Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: AAVQs3y+ZloN8zysaW7wLIPM+PtMthKqN3H/lMXZAXw=
Subject key identifier: F5:64:66:4A:3E:73:2F:23:6C:8D:63:32:01:E5:71:F5:F1:38:65:69
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 019A503DF70DD0F8F529DAF10BB5A18264FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 0323
Signing time: Tue 04 Nov 2025 19:00:29 +0000
Manifest this update: Tue 04 Nov 2025 19:00:29 +0000
Manifest next update: Wed 05 Nov 2025 19:00:29 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: rV88aFB3tunna1Swf7nzy8in+iDaXw84+FtBJC04jQY=)
2: aMYTDoy-atROFcdvcAZ3DJlPN5M.roa (hash: xs/811bK0GOCRDo/JHIlphnjgoQcSZGktyUSLqywPok=)
3: hc_WEE647lzFURB_xuAQSI93cMk.roa (hash: dEd68WTNgomGf/knb8KdzL0EdhKoQSwJyVCrqzwbNzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:f7:0d:d0:f8:f5:29:da:f1:0b:b5:a1:82:64:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Nov 4 19:00:29 2025 GMT
Not After : Nov 5 19:00:29 2025 GMT
Subject: CN=f564664a3e732f236c8d633201e571f5f1386569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d6:cc:17:9d:f9:6e:23:98:22:40:fd:1c:4a:
7c:5b:fd:ab:09:2a:cf:15:cc:e8:6e:03:4c:b5:37:
6f:fe:c8:ea:85:a3:05:ff:b2:65:be:38:17:09:63:
b4:2a:e8:81:7b:0d:65:b3:14:bf:63:82:f8:15:45:
df:a7:54:15:51:db:09:53:db:0e:0b:06:ea:83:58:
d6:bf:8a:4d:8c:e6:eb:f4:be:62:a6:ea:6d:9c:fc:
89:a6:2e:0e:d4:de:2a:6a:f5:10:d8:36:45:0d:35:
16:fc:9e:3f:9c:e7:30:06:8b:4a:85:27:88:c8:a3:
d8:42:1d:84:28:be:bb:74:fe:33:00:2d:40:29:0e:
0e:7c:61:d0:e6:7f:4d:76:d6:c0:2c:9f:03:dc:0f:
29:87:ad:bb:90:93:f1:69:61:c2:35:e0:18:a0:89:
1c:46:ef:26:cc:88:27:89:04:65:cd:75:a4:ac:f0:
76:4f:ab:8c:7e:be:4a:60:ad:0b:13:f7:76:1b:de:
d0:3e:f9:a0:9f:06:01:54:b7:b1:ec:1a:04:f2:6c:
ae:1b:dd:77:7d:b9:ed:5a:bc:78:ee:30:48:ec:e6:
b7:fe:f0:5c:d0:6d:6c:b2:44:ae:3e:c7:cb:4c:65:
97:f3:9d:4a:5e:53:fd:05:47:2c:41:39:cc:7c:88:
d5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:64:66:4A:3E:73:2F:23:6C:8D:63:32:01:E5:71:F5:F1:38:65:69
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:49:9d:c5:d9:21:da:83:bc:17:2c:0b:2a:e6:ab:a5:1c:a2:
3b:92:92:bd:cd:18:1e:bb:61:8c:5a:ba:08:92:eb:f3:44:72:
cd:a1:10:4d:a6:53:d1:ab:82:df:28:bb:50:83:d0:ae:8b:40:
dc:1b:11:be:ef:63:95:6b:2d:6c:2c:e0:91:d7:d4:72:c5:cb:
78:98:bd:11:89:e1:ed:7b:ff:be:d9:75:a8:ec:e7:2e:47:e8:
c5:e2:c9:77:b0:a7:40:15:d9:30:3b:ac:e5:35:1e:2c:cf:8f:
56:c0:6b:07:e2:b5:48:f2:67:f0:50:2a:60:d5:ca:83:21:1a:
b1:30:f8:52:5e:62:d1:d4:2a:c2:1b:23:ee:eb:37:9f:cd:ca:
6f:af:95:dc:c8:c1:32:f2:6e:d8:53:c3:5c:38:c4:b6:2c:65:
2d:d3:3c:6f:cd:8c:1f:c2:6a:eb:e2:8f:7a:a7:cc:06:62:b1:
2c:ed:5a:60:fd:f0:d9:5f:0a:34:4b:b5:f6:85:d9:82:bc:f5:
93:36:ff:0a:75:a5:30:7b:27:4c:6a:63:74:f5:da:5c:fc:44:
ca:ee:0d:01:52:8c:2a:48:81:ef:dc:c6:00:f5:db:37:36:e5:
cc:52:b2:b6:82:dd:fa:66:4e:f9:12:f0:2e:ba:fb:de:e3:a5:
69:96:ba:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:37:35 2025 by rpki-client