Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
File: HT0ETAkeiLgLSyaeu3lrPyRUS18.mft (raw, json)
Hash identifier: 9V5UwH4nTUq1OUd6NMySvjJsaf8J19oLcpTFWmyHIB8=
Subject key identifier: F2:A5:46:8A:7B:0F:D5:C6:A4:FA:D4:7D:AC:1C:9C:68:EE:AA:7D:53
Authority key identifier: 1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F
Certificate issuer: /CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f
Certificate serial: 019A51505CEF3F929DE53EF752E92E138437
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
Manifest number: 07A3
Signing time: Wed 05 Nov 2025 00:00:12 +0000
Manifest this update: Wed 05 Nov 2025 00:00:12 +0000
Manifest next update: Thu 06 Nov 2025 00:00:12 +0000
Files and hashes: 1: HT0ETAkeiLgLSyaeu3lrPyRUS18.crl (hash: eMsX1w+1Mq9NrKAlDtiYzo0lxPYOvY35iIyBa2Ga1JQ=)
2: NW7G420E0Tk7pMi-UVKL9EO5zTA.roa (hash: Q3IRZsTEhDqe1ExEIgIekgobeYaG4FmT5pyujXNfnVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:5c:ef:3f:92:9d:e5:3e:f7:52:e9:2e:13:84:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f
Validity
Not Before: Nov 5 00:00:12 2025 GMT
Not After : Nov 6 00:00:12 2025 GMT
Subject: CN=f2a5468a7b0fd5c6a4fad47dac1c9c68eeaa7d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:8b:94:50:db:a4:17:44:00:26:16:b5:9a:5f:
03:5d:7c:71:3c:ba:0d:2f:e7:b5:1c:1f:57:1f:11:
8b:ff:47:5f:54:ea:3e:d5:d8:29:f9:f5:05:08:fb:
68:69:43:e6:27:b0:b8:5b:09:bb:96:2a:33:05:cf:
eb:41:18:50:3c:f9:62:e9:d8:38:66:c6:d0:c6:ee:
cf:8e:27:ec:3f:28:0d:f2:f5:4a:4b:2b:c8:36:06:
87:6b:45:84:54:33:91:10:41:c9:4d:3f:ad:c6:6e:
3f:0c:04:d7:71:71:a7:7a:ed:39:fd:2e:1b:99:82:
53:08:66:b1:dc:5a:f9:21:42:d9:95:ee:16:c3:06:
a7:81:5f:de:5b:86:71:c4:ce:cc:d7:b2:23:6b:b9:
58:51:a5:7b:cb:3a:37:86:4b:d9:65:2c:57:16:4e:
37:09:4e:a4:a7:b9:9c:40:2c:c2:42:6b:5c:53:0e:
d7:16:7b:94:de:59:95:8d:91:df:61:28:94:1d:b7:
2f:02:2e:36:75:c4:84:a2:f5:f9:76:7d:2d:a5:ea:
92:f3:33:10:9d:ac:78:48:33:02:c7:36:94:42:a2:
2f:f5:16:ea:fa:25:58:ce:1e:ba:0e:9a:d5:c1:b8:
70:10:2e:75:14:6b:e3:8b:bd:6d:b6:74:25:e4:0c:
02:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A5:46:8A:7B:0F:D5:C6:A4:FA:D4:7D:AC:1C:9C:68:EE:AA:7D:53
X509v3 Authority Key Identifier:
keyid:1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:42:35:21:d5:ad:fd:d3:2e:5b:12:e5:03:84:61:89:81:88:
e4:7c:e7:d4:7f:10:cd:b6:4c:42:d0:67:5d:4c:9a:cf:89:68:
3d:9c:a7:98:fb:48:6d:f4:a2:ed:24:fb:ff:9f:c8:19:dd:cc:
11:89:81:d3:da:8b:97:00:df:33:2a:c0:6c:aa:91:a7:f4:e7:
4d:b2:d2:09:1c:79:cf:56:d9:bc:18:25:9f:87:c3:7b:f8:04:
8d:be:21:9a:85:7b:6f:74:50:e1:5b:49:72:b3:1b:80:fb:74:
f9:c1:79:93:0b:5f:18:3d:5c:f1:25:af:25:cc:47:b7:33:bf:
c4:57:08:e8:af:d9:4b:9e:51:b7:79:5f:c5:0a:90:49:c6:0b:
61:4d:99:90:e7:85:ed:16:03:85:7f:e9:2b:fa:f8:99:ee:2a:
a1:f5:56:52:f4:6d:76:da:ec:cf:d1:cf:61:fd:63:88:2a:7c:
7b:c7:e6:af:7b:09:18:7c:4a:0e:da:33:4d:19:15:89:83:eb:
22:65:59:55:b3:c3:07:44:70:93:78:02:27:81:3c:cd:8d:7e:
87:c2:d3:e7:1a:6c:cc:58:4a:c2:4c:be:c9:50:a8:ce:ad:4b:
c9:07:c7:ef:de:3e:f2:4c:f9:e4:8e:05:1f:ce:e4:8b:61:ca:
09:e4:7b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:19:10 2025 by rpki-client