Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
File: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft (raw, json)
Hash identifier: qkCFVpv9VTya3j78Vdzn0Mc/ZAlXHBookWAbc67i5NE=
Subject key identifier: C5:DC:69:17:27:A4:8A:5C:6E:EE:54:E3:A0:E7:87:2C:B0:98:04:26
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 019A53AD178584BECF807935D3FD6DBC81FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
Manifest number: 1718
Signing time: Wed 05 Nov 2025 11:00:43 +0000
Manifest this update: Wed 05 Nov 2025 11:00:43 +0000
Manifest next update: Thu 06 Nov 2025 11:00:43 +0000
Files and hashes: 1: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl (hash: bRP2BI62pfbNXpJ8Bvaz6DJ1DaDSQof/klg+Czfblbk=)
2: HKyKcuG2QNZXVCZbzlsSYd8S3kw.roa (hash: WsComY/xpr7CRKjl1OS19nvkdUYgY57xLKmt+FoyLxs=)
3: NMYTYXjVSSW_zjS5UcL1_MJYMhw.roa (hash: sb8TB9OQXYjgHET+s0jEt1SW4MRtm0F3nj4wUyz73j8=)
4: OL6AoyvltIWrfared4b30q9zkxI.roa (hash: BCZJFaW2H8wcaghHXjKzyZLLD5xoj/h4op/UrSZpM4s=)
5: cdvkytGTuhzfI_n3jlQrgir1LVg.roa (hash: bDSSCJ1WplO8Ib0UIaI2qA5CZAt1v6VMlLCWW3FIaSk=)
6: jLAxUa8xvZ_xtGFLN3MZzH02ngY.roa (hash: 2KcY9b/rNpgICtwXDDn50o8m8wTGL/9zVFvIOuzYcZI=)
7: jwz6PrQFhFvB8Ouuwat3y2nONuA.roa (hash: TxTry85XsPky+PSHHeTZJCkAX90hbYBwkf2e2x38QSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:ad:17:85:84:be:cf:80:79:35:d3:fd:6d:bc:81:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Nov 5 11:00:43 2025 GMT
Not After : Nov 6 11:00:43 2025 GMT
Subject: CN=c5dc691727a48a5c6eee54e3a0e7872cb0980426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3a:9c:e2:3b:14:dc:49:37:89:6c:8f:4f:3a:
94:1c:95:f0:54:e1:30:a3:2c:2a:dc:73:a4:59:8b:
73:bb:0d:c7:09:e1:18:ae:66:a5:70:23:f3:6d:fa:
dd:8b:ea:cf:91:23:e0:04:3f:34:a7:a4:b9:ee:b4:
8a:d5:b1:69:02:e8:2d:08:e6:21:b4:7b:eb:8b:cb:
7c:28:8e:c3:21:56:64:63:e3:5b:7b:3c:86:6d:8c:
5c:e6:a4:c8:72:0f:2e:aa:6b:39:e6:ec:e3:71:67:
f3:13:50:e7:43:c4:69:41:d5:46:80:bb:da:7c:e9:
9b:d8:b3:55:f9:9e:d0:75:00:59:77:67:68:aa:94:
b6:6c:5e:8f:6d:93:b5:b8:a4:f2:55:c2:61:f0:42:
bc:04:69:b6:83:9e:84:92:03:5d:a3:ad:0a:9d:76:
72:f7:92:05:fc:bd:1f:6c:bf:00:46:4d:92:9d:c2:
be:ac:9b:2b:d2:74:de:2b:c2:f8:fa:20:09:d5:a8:
47:c9:8b:24:24:80:37:df:46:88:dd:e6:34:99:0b:
8c:2b:da:0f:be:72:33:32:cd:c0:5d:37:f1:93:44:
43:8b:19:4e:65:7c:16:b9:12:67:3a:67:fa:2b:f8:
d7:fb:58:12:c6:d3:10:1b:8c:18:e6:1f:ed:b6:64:
d7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DC:69:17:27:A4:8A:5C:6E:EE:54:E3:A0:E7:87:2C:B0:98:04:26
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:7b:99:2f:c3:01:eb:40:67:5f:4b:3d:93:ef:13:6b:40:34:
d8:65:3e:8b:23:c9:06:1b:73:86:d7:4e:e2:07:f5:49:aa:bf:
97:d5:c9:a8:6d:ae:79:bd:9e:08:f2:9f:b6:0f:8d:b3:51:83:
53:19:82:50:a9:0a:15:a3:31:cc:e0:2a:64:e3:aa:25:8d:eb:
a2:5a:fa:a8:a3:42:73:15:6f:44:8e:42:44:62:43:48:a7:11:
18:65:1b:42:7c:54:66:d3:2b:2d:24:55:05:84:10:64:74:1f:
b8:a3:9f:58:0c:c1:f0:aa:93:81:d7:69:22:95:f9:f9:20:bc:
3d:65:93:3d:bd:91:fe:10:70:61:2d:5d:b8:72:4a:bb:f5:c8:
76:7e:ce:b8:83:56:c7:0c:44:1f:a0:e5:ce:af:8c:f5:44:c2:
9a:1e:0a:1c:4e:98:41:84:8a:ee:9b:37:de:c5:10:9b:dd:07:
f5:51:2c:0e:cb:d5:47:51:ff:87:b9:97:59:1e:99:ed:b8:0a:
e9:cd:c3:08:0d:48:ac:fd:43:cf:a5:78:f7:61:29:0b:d1:5f:
d0:66:65:18:b3:d1:36:2e:c1:5a:81:24:6b:e5:97:db:57:c1:
69:9c:1c:58:27:97:22:90:81:82:ac:ef:48:f1:27:f6:db:00:
c3:cc:7e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:30:17 2025 by rpki-client