Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: LkaclDuSIoGiGNSFS8R2IEar37FX19TPEjRuMzuaH5c=
Subject key identifier: E1:10:81:1F:D1:6B:EC:0D:88:A8:63:B9:CB:01:2A:83:6C:8F:2A:F5
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 019A4F625DB212800039743249DC11EE4D8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0B42
Signing time: Tue 04 Nov 2025 15:00:37 +0000
Manifest this update: Tue 04 Nov 2025 15:00:37 +0000
Manifest next update: Wed 05 Nov 2025 15:00:37 +0000
Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: yAoCptNwyXeko7uqgO554yQDboYSRY/bS2Lkqp8mXe4=)
2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:5d:b2:12:80:00:39:74:32:49:dc:11:ee:4d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Nov 4 15:00:37 2025 GMT
Not After : Nov 5 15:00:37 2025 GMT
Subject: CN=e110811fd16bec0d88a863b9cb012a836c8f2af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d9:e6:0d:e4:11:7d:fd:0a:4d:29:35:0d:69:
2c:f7:88:2f:cf:aa:e4:fb:19:38:b9:bc:b5:78:59:
1e:27:f6:25:a2:fc:06:bf:45:ac:ce:e5:6a:cc:e2:
70:60:c5:6c:3a:87:d1:51:50:2e:c1:dd:a3:24:48:
93:df:58:48:d7:7b:da:5c:f1:82:3a:e1:bf:f9:89:
df:d9:a6:65:74:2c:13:36:77:6a:5e:83:3e:2a:e8:
66:77:09:bc:14:ed:ba:f0:ff:45:be:e2:82:e1:90:
fc:3f:c7:2a:f0:71:88:ac:62:4c:41:73:86:0b:36:
44:d9:d9:5f:c5:0e:e8:d4:76:fe:92:96:8c:29:44:
5e:a6:87:d8:f3:c1:69:bb:0e:7f:67:62:23:ef:66:
58:58:e1:75:41:0a:80:35:d6:db:25:82:a2:e4:04:
b2:47:3a:29:17:36:53:f6:e0:2f:13:b8:f9:16:e4:
14:29:a7:60:7d:76:ca:95:17:3e:f5:6c:1d:4f:71:
b8:2e:07:81:83:89:38:bf:8b:f5:8a:3e:4d:dd:d4:
62:37:ac:36:36:b2:e1:5a:95:b9:c0:aa:9b:01:25:
fa:68:89:3c:9e:3d:38:b4:5f:12:5c:1b:9a:3f:04:
a9:11:4a:de:0e:a3:2c:78:d3:b2:a5:a7:4b:d0:82:
03:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:10:81:1F:D1:6B:EC:0D:88:A8:63:B9:CB:01:2A:83:6C:8F:2A:F5
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:08:18:2f:c9:84:c8:23:47:37:c7:6a:52:4e:63:16:b5:50:
e6:03:9f:26:4e:35:32:7e:48:9b:3c:a3:52:38:51:6c:b7:ef:
40:4c:80:09:d0:94:80:81:dc:66:e8:08:7b:31:9c:6a:bc:e9:
83:a3:df:e4:87:6e:96:36:16:ad:98:bc:e1:f6:ee:f2:5c:f3:
92:4f:57:8e:ec:aa:2f:2d:80:ca:8b:03:58:9c:67:aa:f9:94:
90:bb:b6:32:a1:fc:3e:e0:6b:b9:a8:0c:fb:b6:a7:36:9d:3d:
f1:46:d4:9b:87:4a:5f:4c:b8:86:fa:b5:10:f1:e2:e9:07:6d:
2b:b8:98:fc:98:bd:bd:bf:f6:8a:7e:ea:e3:de:91:40:c8:22:
ed:0e:2d:85:3f:16:f8:35:b9:ee:85:6f:11:6b:0a:db:76:13:
ee:a2:2a:21:ad:78:86:c7:47:62:09:30:d7:18:d5:55:9c:74:
42:cc:73:1c:b1:1c:46:93:d6:0b:d9:85:69:27:57:97:de:d7:
69:3a:9f:a3:88:6d:37:62:9d:bd:4f:79:4f:46:33:46:4f:93:
9a:08:d6:ac:e1:bf:3a:12:f3:af:ff:d1:cb:29:73:0b:ee:87:
d9:eb:83:76:62:18:87:3d:97:5c:cb:9a:09:61:51:84:96:70:
55:59:d7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:44:01 2025 by rpki-client