Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: JS5zZ4eDqQYjFcbIpQiniYGx/f1Fmo9RWrkp6A7Cv+M=
Subject key identifier: FE:4B:21:3A:FA:05:7E:B3:F8:45:48:A2:18:36:82:A7:54:EE:27:43
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 019A52D1210A98860E41D9CC3451D481A102
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: 02B7
Signing time: Wed 05 Nov 2025 07:00:28 +0000
Manifest this update: Wed 05 Nov 2025 07:00:28 +0000
Manifest next update: Thu 06 Nov 2025 07:00:28 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: GbhdB2KEJKnxqWmHjTtdjVevwQa9cN5sF0Qfyi8DCqY=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:21:0a:98:86:0e:41:d9:cc:34:51:d4:81:a1:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Nov 5 07:00:28 2025 GMT
Not After : Nov 6 07:00:28 2025 GMT
Subject: CN=fe4b213afa057eb3f84548a2183682a754ee2743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1e:b9:7c:50:f1:08:d3:24:f1:05:f3:e2:4f:
7a:76:c6:c9:8b:a5:e3:00:08:14:78:56:7a:6e:36:
c2:53:f0:43:4b:3a:21:bb:01:e7:25:ca:cf:b9:de:
6b:1e:3f:0c:2d:01:43:d6:da:26:99:a8:bb:40:2f:
69:08:ee:a6:34:5b:2c:4a:3f:86:51:cf:9b:c9:63:
43:32:b3:c0:2c:66:e7:e8:ca:c8:3f:68:b7:87:27:
99:ff:87:7b:5f:bb:2a:1b:b0:26:61:20:94:ca:1f:
72:d5:f8:b5:80:91:c0:41:00:71:da:6e:f3:fb:15:
72:eb:6a:be:2b:04:93:c8:22:8e:3c:81:cb:31:6a:
23:6f:cd:c0:6b:62:d9:cd:67:fb:2f:7a:0d:e4:34:
af:69:16:c3:aa:ae:69:89:e6:7c:af:43:68:b6:0c:
92:53:13:a5:0a:4d:6f:4f:90:80:54:b7:94:60:46:
2c:14:f7:aa:da:07:13:79:eb:57:c1:c7:09:bc:e0:
8f:ba:2b:8a:8c:6a:53:0e:5e:f5:e2:da:90:1d:96:
c6:ca:8e:7f:ab:31:9c:6a:d5:cd:b6:20:c7:77:9a:
41:cf:1c:f9:9c:ce:b4:b2:38:85:6b:d4:d4:b8:31:
ec:43:ba:76:df:c8:a9:39:73:2a:eb:34:78:ec:0c:
1c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4B:21:3A:FA:05:7E:B3:F8:45:48:A2:18:36:82:A7:54:EE:27:43
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:11:a5:e8:ba:0d:0d:b1:b4:41:50:87:2c:d9:fe:7a:17:c1:
20:b5:92:09:07:59:d4:ba:62:63:6e:7d:97:4f:c6:8a:a8:30:
0a:8c:1d:15:bd:00:a7:59:52:50:3c:a7:6a:cf:2e:ee:af:4e:
06:8b:51:ca:16:ad:b0:de:d7:57:0a:80:cf:f9:a0:e8:c1:c4:
93:43:f6:fc:9d:5f:b9:70:1b:21:e7:7b:66:e9:f6:e1:83:61:
19:e3:48:d5:8d:76:36:5d:24:a1:e6:29:e7:8b:08:47:c3:a8:
8a:99:7b:0e:b7:cf:5a:b8:60:4d:12:22:ba:5c:64:e5:2c:30:
3c:38:8b:ad:c5:bb:33:34:45:99:4f:7a:6a:ba:5b:fe:06:75:
f3:91:8f:69:59:fc:e3:8c:ff:f3:34:d0:a6:76:d9:88:49:9b:
6b:e6:2e:02:37:da:7a:1b:99:f0:94:b9:94:27:32:ba:88:7f:
a1:3c:f5:3c:6e:94:cf:08:a6:e6:48:35:71:71:54:1f:c3:a4:
f2:fe:91:6b:92:67:04:d2:89:51:b4:3e:45:47:c5:5a:39:c4:
86:d6:8e:f8:10:52:f0:97:af:fb:b6:87:33:3c:dd:03:f7:3c:
90:3d:69:dd:9c:ae:bc:3b:37:a2:8c:18:1e:46:b2:0d:7e:a2:
68:b8:7d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:18:37 2025 by rpki-client