Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
File: hWL0qJNlk83sba1-Ls8beb9lwFo.mft (raw, json)
Hash identifier: vAmq1Yl3GkjA9Xoufg8ko0W4AEpGA2mRnTHtEUfkkWo=
Subject key identifier: 6A:96:9B:C4:C9:69:BD:EE:A6:A2:E8:B0:0E:14:D1:0F:1D:12:D4:2F
Authority key identifier: 85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
Certificate issuer: /CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Certificate serial: 019A4E4FBDB0AE0289A6048EFC863BD03A56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
Manifest number: 15EF
Signing time: Tue 04 Nov 2025 10:00:39 +0000
Manifest this update: Tue 04 Nov 2025 10:00:39 +0000
Manifest next update: Wed 05 Nov 2025 10:00:39 +0000
Files and hashes: 1: AuqfHgJMLbox-SCvoHiOWVRxGtM.roa (hash: xeAvQlAlfgpUCdvO+zQfkKF/6NqDyXiaKSOgk2lfPWU=)
2: hWL0qJNlk83sba1-Ls8beb9lwFo.crl (hash: JApE3iE1Zqm/a9O5p3yU4Elq1RGt/rTOSZPFVLSIzS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:bd:b0:ae:02:89:a6:04:8e:fc:86:3b:d0:3a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a
Validity
Not Before: Nov 4 10:00:39 2025 GMT
Not After : Nov 5 10:00:39 2025 GMT
Subject: CN=6a969bc4c969bdeea6a2e8b00e14d10f1d12d42f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a8:c5:74:bd:51:db:c3:a9:22:26:71:c4:14:
be:a0:56:0e:b3:a4:dd:fc:07:9c:31:a0:91:2b:8b:
1d:62:59:87:7d:cc:64:be:c7:83:a8:ac:f8:dc:df:
b0:10:17:b4:fe:5e:9d:5c:d4:01:67:f1:86:2f:61:
a3:73:07:b1:45:4b:81:f8:73:7d:8c:c5:31:07:c6:
71:c0:81:f5:81:d2:7e:5b:6e:c3:8c:d7:66:be:13:
d8:8d:a9:e5:c6:56:19:da:6b:a2:2b:20:b4:8e:18:
5a:84:2b:de:7e:83:a8:98:dc:d1:a8:ad:b8:13:63:
b5:ec:a3:45:f6:cb:70:3e:52:6b:67:77:e6:24:4b:
7a:c5:51:f5:53:da:af:42:80:6d:b6:41:44:86:8f:
40:6f:ff:d7:00:49:b6:84:37:42:d2:91:15:b6:0a:
a7:94:db:31:92:4f:e3:17:bc:4c:fc:29:c0:8d:88:
89:71:9a:bc:5f:48:ef:d7:51:cf:5a:89:d8:1c:45:
bb:17:2e:7e:29:ae:af:d6:51:67:eb:d8:a8:d2:c8:
52:d6:8e:dd:cf:31:b1:ba:9b:cd:e0:52:a8:7c:7d:
a4:06:f4:c5:52:1b:cb:00:bd:19:ec:cb:92:86:9b:
6e:f7:c8:62:17:ff:27:6f:dc:c4:30:31:47:79:b1:
fb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:96:9B:C4:C9:69:BD:EE:A6:A2:E8:B0:0E:14:D1:0F:1D:12:D4:2F
X509v3 Authority Key Identifier:
keyid:85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:32:b6:96:72:bf:4e:49:ae:7e:eb:09:b9:4f:dd:c4:49:93:
51:30:b6:3b:2b:8d:8f:0d:61:31:fd:42:7d:75:ea:92:2e:09:
56:5a:0b:84:9f:64:9f:74:d3:ea:b4:2b:33:34:ac:fd:d7:ca:
e4:90:99:a9:6b:a0:d1:31:8b:a0:2d:01:77:7b:1d:c6:9b:bd:
71:3f:54:6e:3d:d5:87:ab:b8:bc:f5:b2:b2:8f:e9:27:bc:76:
ed:13:17:9e:7d:8b:9a:1c:de:b7:e5:dc:b5:0f:fc:dd:1e:72:
33:30:96:a6:a5:3c:be:53:af:05:32:ac:1e:39:21:5e:f3:fe:
e6:2c:c7:d9:bc:5e:78:81:b5:5f:ad:8d:7f:25:cd:d0:b6:34:
77:e9:f9:54:b0:c5:a4:69:ce:7a:fc:8f:00:08:8e:9e:10:7b:
f2:56:9d:20:87:c8:39:b0:a6:fa:1d:22:10:5e:70:98:c1:93:
d6:2f:72:d6:4f:48:3c:95:17:fe:90:10:27:cd:e9:56:d1:85:
22:d4:70:64:0a:9c:ba:aa:e7:9a:f8:70:6a:ac:2f:a6:f8:21:
2b:51:9e:e5:02:6b:ba:5d:ad:e0:b5:c6:d0:3d:f4:1c:5e:6a:
b4:6b:46:43:19:9c:2d:d1:ee:f0:3e:4a:fd:3a:2e:58:cb:89:
fa:09:51:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:50:58 2025 by rpki-client