57:13:24:7d:d4:17:0e:cd:ad:
84:36:41:4b:1a:f8:23:56:18:75:47:17:9b:cc:8e:
88:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:59:0C:15:26:11:B6:80:F7:DC:A1:AB:DA:E4:5B:72:43:3B:ED:70
X509v3 Authority Key Identifier:
keyid:85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:32:70:66:75:f1:58:55:44:49:35:a7:2f:1e:48:aa:fc:7c:
5a:7b:6b:57:ef:2b:8a:81:14:a9:e4:17:b9:dd:7e:b9:e9:92:
63:6e:e4:4a:e7:14:f3:22:aa:43:9a:a3:53:1d:59:e6:d3:06:
ab:3b:0c:23:d8:d8:a7:57:df:af:b4:12:2f:ad:3a:36:47:46:
38:df:8d:60:4f:37:ae:ce:05:da:32:b7:f8:20:d5:0e:71:5a:
b3:44:6a:f6:23:66:b6:f7:3c:c9:e0:60:10:db:d6:03:cc:14:
b6:90:79:ff:a0:1f:1d:a5:02:a5:3d:20:56:d8:af:09:24:36:
20:6a:9b:e1:16:88:45:8e:52:8a:ac:16:8f:b3:dc:40:d5:00:
e2:98:91:70:bc:fb:2a:4c:d2:da:82:61:0e:7a:5f:08:75:6c:
37:ac:3d:4c:7f:72:fc:65:ae:d5:a9:18:f0:ca:ba:62:7c:0a:
48:07:bb:43:f3:49:14:f6:3e:62:56:ff:c7:68:3b:9f:b3:4d:
57:5b:1a:47:92:72:3d:18:6c:9b:d8:9c:70:75:11:6e:97:f3:
05:ec:8e:63:41:28:23:47:9b:57:da:a2:8e:62:a6:66:78:3b:
6d:2e:1e:72:52:be:82:cf:13:0a:ff:6f:f8:15:d5:a2:d3:fe:
87:98:fa:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:44:23 2025 by rpki-client