Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: Z5dNX93X3hwojlwryfqlvH2Ko0XI+pdKiVAODv4PWkE=
Subject key identifier: D6:74:3C:E4:01:B5:D4:09:A4:07:65:32:0A:30:25:F5:35:66:96:B9
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 019A503E4F0AC6AC1FEE158F906D3E4BFF21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 1142
Signing time: Tue 04 Nov 2025 19:00:52 +0000
Manifest this update: Tue 04 Nov 2025 19:00:52 +0000
Manifest next update: Wed 05 Nov 2025 19:00:52 +0000
Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: TmJVyFj5GbKwbKPTPj2krrFaKtVPwmFXjvNKcRfP1CU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:4f:0a:c6:ac:1f:ee:15:8f:90:6d:3e:4b:ff:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: Nov 4 19:00:52 2025 GMT
Not After : Nov 5 19:00:52 2025 GMT
Subject: CN=d6743ce401b5d409a40765320a3025f5356696b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:c8:a9:7a:fe:15:6d:bd:a3:09:78:7c:d8:31:
5a:92:22:20:a3:1f:b1:31:e7:b3:79:cf:20:51:95:
90:31:d1:cd:6c:7c:15:3f:8a:4a:a4:c8:38:e6:94:
d6:32:b8:85:22:c1:f8:1c:46:7d:0d:10:09:27:c2:
2d:24:a4:98:95:50:b2:f4:e2:14:c9:fd:3a:7d:7b:
2d:2d:03:24:e7:64:d8:c5:ae:39:7e:6d:4a:05:6e:
dc:13:ef:9a:70:31:53:df:61:0a:03:e9:17:45:35:
64:f2:de:09:cc:02:c0:0b:55:52:31:27:18:41:b1:
de:d4:0c:f5:76:eb:30:7c:ff:ec:70:6f:ae:78:06:
34:e5:22:28:9f:5b:b4:fe:20:d8:b7:39:f4:84:a7:
71:20:a4:ac:8c:fe:84:12:24:72:75:b1:39:78:29:
9e:49:9d:4c:f9:ad:52:c0:92:e6:ca:f0:6d:57:e5:
2d:f5:3e:7b:56:d4:12:c8:15:36:af:b9:fd:34:35:
1e:a1:a5:3f:bb:5e:f9:e6:89:18:0c:67:db:8a:ea:
2e:63:76:5e:8d:f8:b6:eb:1c:d4:40:0f:02:03:0e:
dc:e7:f7:01:6c:43:2f:e1:d4:9e:29:80:3e:a6:6a:
13:b2:d6:88:12:9a:b3:da:47:3f:13:9e:ef:9d:98:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:74:3C:E4:01:B5:D4:09:A4:07:65:32:0A:30:25:F5:35:66:96:B9
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:8c:1f:6a:87:88:ce:6e:9a:24:34:34:28:5c:85:48:9b:ea:
e7:0f:85:a0:47:d5:27:39:b0:68:f9:71:d3:af:b5:4a:5f:a1:
be:3b:55:28:61:26:1c:3d:5b:03:4c:bd:00:a0:71:1e:44:dd:
46:8a:6b:ea:84:83:18:52:20:95:4f:14:c9:6f:73:f4:a7:9d:
18:2d:f4:65:54:ae:0c:2b:d9:21:0d:94:60:4d:fa:89:41:30:
28:99:91:77:3b:81:61:6e:06:b2:a4:e8:31:13:e0:17:63:83:
ef:a4:32:92:e4:ed:bf:c8:4f:f7:4a:83:85:e5:40:a2:79:a6:
26:ed:86:a6:69:1f:66:b5:ea:56:01:2f:99:97:c2:2d:20:a5:
d0:42:6b:c2:08:0d:28:95:b0:69:5c:5b:df:80:11:20:43:c3:
2a:62:a7:8b:4e:ae:cf:93:9d:33:e9:21:b2:d6:9f:c3:1b:54:
22:4c:a4:40:85:59:b6:9c:3b:c0:1e:00:9d:28:24:08:b4:2d:
78:2d:52:cf:18:b1:3b:5f:74:08:df:c2:06:ac:3e:21:1a:58:
35:e9:75:c7:84:d6:ba:2a:50:cb:72:f9:64:64:bd:40:d3:34:
4e:10:1f:ed:31:0a:6b:02:a2:6b:80:50:7e:8a:2c:b6:03:22:
f7:a7:88:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:57:00 2025 by rpki-client