Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: HbancGKAn51Rq+REGCxEs0Jh3zCNpWNpHIepHuezxzo=
Subject key identifier: 0A:5E:B2:D6:53:31:A0:5A:D5:94:25:69:BA:4E:E7:FF:7B:D1:70:7B
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 019A4D3CB8FECF86DDF82A0E1AD605A1848E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0DF1
Signing time: Tue 04 Nov 2025 05:00:16 +0000
Manifest this update: Tue 04 Nov 2025 05:00:16 +0000
Manifest next update: Wed 05 Nov 2025 05:00:16 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: 8AvoOaUQ5hBS3niS+pyt69BMV9l8q8X5J5b0LBhkl1M=)
2: ackszuiJCTUVf3NL6BGlMWZR6mU.roa (hash: eS/ev9znkjBG3HaRk+tKGqjX3/CUPsNsHqj4Rs2K9+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:b8:fe:cf:86:dd:f8:2a:0e:1a:d6:05:a1:84:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: Nov 4 05:00:16 2025 GMT
Not After : Nov 5 05:00:16 2025 GMT
Subject: CN=0a5eb2d65331a05ad5942569ba4ee7ff7bd1707b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:20:e0:c2:20:86:64:88:8b:08:98:dd:a6:3c:
6b:05:7c:65:f8:9c:24:ac:ee:13:ad:18:72:d8:e2:
7b:ad:33:56:04:88:4f:40:72:a7:9a:bf:d8:85:ad:
30:0c:d5:e8:26:82:b0:bd:47:25:67:4d:38:6e:cc:
ea:d6:1d:f1:23:fd:12:33:21:33:08:eb:4b:af:d5:
ae:9a:0a:70:9b:a8:9e:b5:75:b4:d5:a0:30:ee:56:
b2:54:1e:5d:59:4d:79:2c:50:1d:4f:71:84:93:bb:
4c:17:d9:96:36:b3:98:3b:47:36:4c:88:cd:c3:6a:
2f:c0:c4:5c:cc:a9:04:49:43:e8:8e:63:0c:45:f6:
1b:5c:fb:70:a5:2e:18:bd:74:07:29:66:53:a5:d6:
4a:b2:2b:e7:2f:64:81:a8:58:8e:4e:a0:ca:88:a1:
e9:9e:aa:bf:55:99:9d:47:c5:10:fc:34:77:cc:c6:
63:a0:91:42:ee:38:ba:95:db:f7:ad:c8:86:46:c4:
d0:dc:9c:94:29:26:5e:41:c8:f2:4e:ab:51:4a:79:
12:41:d4:44:e5:ce:e0:3e:fa:51:1f:53:58:c4:7b:
77:20:fb:46:a3:6f:f1:b0:62:4f:24:df:ce:f2:98:
c6:ab:1c:b7:9e:ca:52:83:c7:c3:34:e7:67:52:99:
80:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5E:B2:D6:53:31:A0:5A:D5:94:25:69:BA:4E:E7:FF:7B:D1:70:7B
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:0a:f7:61:50:85:eb:3d:eb:62:f4:f2:cf:88:db:e8:f9:0c:
cc:e2:fc:a6:52:55:d1:78:87:74:13:97:db:42:17:04:0a:50:
f7:c4:26:eb:28:71:2d:9d:e5:2a:60:c8:2c:09:0d:29:a0:d1:
9d:f8:15:4e:78:ca:0c:9d:28:36:2c:36:79:41:d3:df:8d:f7:
e8:f0:a5:78:c1:af:79:6b:14:e2:af:ea:ab:0f:df:96:ae:ea:
2c:59:4c:71:cd:41:37:c9:8f:1e:83:af:0c:19:36:63:0a:54:
7e:74:7d:a4:ff:a8:c3:74:70:8d:fc:f1:84:19:94:80:fd:f2:
4c:00:9c:f2:51:f0:fc:8c:8e:e3:6e:5f:c1:4f:5a:b1:a9:64:
e4:f4:91:6b:4e:b6:07:b9:16:8a:5f:e8:ef:88:5f:a1:9a:34:
71:9e:6d:93:7a:a5:2e:be:cc:d8:82:9e:c4:2f:cb:be:d3:21:
5c:72:bb:c4:2a:da:b1:10:41:e2:f0:cc:51:8a:40:99:8e:51:
6b:5b:08:0e:40:26:4e:62:08:77:0b:50:e3:1b:26:66:95:1c:
21:16:dd:99:14:5f:ae:a0:4a:58:65:18:38:0e:d6:ba:c3:ec:
b4:c0:ac:3c:9b:3d:62:b1:5e:18:5f:ae:b8:64:c1:5f:c5:22:
17:33:c7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:11 2025 by rpki-client