Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: YO5anCJOU1BfsNdd24gNP6xusMXNk4xE/x19Msj6V7M=
Subject key identifier: 3B:48:CD:36:36:70:E2:61:12:EF:E4:EE:61:C9:F1:B6:86:49:3C:6E
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019A4EF5449B69EE529682CFC6C313B569C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0E92
Signing time: Tue 04 Nov 2025 13:01:27 +0000
Manifest this update: Tue 04 Nov 2025 13:01:27 +0000
Manifest next update: Wed 05 Nov 2025 13:01:27 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: Y4LXGrReR8/9pv65IM5d8Ib+18HpDyoXKA6H7GgDnos=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:44:9b:69:ee:52:96:82:cf:c6:c3:13:b5:69:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Nov 4 13:01:27 2025 GMT
Not After : Nov 5 13:01:27 2025 GMT
Subject: CN=3b48cd363670e26112efe4ee61c9f1b686493c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:99:33:ef:fb:e0:9f:00:b5:98:2b:ea:34:93:
a4:d5:01:8c:73:72:33:f8:ab:3a:63:35:a9:cc:28:
8e:d5:f6:a2:41:e0:61:da:f3:ff:86:fc:00:46:b2:
83:4b:1d:97:a9:7f:f4:67:34:01:e0:41:92:35:22:
fb:c5:67:a2:0b:7e:9c:18:35:eb:75:c1:d6:02:dd:
0f:bc:27:48:30:58:d6:0c:c2:cf:e3:d8:63:46:9f:
5c:f0:dd:0c:33:e0:9c:cc:d8:20:67:09:b3:25:fc:
bc:4b:8a:da:d7:e7:14:4c:0a:78:71:da:65:bd:65:
e4:ed:c2:7d:b0:e7:e9:e6:52:54:76:33:4e:9f:dd:
6e:d0:22:cd:ba:15:c8:8b:e5:c9:30:9f:92:01:5c:
a6:19:32:a8:66:71:14:33:04:50:16:12:f2:c8:14:
17:f2:d2:da:1d:66:29:1d:45:38:fe:7a:50:bb:22:
51:47:64:0c:e0:a7:2e:3f:4d:6d:83:ca:12:81:6f:
8b:66:78:db:aa:16:d2:27:b6:78:db:58:cf:86:df:
ca:31:b4:e2:b0:a6:79:c0:f2:be:7e:98:1c:67:ed:
af:d8:6b:4a:05:2d:e0:16:10:51:cf:aa:fd:e5:4c:
4c:3d:b4:27:a2:fa:ce:7e:60:7f:0a:cf:98:41:7a:
f9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:48:CD:36:36:70:E2:61:12:EF:E4:EE:61:C9:F1:B6:86:49:3C:6E
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f8:bd:25:9a:95:bf:5a:a4:9c:1a:64:8f:9f:fd:67:68:67:
14:20:51:be:ac:4a:4e:cb:41:5f:02:36:e0:01:08:c8:d9:2e:
e5:f0:f9:64:92:95:da:d5:b1:ae:ec:65:f5:51:4d:89:10:c6:
6f:dc:d6:e1:10:31:43:87:d5:45:21:78:1d:1d:d8:e9:06:51:
be:5d:44:05:0b:01:bf:ef:6b:b2:c5:0d:eb:26:76:1d:71:e0:
1f:ed:db:cb:c9:93:1d:e1:4b:02:57:34:80:c2:41:cc:90:67:
78:24:46:69:8c:22:31:70:fc:41:47:58:ee:5a:29:c1:cc:83:
75:b5:c1:e0:22:ff:bd:28:a7:ac:06:60:e4:c4:ec:dd:55:cb:
a1:32:8d:66:29:2f:25:21:0b:65:fe:04:a9:92:16:a7:f4:a8:
ec:7e:eb:ad:49:f6:30:9d:7b:8d:91:36:30:7d:0b:7a:6e:89:
d1:ba:3b:29:33:39:20:b0:e3:76:85:37:a9:e2:1c:86:47:6a:
2d:27:46:50:be:3d:f8:e8:6b:e6:a6:be:b1:67:b1:6b:7c:eb:
62:9d:fa:5c:57:de:73:5b:dc:81:e2:73:d5:46:cc:73:c4:14:
bc:1c:6d:83:07:f2:c5:6c:d4:e4:e7:17:a8:37:c4:ba:66:e9:
e4:78:58:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:27:29 2025 by rpki-client