Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier: dQRD/PPjAvv2Dwy//YbkPfrlyJ21LFgB6JP0PmVD7tw=
Subject key identifier: 51:58:DD:0D:12:9E:F0:BB:31:48:3D:FD:71:E5:94:17:B3:C0:3A:F4
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial: 019A4EBD5C9EB84473BFFC374D87165918D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number: 0A3F
Signing time: Tue 04 Nov 2025 12:00:24 +0000
Manifest this update: Tue 04 Nov 2025 12:00:24 +0000
Manifest next update: Wed 05 Nov 2025 12:00:24 +0000
Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: Hc2ZKcIIZSitBGmDxoinQ3746Umugasq00Dt8o7dq7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 12:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:bd:5c:9e:b8:44:73:bf:fc:37:4d:87:16:59:18:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Validity
Not Before: Nov 4 12:00:24 2025 GMT
Not After : Nov 5 12:00:24 2025 GMT
Subject: CN=5158dd0d129ef0bb31483dfd71e59417b3c03af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:04:87:69:11:40:5c:48:98:93:66:a8:58:
23:b9:a6:89:a9:2b:b7:36:1a:17:a6:65:87:93:f5:
b3:76:53:68:21:ef:78:6f:5e:3f:03:07:d2:73:87:
93:c5:65:48:9d:71:6f:1f:de:f7:60:af:ae:a3:19:
7b:9c:2e:12:c7:95:83:e3:c8:0a:0d:01:c7:2d:cb:
d2:f2:e7:7f:46:db:dd:04:f6:20:b0:e5:51:38:28:
57:be:1d:d9:f4:a1:db:4d:fe:63:c2:de:3c:34:a3:
49:55:a3:25:e2:89:97:dc:b9:db:7a:af:fc:3f:68:
06:41:d7:3d:32:11:13:71:b0:93:d3:a3:7a:61:69:
ea:50:ce:70:ae:96:8c:9e:61:92:ed:27:cb:a6:2b:
82:9f:f8:35:22:e0:11:fc:e1:a3:dc:7f:3a:b4:e0:
49:ea:6a:0a:86:e7:6f:2b:8f:b3:aa:98:71:4a:8c:
de:41:70:11:71:fb:13:08:20:9a:4e:09:6e:38:86:
f7:a8:29:1d:99:83:9c:03:d5:6d:65:06:e8:69:62:
f3:2a:21:dd:18:b9:34:bf:d3:db:67:e8:c7:86:fe:
eb:b4:b0:ae:ca:33:85:74:c3:a2:d3:7d:4b:df:9b:
4c:e0:9d:c0:54:da:89:43:a8:5e:0d:8b:00:4a:bd:
d8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:58:DD:0D:12:9E:F0:BB:31:48:3D:FD:71:E5:94:17:B3:C0:3A:F4
X509v3 Authority Key Identifier:
keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:b2:c8:47:eb:e0:f0:46:a2:24:58:12:37:39:91:d6:71:fb:
85:89:01:14:1d:a0:25:d6:a6:27:f3:c1:0f:6f:22:b9:21:43:
f4:cc:ed:0e:5e:4a:ff:18:5d:f8:d6:4a:cf:84:8c:74:c5:ad:
be:31:9f:2b:a4:51:2b:c4:20:5a:98:67:6f:91:e2:a6:6e:24:
0e:c5:64:6d:07:2a:7c:00:f8:c2:0d:57:0d:46:62:2d:0f:5d:
39:8b:40:0f:70:ca:cf:a9:7f:2b:64:d7:52:1b:5f:90:58:b9:
fd:67:3c:21:1f:79:b9:35:4f:4f:30:09:9a:82:ef:2c:10:44:
ae:b7:18:72:15:02:6b:fb:84:fe:5f:35:50:fc:3a:d2:0b:86:
45:36:30:59:36:41:3e:63:1e:8c:42:a4:f7:45:c3:05:68:f1:
f3:0f:2c:87:78:a9:ff:1c:29:56:58:df:e0:01:c9:f2:50:b8:
02:9e:e1:46:9f:14:91:7d:0a:32:ba:c8:49:ea:17:a9:1b:e0:
8f:68:c4:39:53:11:da:f8:71:a7:e3:c4:c6:79:e3:a1:9a:ac:
93:4c:f8:06:30:d4:27:eb:36:68:8c:62:a6:8e:86:af:3a:be:
39:a8:60:03:df:8b:bb:65:2a:32:cf:d7:c5:b0:fc:81:e3:73:
0f:c1:2d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:19:24 2025 by rpki-client