Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json)
Hash identifier: ATj8qRnp0KNCl4Ve0JB9d8cHU4bB+qFgElBeEkTOin4=
Subject key identifier: E2:E9:B2:E8:5A:2C:F6:7C:22:EF:DE:4A:42:F8:2D:B4:55:D7:12:CA
Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Certificate serial: 019A53082F0F5FC4F0AB0EAE43B173F3DCC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
Manifest number: 0826
Signing time: Wed 05 Nov 2025 08:00:36 +0000
Manifest this update: Wed 05 Nov 2025 08:00:36 +0000
Manifest next update: Thu 06 Nov 2025 08:00:36 +0000
Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: RkzhEZsRwH+r5UbCH8MWoJCy2YQTFKWG0Ek2FAtsdRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:2f:0f:5f:c4:f0:ab:0e:ae:43:b1:73:f3:dc:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8
Validity
Not Before: Nov 5 08:00:36 2025 GMT
Not After : Nov 6 08:00:36 2025 GMT
Subject: CN=e2e9b2e85a2cf67c22efde4a42f82db455d712ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7b:f5:3c:57:31:5b:ec:0e:39:a6:f2:c0:b1:
57:ed:31:d3:24:99:7a:f2:a2:e2:6d:93:66:cc:88:
8b:c3:eb:2e:e2:e9:0c:c8:c0:4b:f4:93:f0:81:e7:
76:ab:f2:87:cf:11:82:81:dc:a9:83:e2:0f:7e:59:
b6:c8:44:48:45:30:63:76:0a:85:c8:b7:dc:8f:69:
0d:fe:96:29:44:8f:47:3b:de:c6:75:7a:c1:73:96:
f1:59:67:36:a0:b2:17:c1:8c:e6:ac:b2:66:cf:88:
ee:3f:16:66:1d:ea:04:82:28:1c:58:23:f7:fe:65:
84:d4:e7:04:ae:52:2b:8b:e9:be:75:ca:85:4d:d7:
96:35:c8:00:1d:69:73:42:5f:27:29:5f:1a:1e:91:
df:2d:32:af:03:9e:7d:1f:79:08:d0:3a:91:43:ac:
32:8d:8b:be:4d:0c:a0:fd:65:45:80:fa:cf:02:bb:
43:fa:1c:0a:af:d8:8c:61:a8:ba:b5:81:95:12:3e:
18:2a:42:cb:8d:fa:89:c6:4f:ee:42:41:8a:d9:bd:
83:7b:01:f7:a4:73:16:61:83:d6:59:78:42:22:1e:
de:f2:e1:ad:32:72:84:d7:6c:a7:28:c0:05:05:8a:
06:a5:69:50:44:48:b0:dd:4d:cd:5a:50:77:30:fc:
88:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E9:B2:E8:5A:2C:F6:7C:22:EF:DE:4A:42:F8:2D:B4:55:D7:12:CA
X509v3 Authority Key Identifier:
keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e3:70:d4:78:22:2b:b4:93:ef:76:36:8d:3a:40:8f:98:5c:
3c:ad:97:94:7c:73:0b:03:7c:bf:0a:6f:73:94:f6:d9:8f:60:
f4:27:51:3f:9c:c3:c1:fb:35:80:e5:17:07:77:30:64:12:cd:
41:84:82:51:89:4c:9c:74:c2:55:96:75:13:77:76:54:f1:42:
b4:bd:53:94:bf:49:db:4e:d8:de:ef:01:31:ac:3d:cd:e0:cf:
7a:94:7e:9f:77:74:5b:13:3a:2d:e1:7b:26:e7:d6:17:ff:d3:
10:a1:26:a8:83:5a:55:c2:79:28:56:69:90:15:86:61:41:24:
5e:f3:38:9b:b3:92:25:d7:56:13:a7:97:64:1e:03:c5:ae:6a:
89:21:35:c5:f5:06:2d:93:18:ed:d2:69:b3:25:df:df:ef:10:
df:01:ac:54:7a:16:31:5b:20:80:f7:c7:65:67:e8:bb:ce:d7:
0c:18:8a:be:e3:2d:fa:c9:a3:42:a4:3f:07:8b:4c:89:18:f7:
6e:ec:95:85:18:03:e6:8e:2f:63:55:df:d8:f6:37:3c:c9:df:
31:72:25:64:1c:84:40:47:f8:ac:46:fa:de:ab:0b:67:5c:42:
08:05:d3:97:76:fa:84:4f:ce:97:4d:57:9c:b4:f8:c0:d6:9e:
e6:dd:1c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 14:06:19 2025 by rpki-client