Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: HhIXH2X/UqnyhxLxPG82snGEPg+Ui9aeWdHQFRKhaY0=
Subject key identifier: DD:48:DC:79:5D:79:F6:C6:A6:8A:7E:35:C9:70:BF:2A:DF:42:04:D0
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 019A51878F03C797E231408187FEA81CF08C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 145B
Signing time: Wed 05 Nov 2025 01:00:29 +0000
Manifest this update: Wed 05 Nov 2025 01:00:29 +0000
Manifest next update: Thu 06 Nov 2025 01:00:29 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: mUcYyBbUbv6/sLSZa8WT3D8NcAkGS1ZMIs6oTIKpFsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:8f:03:c7:97:e2:31:40:81:87:fe:a8:1c:f0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Nov 5 01:00:29 2025 GMT
Not After : Nov 6 01:00:29 2025 GMT
Subject: CN=dd48dc795d79f6c6a68a7e35c970bf2adf4204d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9e:a0:e6:32:44:43:f2:5b:d6:da:c2:3a:81:
07:05:4f:7f:81:c1:1a:11:63:06:71:c7:e9:bb:ef:
a6:50:99:bc:c4:4e:7d:af:17:bc:08:bd:c4:86:e8:
ca:78:f8:5d:f4:ed:7b:26:21:84:3f:55:e7:6c:c2:
a8:d4:5b:68:97:cd:7d:0e:0e:c0:40:5c:c3:b7:0f:
27:e1:49:21:53:9d:f3:73:fd:db:e3:bf:b2:e2:f4:
b3:ee:ba:a1:66:4c:0f:28:7a:f7:a1:67:6a:6f:6b:
a1:23:d3:f9:cc:4a:5e:27:43:4f:76:87:90:50:5f:
af:f4:49:44:1b:ca:e2:f8:34:b4:99:5b:a6:8c:a4:
94:b5:73:e9:78:d4:da:f9:3a:83:c1:f2:a1:75:cb:
19:cf:bd:5f:68:08:12:f7:9b:1d:24:38:d5:4a:bf:
d1:14:89:aa:a9:80:72:cc:bf:3d:7a:1c:d2:92:cf:
b5:18:ce:aa:97:28:59:f5:da:04:fd:c0:47:24:71:
a7:90:d0:4b:33:84:ed:d0:bc:78:a1:d9:fa:e8:ea:
3c:4b:a0:62:cb:8d:80:c1:86:7c:b4:8d:e8:16:45:
44:88:8e:78:fb:d5:1e:9d:9a:f8:e7:41:96:38:10:
69:63:95:c3:f2:59:db:0e:dc:e7:f1:b3:2b:22:c8:
3d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:48:DC:79:5D:79:F6:C6:A6:8A:7E:35:C9:70:BF:2A:DF:42:04:D0
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:d9:66:93:02:22:94:ad:97:76:5e:19:7a:09:6d:a7:0f:6c:
ae:17:c0:63:df:4b:a9:10:83:8b:44:9a:ce:42:fb:ef:3e:ef:
9d:4d:1e:29:c8:34:99:8f:72:ef:18:72:d5:b1:99:87:35:25:
d7:02:62:9f:6f:97:4c:77:c2:0f:bd:8c:3e:51:12:0a:65:58:
f6:bf:b1:21:6a:68:ea:f9:af:2b:07:34:59:ff:80:f6:9c:30:
40:40:5c:ed:0a:57:e4:b8:00:56:a0:d4:af:3a:7b:42:92:a0:
51:d7:1e:49:95:cb:30:ef:87:ec:b5:32:ee:80:ca:3d:2d:33:
5f:80:d6:fa:44:66:e9:50:4c:0d:24:6d:a7:02:76:4b:74:a5:
54:d1:59:81:8d:5b:7f:a5:7a:34:09:a3:1c:4b:07:60:11:5a:
34:8e:90:fa:d0:30:66:f2:60:18:33:36:5e:bd:f1:d4:1b:45:
b7:d0:52:d2:7e:b3:0a:a4:b0:58:fe:c3:fe:67:86:8e:34:3d:
30:01:8b:49:c0:57:4b:6c:f8:f9:ea:16:54:14:7f:88:8a:64:
e9:16:c2:ca:76:a4:7a:07:32:2f:ca:42:32:47:cf:24:e3:21:
82:10:44:18:84:6a:33:89:2f:21:18:cc:f6:64:b2:64:e2:51:
29:3d:4b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:40 2025 by rpki-client