Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: UpgvHG85wzXmlKUJh6GwWwDAXb9EOCk5ulJ4fiswFcA=
Subject key identifier: 8E:EF:E6:65:93:08:6D:76:3C:D2:98:3E:FD:42:05:4E:85:50:27:47
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019A51F596F7F4C32711E703C3A2981D0B8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 0290
Signing time: Wed 05 Nov 2025 03:00:40 +0000
Manifest this update: Wed 05 Nov 2025 03:00:40 +0000
Manifest next update: Thu 06 Nov 2025 03:00:40 +0000
Files and hashes: 1: GPBnMrccvHfLRUetSr0V2OhSV78.roa (hash: bMjAfl7v9vzL7TDoDm3Lu45G9wMjJfK+MiFqNCPT/Us=)
2: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: qoFvksmEErncxddKYRYzHOqVxpXVkV0TmFWGSTGNT7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:96:f7:f4:c3:27:11:e7:03:c3:a2:98:1d:0b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Nov 5 03:00:40 2025 GMT
Not After : Nov 6 03:00:40 2025 GMT
Subject: CN=8eefe66593086d763cd2983efd42054e85502747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:51:41:f9:cd:4c:51:e9:83:9b:7b:b9:2f:05:
e4:08:f5:64:50:b6:3c:6c:b2:bd:b5:fa:00:ab:db:
52:a2:58:0e:28:a6:d1:10:60:6b:1e:8e:84:39:b4:
e7:9c:27:7e:7b:95:86:da:9c:96:60:32:cc:0c:4d:
47:40:dd:d3:4d:20:66:25:26:6e:94:6c:dd:6e:50:
6c:da:87:90:5a:06:1f:e5:e5:1c:08:91:87:48:73:
0d:da:f8:7c:d2:a2:36:7c:4e:16:f8:51:a7:60:99:
cc:e1:cc:80:3e:9f:ed:ca:e8:70:bd:9c:62:38:d1:
f3:d5:55:52:88:c1:85:82:f8:13:86:f1:c5:7b:b0:
5d:e3:15:35:33:3c:1c:91:8c:49:2c:4d:57:67:5b:
4a:27:1b:bf:2a:3b:99:6c:5c:80:3c:91:ab:45:c2:
c2:c7:7b:c4:ab:93:33:08:25:25:d4:ae:9f:53:2c:
8e:fd:ce:fc:c1:4f:68:f2:21:08:2c:48:70:1d:75:
7e:93:d1:c9:ee:c1:8d:eb:2d:18:20:fb:ad:91:a9:
87:b7:e9:85:68:15:47:34:1d:2a:0e:f8:df:ad:43:
24:46:e3:a9:c5:3f:ca:56:f0:12:28:d3:fc:38:14:
15:ba:7b:ec:a9:27:08:2e:3a:3d:2c:3d:a2:31:ba:
51:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:EF:E6:65:93:08:6D:76:3C:D2:98:3E:FD:42:05:4E:85:50:27:47
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:7b:1d:21:be:22:a3:06:89:57:7c:68:68:63:92:ca:25:6d:
cd:ad:22:2b:ba:c9:15:16:34:5a:de:bc:36:91:56:7c:92:b4:
c2:29:2e:ad:04:ac:65:1c:35:f6:ef:54:61:12:25:ff:e3:67:
a0:23:1a:af:9c:73:e2:de:be:cb:0f:1a:bd:75:54:cd:26:6d:
a6:5f:58:2b:98:26:df:57:5a:fc:c2:55:2d:16:72:19:23:54:
5a:31:80:44:e1:7b:2e:8f:69:15:cd:3e:ef:cd:19:a1:64:c3:
2d:04:03:6c:c9:5b:d7:d5:47:bc:05:12:a4:38:99:bb:87:7f:
5f:87:61:ba:8f:39:cc:85:2c:37:a6:77:2f:5a:f0:ee:33:fa:
27:7a:bc:1c:0e:09:93:23:3a:a5:40:d0:71:8d:b7:c4:36:00:
dc:e6:d1:34:a8:83:a8:e1:28:be:e6:e9:04:30:ba:0c:9c:24:
1d:a9:ea:31:30:65:41:80:35:63:99:54:d1:e7:ed:7b:84:5a:
c9:c3:f2:7e:42:1e:72:a5:aa:cd:53:11:4d:d9:69:5a:73:02:
66:70:38:dd:e6:a8:eb:3e:1f:79:62:87:00:93:c5:fc:74:1e:
64:5a:72:26:e4:e1:b1:57:fa:41:b2:4e:53:b3:d2:9b:de:5c:
f3:00:86:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:42:15 2025 by rpki-client