Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json)
Hash identifier: UdFo18g4xU3SMBBNTTJZZS2ntfgapnbihjUTt3ENTHU=
Subject key identifier: 66:78:A9:09:DC:B5:F0:16:24:94:06:6D:01:5B:30:53:86:6D:BD:54
Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Certificate serial: 019A4D744987A9232FA313EE402B29B8040B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
Manifest number: 170A
Signing time: Tue 04 Nov 2025 06:00:57 +0000
Manifest this update: Tue 04 Nov 2025 06:00:57 +0000
Manifest next update: Wed 05 Nov 2025 06:00:57 +0000
Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: F4KpMOGUx7BtViBc8bvYk2DAEzVF6yGMlL39GJtG42Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:49:87:a9:23:2f:a3:13:ee:40:2b:29:b8:04:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f
Validity
Not Before: Nov 4 06:00:57 2025 GMT
Not After : Nov 5 06:00:57 2025 GMT
Subject: CN=6678a909dcb5f0162494066d015b3053866dbd54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:76:a4:7d:b4:31:c6:89:ab:a3:0a:f1:88:d7:
04:21:b6:41:fe:6e:09:04:22:c6:3d:a4:f6:79:7e:
bc:53:db:d7:e9:c8:e1:77:c3:a2:42:09:d5:20:bf:
0b:5d:50:c4:08:3e:cc:2b:4c:58:c4:f7:a8:8c:30:
ab:8c:29:df:fd:88:0e:f7:16:7e:ca:35:16:05:e7:
97:39:68:06:19:a4:9a:94:4d:27:e4:c4:e2:74:cd:
1c:67:73:d0:51:67:93:23:05:b9:c5:7f:66:d3:a9:
92:9f:1c:9b:56:fc:c5:b0:6a:94:92:e3:2c:1e:1b:
bd:7b:ba:2a:6f:41:ac:11:f2:25:57:f2:ab:af:55:
98:23:a2:5f:ca:44:f4:21:79:1c:6c:f4:d6:8d:e8:
dd:c3:ea:83:47:8f:eb:3a:9a:c5:f6:bc:4d:67:41:
b2:3e:e7:03:c2:56:fc:44:59:31:2a:ac:4c:40:e0:
59:05:b0:2f:da:65:62:bc:1e:a5:2c:f1:28:cc:1e:
dd:26:98:68:50:17:e9:cf:70:1b:33:5c:0b:aa:95:
f0:11:63:7b:23:7b:35:e4:a3:63:a2:02:d1:c4:ae:
f0:f1:0a:b8:a9:b8:a3:2a:c8:59:57:75:31:54:19:
b6:ed:9a:be:c8:37:b8:75:2a:4c:c3:56:d0:42:fa:
31:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:78:A9:09:DC:B5:F0:16:24:94:06:6D:01:5B:30:53:86:6D:BD:54
X509v3 Authority Key Identifier:
keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:96:b9:dd:55:33:15:b7:b5:87:2a:80:46:18:81:c9:60:e4:
d1:97:09:dc:2a:df:29:7f:85:4b:66:ba:a0:32:ff:86:22:e0:
b2:1f:e0:2e:47:16:b7:f9:02:51:7d:11:88:8a:71:ed:65:20:
91:ff:3e:e0:c6:21:59:07:56:f5:24:fa:6d:fe:cd:7c:8d:61:
0a:09:7e:ee:bf:a4:cf:11:fb:85:5d:49:9b:1f:2d:15:16:2b:
20:e3:a5:33:89:9e:1d:cc:87:70:de:f3:45:0e:30:d9:60:2b:
b9:19:93:42:c5:1e:bd:82:e2:06:74:52:e7:62:11:a5:dd:2b:
20:fc:11:9f:8f:a2:dc:b2:2c:57:79:a4:28:91:e7:a6:f5:93:
0c:92:0b:20:73:8e:13:44:75:d2:b1:9a:72:55:83:c8:4a:3a:
7f:3b:89:6a:6e:79:c8:a7:c2:2b:28:a5:37:f5:92:6d:8c:ff:
e3:2a:71:a2:64:6a:09:35:37:b4:f7:ba:e7:c2:f5:e8:bb:dc:
3d:c7:00:fa:60:d4:74:92:b7:7e:64:e6:69:d9:96:a3:15:2e:
1f:f0:c5:43:04:54:43:08:93:ae:83:af:bc:5e:09:9d:4f:74:
92:be:ed:c2:45:1f:41:7a:c3:3f:33:5d:91:02:e8:8e:93:17:
c1:1b:5d:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:56:03 2025 by rpki-client