Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
File: HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft (raw, json)
Hash identifier: t/P22tYsTqbHAnuKDiT25ofs1EfVZAKs9/M7giZBiLM=
Subject key identifier: 54:43:E2:06:1E:5A:65:38:79:9B:63:A9:23:5A:F7:3B:85:A8:F5:30
Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Certificate serial: 019A4EF4C757CFA2C8678845D654766515D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
Manifest number: 0787
Signing time: Tue 04 Nov 2025 13:00:55 +0000
Manifest this update: Tue 04 Nov 2025 13:00:55 +0000
Manifest next update: Wed 05 Nov 2025 13:00:55 +0000
Files and hashes: 1: HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl (hash: W7wBFkvfxe2mU+Q8oTEPeFZkHCtHE/rKLPQKz5u+A/I=)
2: bIBmhUC2WLWBXyi5VaCHLFuHkDs.roa (hash: F54YraMKL44U0jhJwgmaruTpnrxsP2uQrqeXw7OujLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:c7:57:cf:a2:c8:67:88:45:d6:54:76:65:15:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Validity
Not Before: Nov 4 13:00:55 2025 GMT
Not After : Nov 5 13:00:55 2025 GMT
Subject: CN=5443e2061e5a6538799b63a9235af73b85a8f530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:13:c3:4f:6c:f4:e9:7c:34:08:6d:39:8f:91:
55:f3:9c:34:13:c1:a5:da:01:8e:5d:2f:c4:e2:7d:
c0:db:33:a9:00:74:1e:6c:ab:64:e2:48:3c:e5:5c:
f9:b3:5c:6c:80:6e:5a:31:19:4f:50:6f:d3:4b:b0:
67:8c:33:4e:fa:8a:cf:d7:7a:1a:bb:9b:a5:72:16:
ac:e1:bd:fa:aa:e6:2e:aa:14:0d:82:73:a8:43:ea:
3b:16:c5:13:dd:63:fb:f1:63:c9:83:e5:ab:ec:f2:
8b:ac:86:dd:1b:d2:dd:33:8f:f9:1a:3c:a6:ce:6a:
a4:05:be:fb:cf:d8:9d:02:95:17:e4:b6:96:fa:41:
5e:69:ad:0e:76:41:b2:df:b7:6c:42:72:8a:ea:d9:
f6:16:02:e1:c4:f0:40:b2:5c:5d:99:bc:3a:00:d3:
eb:e3:e7:b6:4f:c1:be:31:60:27:10:57:e1:46:2b:
1a:3a:97:15:47:74:9e:a0:d3:fe:54:b5:84:24:91:
55:f7:dc:9f:e4:0b:c8:b9:4f:23:2e:1d:31:cb:f4:
09:5d:56:87:9d:77:fc:1b:19:5d:b2:b3:2c:83:69:
36:df:fc:c6:e1:a9:70:ac:8f:8d:32:e6:86:d9:b3:
51:90:33:a7:94:49:f2:83:fc:94:79:09:1d:59:be:
56:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:43:E2:06:1E:5A:65:38:79:9B:63:A9:23:5A:F7:3B:85:A8:F5:30
X509v3 Authority Key Identifier:
keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:c0:cc:0d:cc:de:b2:bb:16:4a:28:e7:b7:64:23:ab:96:5e:
7e:22:b4:6f:33:f0:88:b2:80:06:38:f1:ce:3b:ad:4f:0e:8c:
0d:13:ac:7e:ea:03:7c:06:57:20:04:09:a7:0a:ae:ed:8f:e8:
c7:27:ca:1d:3d:90:c4:d0:38:e3:68:5a:a7:35:64:be:a0:74:
f6:a3:d2:64:11:ce:90:9f:65:e0:f4:37:fa:4e:47:4e:da:aa:
98:5a:70:a5:2e:0d:ef:29:0f:e8:d1:8b:e2:e3:9e:c6:fd:f6:
f2:fa:0c:ac:3c:76:d2:40:f2:63:b6:f7:0a:4b:00:26:e4:92:
e0:a6:f4:8d:77:13:47:93:47:41:1f:c7:f0:9e:d6:7d:8b:00:
88:9f:63:38:35:4b:7a:36:88:f2:8a:93:8f:ba:0d:73:95:12:
5d:89:9f:4e:f3:11:02:30:d5:3f:93:4d:7f:a0:0b:a8:5a:20:
24:26:6a:fd:0f:33:d1:aa:24:a1:44:76:4e:e0:a8:fe:8d:c4:
1c:af:ce:25:7c:81:ad:62:33:bb:81:5d:c3:14:25:1d:aa:ec:
93:1b:b1:ab:a3:65:94:44:2e:75:79:84:dd:5e:10:1b:79:3d:
7f:86:11:2d:eb:43:ae:0a:3b:74:41:22:ad:49:c9:65:ab:11:
5d:b4:db:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:59 2025 by rpki-client