Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
File: HAKBccHlLIrK1NspuS0hazMvAyA.mft (raw, json)
Hash identifier: Eq++KOsaPz1dfrx8g0yfXjyLFKCKOoVyYDWGsOiZ5gI=
Subject key identifier: 75:E9:66:BC:91:CA:92:AB:55:B0:83:BD:63:86:CD:DE:6E:4E:E9:B9
Authority key identifier: 1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
Certificate issuer: /CN=1c028171c1e52c8acad4db29b92d216b332f0320
Certificate serial: 019A515150C74025FB5D1FB906F884B249CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
Manifest number: 0185
Signing time: Wed 05 Nov 2025 00:01:14 +0000
Manifest this update: Wed 05 Nov 2025 00:01:14 +0000
Manifest next update: Thu 06 Nov 2025 00:01:14 +0000
Files and hashes: 1: HAKBccHlLIrK1NspuS0hazMvAyA.crl (hash: 8eXOv/+jh18HnDdDrc1AwrbI6Fu2lV+YkWNp2vwNzy0=)
2: XsdhFSN7DeTh4eI00BDD4_zttPw.roa (hash: tFKcPxfIMyOctJnt0bo6v620CjrP47cFED0TLnvjy0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:51:50:c7:40:25:fb:5d:1f:b9:06:f8:84:b2:49:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c028171c1e52c8acad4db29b92d216b332f0320
Validity
Not Before: Nov 5 00:01:14 2025 GMT
Not After : Nov 6 00:01:14 2025 GMT
Subject: CN=75e966bc91ca92ab55b083bd6386cdde6e4ee9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:87:be:f7:dc:0b:87:f9:29:f8:c4:89:7e:24:
dc:17:90:d4:25:d8:98:9f:d8:f3:8d:81:8f:a3:26:
ed:fb:38:a1:01:b7:09:ae:5b:68:45:ae:ce:62:86:
7b:af:d9:4e:8f:5b:ef:5f:a7:f6:ab:09:01:85:e5:
f8:f7:d7:8d:0a:82:46:78:44:92:5d:61:65:56:67:
5d:a8:07:e0:e5:5b:9d:dc:cf:30:d1:fb:81:f5:39:
58:da:73:b7:60:db:2b:52:f7:ad:20:19:ad:b0:68:
49:43:1a:1d:c9:af:c5:37:d0:80:60:4b:b8:57:71:
de:c9:2a:4c:f7:82:2e:6a:b2:80:19:35:c2:88:bd:
c9:89:b3:f7:84:c0:3e:1e:53:4b:c0:56:3c:11:03:
b7:ac:b3:f6:cb:9c:23:6f:87:0b:98:0d:39:b0:5e:
d1:8e:89:ce:91:5b:97:47:e6:41:87:d0:83:4b:f1:
1f:4a:8e:7b:56:1e:b4:a5:f7:97:fb:1b:50:a6:fb:
e5:c6:08:50:41:ca:af:1d:7e:7a:7c:11:f3:84:77:
23:4f:09:ca:67:9e:b9:ac:0f:51:38:1a:13:58:7b:
9b:5a:4e:f8:8f:19:13:e6:03:f3:94:cb:48:1f:11:
de:31:55:45:9b:68:60:13:bb:27:34:69:10:9b:e9:
a8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E9:66:BC:91:CA:92:AB:55:B0:83:BD:63:86:CD:DE:6E:4E:E9:B9
X509v3 Authority Key Identifier:
keyid:1C:02:81:71:C1:E5:2C:8A:CA:D4:DB:29:B9:2D:21:6B:33:2F:03:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAKBccHlLIrK1NspuS0hazMvAyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ff63ce-cf20-43e3-ad3f-64d1b2d56e95/1/HAKBccHlLIrK1NspuS0hazMvAyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ae:31:f3:22:a7:d0:8d:95:20:91:95:24:6e:ca:79:75:7f:
d9:2b:82:c9:7b:3b:cf:86:bc:9e:f2:29:24:94:45:6d:a0:d6:
28:d9:fb:0b:1b:67:75:65:89:92:41:bf:c1:76:27:c0:12:c8:
4f:ae:f5:ee:dc:b3:23:22:ee:43:a6:7b:9a:fe:3a:a5:5a:b8:
25:45:e6:58:33:09:e0:c5:77:89:8f:67:23:03:5a:6f:1a:e9:
ef:21:18:1f:f5:e1:5a:09:c6:e0:b3:da:b2:4e:bc:0a:c9:61:
5f:19:87:7d:6b:9a:79:23:32:2a:5e:96:62:95:07:29:64:79:
ea:4b:44:10:99:81:70:6f:9d:17:16:e6:d1:5a:2f:41:6b:bc:
7c:02:7e:d5:26:af:df:d4:95:18:35:72:42:a7:e8:bb:10:d6:
aa:cd:5a:04:d6:b3:2e:13:bc:47:98:85:2f:d4:f9:87:1e:df:
63:69:ea:75:9e:38:c7:e1:68:e3:00:60:16:49:72:56:10:67:
34:82:31:20:1a:06:ba:23:d1:18:a4:a1:f5:31:67:65:02:ea:
1c:75:4b:ba:0e:9c:ff:ac:0a:23:30:69:2f:91:10:5a:f9:73:
9d:4c:c6:0e:a3:ca:75:35:3a:d9:3c:53:1f:ca:3b:be:67:79:
e4:8b:8f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:45:22 2025 by rpki-client