Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: iq1KdA9Y13ChowZpK3DUz9Lg9ohJqIfdQhu2HMSl4ho=
Subject key identifier: 4A:B8:8D:CF:C4:14:43:FB:BE:2C:9C:E3:68:58:99:22:C5:C4:80:CA
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 019A4EF5AE99155A0FCC6D6433647BA983DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 120C
Signing time: Tue 04 Nov 2025 13:01:55 +0000
Manifest this update: Tue 04 Nov 2025 13:01:55 +0000
Manifest next update: Wed 05 Nov 2025 13:01:55 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: I6XiJ0Zto8ewXYH/tfS4knbOsM4/5T1klA0xB/Shrq8=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:ae:99:15:5a:0f:cc:6d:64:33:64:7b:a9:83:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: Nov 4 13:01:55 2025 GMT
Not After : Nov 5 13:01:55 2025 GMT
Subject: CN=4ab88dcfc41443fbbe2c9ce368589922c5c480ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:ee:e7:4f:b4:01:25:84:3b:09:d9:49:6e:
b4:c1:a5:d7:33:7c:8f:bf:4c:d2:2e:5b:6b:be:3a:
c4:12:23:74:ef:28:21:d1:80:db:54:27:4b:dd:73:
60:ed:2c:14:45:8f:22:35:2a:01:09:9c:1f:de:3d:
0f:de:32:d7:51:bc:87:c4:c0:a3:bf:6f:e3:34:ce:
d3:50:2f:71:64:e7:4a:c2:b3:96:e3:28:85:2c:66:
8c:fa:7b:21:64:e1:a3:0c:7e:a8:94:17:f7:ab:40:
3b:c9:4e:20:9c:47:19:ed:5f:d6:2f:c7:bc:75:bc:
85:8c:5b:be:96:0e:a9:83:bb:f6:dc:af:a3:54:cc:
c7:6b:6f:0b:ed:ed:ea:d2:c7:06:62:84:fd:25:48:
16:fb:93:6f:97:70:ab:bb:58:3d:34:8e:e9:cf:9b:
ec:74:58:12:e6:6a:56:6a:77:d3:71:75:cd:fe:1f:
b4:c3:e3:7e:dc:dd:56:b8:9d:c2:f2:25:70:4f:4f:
c2:05:04:0c:99:e7:89:d1:38:6b:62:a2:05:db:d1:
bb:17:66:a2:66:90:d3:1c:ae:49:c1:10:c2:f8:db:
6d:df:a7:71:7b:16:48:df:a9:74:ef:d5:8b:f3:96:
8e:7b:fd:96:e9:e2:97:a3:01:d7:de:50:f2:b1:54:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B8:8D:CF:C4:14:43:FB:BE:2C:9C:E3:68:58:99:22:C5:C4:80:CA
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:39:1e:29:9d:a8:9a:44:42:13:2e:f4:9e:e5:c9:fd:5a:9c:
e4:6c:5c:39:5e:26:fa:86:58:f1:95:9d:b6:57:57:46:c3:59:
a6:6d:93:85:04:b1:63:fb:fa:c8:c5:eb:36:61:0c:fa:ea:cd:
cf:94:16:f9:8d:1e:4b:4c:b4:47:ab:df:dd:6b:22:60:f7:d6:
5e:92:8d:d6:8f:00:7f:fd:29:35:7f:22:d5:25:b2:c5:c1:ff:
76:a4:13:dd:f7:ef:1a:fd:f3:2d:14:57:f7:12:81:4c:d0:ad:
28:2d:14:db:88:df:4c:6a:0d:3d:fd:3d:9f:fa:a8:e0:8a:5a:
fb:bd:12:a4:46:10:2c:0c:42:77:1b:8e:7b:3a:32:26:93:9d:
94:07:b5:78:7d:00:33:91:70:41:63:12:f7:21:70:0d:e3:3a:
3d:c4:3e:cd:3d:b4:ab:1f:e6:57:5b:9b:65:a6:b3:bf:69:fa:
b6:e1:07:74:c8:ff:72:44:0d:ec:9a:34:4c:32:c1:6a:2d:1e:
b1:c9:2b:4d:93:b8:25:f4:0d:be:42:d8:be:06:d8:47:45:ad:
f9:39:2d:91:0b:86:bd:5e:77:a9:f5:9d:4c:c9:b0:d5:89:b2:
4a:29:d4:cb:94:30:e9:5c:ba:26:58:26:f5:60:36:2a:38:0d:
ea:66:bc:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:43 2025 by rpki-client