Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: Czi2TDXDtcK5fKy/m8LahjLW6AG7fnOc6p8lmygVqq0=
Subject key identifier: 6F:5F:4A:46:A9:5E:E8:9D:97:1F:6C:74:40:54:B5:B2:EB:31:A1:73
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 019A500767637A5F028BB772DE2D5CB974D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 16A1
Signing time: Tue 04 Nov 2025 18:00:53 +0000
Manifest this update: Tue 04 Nov 2025 18:00:53 +0000
Manifest next update: Wed 05 Nov 2025 18:00:53 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: OxG6/KFQEaSwLFiZTquAt+tN2bv9y6ALqcCzBmKHe4g=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:67:63:7a:5f:02:8b:b7:72:de:2d:5c:b9:74:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Nov 4 18:00:53 2025 GMT
Not After : Nov 5 18:00:53 2025 GMT
Subject: CN=6f5f4a46a95ee89d971f6c744054b5b2eb31a173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:40:bf:0c:59:aa:36:3b:2b:fa:df:85:e3:9b:
23:db:c5:8e:d5:40:f9:ff:c5:1c:9a:c2:cd:2a:63:
0e:d3:66:9e:04:e1:31:21:86:b0:22:df:bd:a3:c6:
27:86:62:93:b8:a8:fd:ee:1a:95:58:ad:d8:09:bf:
5a:1a:b5:ff:99:99:4d:80:15:ce:3e:23:89:10:71:
31:2d:8a:6f:39:28:bb:15:de:69:05:33:24:69:4f:
2a:c7:56:b2:8e:4b:c4:21:20:77:79:8a:aa:d0:47:
e9:53:38:3b:bb:55:5e:8f:9e:07:b2:5f:7b:b7:37:
82:58:97:02:04:79:7f:23:2c:3c:96:32:28:56:03:
ee:ef:9b:e1:07:d1:72:e0:3c:61:96:d1:6e:37:8b:
e1:35:c3:87:d2:75:31:cf:b1:67:96:c9:66:13:d6:
6d:63:17:84:cf:f0:26:fd:5b:95:8d:10:46:dd:09:
ef:8e:70:e7:e5:b6:04:af:65:5d:54:c9:0f:b2:20:
e5:b0:e5:eb:8a:6d:1b:89:e3:2c:32:bf:3a:d9:56:
23:96:c1:61:dc:35:7d:b6:56:d7:cd:7a:12:ac:3a:
23:14:1c:4e:54:21:f9:c6:21:fb:40:ad:66:90:b4:
0e:f1:65:cc:16:7c:ff:f2:c2:43:cf:8f:6e:58:88:
89:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5F:4A:46:A9:5E:E8:9D:97:1F:6C:74:40:54:B5:B2:EB:31:A1:73
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:fd:9f:f1:06:6f:65:79:a3:bd:9d:c1:ba:28:95:41:fe:df:
8f:c9:2c:bc:bd:f1:94:f4:c1:7f:c7:91:44:a5:7d:ed:5e:87:
ff:12:88:be:c7:39:82:4f:34:31:42:9b:9b:11:51:c8:ae:4a:
d5:81:08:43:e5:5e:36:ea:27:5e:03:ab:7a:8c:2f:21:be:f2:
64:a9:86:40:52:cc:a7:a0:b1:d0:b3:f9:c0:b8:43:0f:53:13:
a2:e0:48:fa:65:0d:f1:74:a7:98:00:5e:9e:09:72:b6:35:95:
2a:90:21:3a:5e:39:de:cc:91:92:12:40:b1:4e:30:71:2d:40:
25:99:56:f3:f2:13:37:5d:ba:f5:a5:fa:0a:85:01:33:90:2a:
15:dd:be:b2:e9:18:cc:fc:1b:e2:62:2b:7a:61:02:8d:4e:eb:
a9:9a:c5:50:83:1b:9f:60:41:f8:91:26:f8:72:05:0e:5a:49:
ee:ab:47:7e:54:04:f7:18:da:3b:21:bd:f9:a5:60:8e:f7:9c:
a8:a3:d7:a8:65:c2:e4:3b:32:f7:9a:4c:8f:96:49:1a:84:3c:
39:7e:9f:63:45:79:cc:26:64:85:a7:69:e1:12:d9:c2:dd:cd:
b7:dc:f0:ec:40:e0:83:96:03:7f:69:3e:97:34:5b:5a:c5:87:
9f:ca:06:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:32:18 2025 by rpki-client