Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
File: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft (raw, json)
Hash identifier: U2i0pjFcB4xT9G/qor33J7cHqCIOF6JZJDZ7i21WCKc=
Subject key identifier: 9A:DF:41:A5:C1:7A:15:51:AC:FD:EB:40:D3:83:93:17:79:59:98:B0
Authority key identifier: 86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
Certificate issuer: /CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Certificate serial: 019A4EF4C6E088ECD250FCADA513AF1A1F8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
Manifest number: 07D2
Signing time: Tue 04 Nov 2025 13:00:55 +0000
Manifest this update: Tue 04 Nov 2025 13:00:55 +0000
Manifest next update: Wed 05 Nov 2025 13:00:55 +0000
Files and hashes: 1: 6rszyN8yZZcIFadBDy7iWBsKHqI.roa (hash: dWt4x4jxo9KCoGxn2Sm9VBzQBMC43sDUxeYLn9feg7U=)
2: hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl (hash: BdFb8HIU0hnsOaDDY0EyATW4yQgS7nBKmmbZbT6/x0U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c6:e0:88:ec:d2:50:fc:ad:a5:13:af:1a:1f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8685e05d80592c6cf11320eb5029cac04a4d9bb4
Validity
Not Before: Nov 4 13:00:55 2025 GMT
Not After : Nov 5 13:00:55 2025 GMT
Subject: CN=9adf41a5c17a1551acfdeb40d3839317795998b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e2:1a:74:31:49:d1:4e:1a:8f:a1:73:4a:40:
bd:aa:88:0a:c7:1f:92:dd:72:99:f9:05:0c:3a:3c:
ae:d4:b0:3b:22:65:7a:fc:d0:e4:a1:be:93:77:e2:
5b:a6:47:6f:47:f4:fe:8e:83:6d:e3:0a:e1:e3:2e:
77:c4:da:a8:ad:64:0a:1d:6c:93:79:da:45:f9:b0:
36:b0:39:18:61:3c:7b:11:38:7e:e9:32:08:00:bf:
93:04:af:fc:f9:0d:7b:42:4d:2e:96:d5:79:c6:55:
ec:c7:c3:49:a0:a5:1d:29:60:5f:44:6e:8d:4e:96:
80:83:b2:da:b3:91:8c:e6:d6:f4:ae:0b:ee:e1:24:
91:12:66:ac:59:d1:de:48:ff:66:27:af:51:32:8b:
ca:51:7b:b8:06:38:d4:78:8b:8d:fa:bb:6a:1c:d4:
ee:e3:2b:29:a2:13:7b:c0:5d:ee:4f:18:39:59:a9:
3b:19:02:5d:c9:9c:e2:44:fd:c9:23:1c:c8:ce:d6:
41:2a:70:df:32:95:1e:27:1f:20:6d:c3:7f:84:be:
79:1d:37:7b:c6:0d:17:75:34:b4:9f:85:f5:59:42:
f6:bf:b1:1f:d2:e8:94:d1:b1:fa:48:90:09:7b:0f:
d5:9c:02:46:7c:b4:1f:e8:32:d0:ed:f8:85:a6:f8:
51:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:DF:41:A5:C1:7A:15:51:AC:FD:EB:40:D3:83:93:17:79:59:98:B0
X509v3 Authority Key Identifier:
keyid:86:85:E0:5D:80:59:2C:6C:F1:13:20:EB:50:29:CA:C0:4A:4D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/b544d5-fefa-4240-bf40-68ef24cf5ef9/1/hoXgXYBZLGzxEyDrUCnKwEpNm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:bb:fe:bd:a2:a4:43:44:e7:36:de:d9:e2:10:7a:84:83:cd:
fe:19:28:55:ff:2a:8e:73:34:ea:3a:7c:e7:92:38:f4:09:06:
a2:0d:ea:7a:12:26:0c:45:c0:f9:ba:b0:f7:90:fc:31:0d:3e:
39:db:e5:51:3d:07:7e:f3:d7:88:3e:8d:81:b0:18:0b:93:b6:
62:7a:49:57:32:6e:7f:1b:7a:20:55:cf:f0:8e:ff:9b:91:b3:
8a:8c:f0:e6:a4:6b:e4:b3:30:e7:99:33:7d:86:b5:fe:e2:9d:
74:e8:fb:1f:d7:66:86:60:9f:3b:52:35:46:68:ba:0a:bf:49:
7b:11:b7:64:94:08:58:b7:f4:fc:26:56:e0:90:6f:f2:3e:28:
67:48:98:94:57:31:4e:e3:08:59:94:5a:02:bf:ba:14:45:ec:
c0:f6:e3:09:bc:81:7b:13:fd:24:4d:ce:b0:de:74:95:78:fc:
c1:85:ae:6b:b2:40:4e:49:c9:a6:eb:67:1d:40:e3:5d:51:4b:
d8:d7:da:d5:6c:d8:80:2e:26:1f:0c:9c:1a:da:7e:49:c4:50:
59:06:3f:6e:24:96:be:e2:30:bb:f7:e5:d3:26:f8:93:a2:8b:
9b:38:61:f6:b2:0d:db:16:0e:ac:c6:9d:f0:f4:6e:b6:45:d1:
fc:c8:27:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:15:21 2025 by rpki-client