Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
File: H2fPHKLeoy_NlwLdJRDra_K2hhA.mft (raw, json)
Hash identifier: gFuA3xhzNnS+DVG9v/hsIqt8Ywlo7GcekxNMUc+roUc=
Subject key identifier: 4D:AE:B3:9A:FE:F7:13:22:F5:FE:D8:72:1D:51:D3:D9:79:13:8B:67
Authority key identifier: 1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
Certificate issuer: /CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Certificate serial: 019A4D3CF7FFFD77A40BEDD354BC3622CA25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
Manifest number: 06AE
Signing time: Tue 04 Nov 2025 05:00:32 +0000
Manifest this update: Tue 04 Nov 2025 05:00:32 +0000
Manifest next update: Wed 05 Nov 2025 05:00:32 +0000
Files and hashes: 1: 39yFNcs_aiMECPSY8yer3c7rqfs.roa (hash: kt8DxoHHJV7b65racNqYI0+ZGEt7nNXcd8uoIQ2X++s=)
2: H2fPHKLeoy_NlwLdJRDra_K2hhA.crl (hash: MIzgNaFi93YkZHGHNRfknR6LBeMKESRdyMGItFBzf4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3c:f7:ff:fd:77:a4:0b:ed:d3:54:bc:36:22:ca:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Validity
Not Before: Nov 4 05:00:32 2025 GMT
Not After : Nov 5 05:00:32 2025 GMT
Subject: CN=4daeb39afef71322f5fed8721d51d3d979138b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:80:fc:0b:fb:fd:f2:68:e0:37:17:7d:e0:
bc:c1:7e:36:3d:5e:3d:a3:a6:a2:87:67:10:e9:0b:
c5:2b:d5:e8:34:2e:91:b1:e6:76:1d:b8:80:74:17:
b0:8b:2d:d9:4b:36:94:ae:65:46:3a:4b:ba:21:66:
7e:75:ff:aa:f9:a0:74:c9:95:55:06:16:21:fa:08:
4e:29:c7:9c:75:5f:b8:f3:c6:4e:24:fb:bf:81:ab:
25:29:b7:d4:55:79:a6:1b:62:26:7d:d7:e0:46:d7:
5d:4d:2a:3b:d6:c5:89:12:76:8a:03:b6:a3:3a:27:
0a:6d:bb:41:f0:95:13:6b:32:06:c9:17:91:f9:ac:
7c:00:73:ca:97:1d:12:69:7a:19:a1:40:10:da:87:
04:f2:e5:b9:d4:e3:70:98:2f:5e:81:97:b2:a2:66:
d6:7b:40:75:fd:95:40:e2:25:99:9d:d1:8e:09:19:
a0:c3:6c:7b:81:fb:5c:7b:95:22:ad:f4:92:c1:96:
39:a2:73:a2:7c:0c:cb:fe:90:71:45:06:6d:6f:88:
a3:6b:36:ed:d8:a6:25:ae:14:f5:38:75:6d:37:2e:
7b:84:39:aa:e3:5c:ec:a9:c8:4e:76:7a:56:f2:62:
07:ef:4f:30:e5:a8:c3:97:04:83:ba:bf:c7:bc:9a:
c2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AE:B3:9A:FE:F7:13:22:F5:FE:D8:72:1D:51:D3:D9:79:13:8B:67
X509v3 Authority Key Identifier:
keyid:1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:3a:69:11:e5:18:c4:1e:63:70:d6:6a:c9:12:11:96:3c:18:
f0:4f:20:0d:3a:0b:46:f1:d6:d3:73:64:bd:b9:60:72:30:3d:
c4:c5:1f:c4:30:a7:4a:cf:31:7b:00:2c:af:21:28:02:f2:e8:
2e:c6:52:7f:fa:5e:43:b5:a3:f3:84:82:cc:6d:8b:cc:5e:9f:
fd:a5:70:59:f4:9c:45:fe:d4:5f:ff:82:6d:de:1c:0e:c8:d3:
a2:11:12:db:e7:7d:28:13:28:48:8f:45:a4:06:c1:e0:57:88:
ba:4b:14:c4:c4:8f:09:90:92:ad:5a:28:9e:d5:24:68:7f:b1:
3b:7a:53:96:9d:0d:35:a8:25:0e:8c:23:63:1b:bb:b1:16:69:
7d:38:f3:7b:ba:7e:ff:e9:a2:76:e9:ba:18:06:c0:6b:6b:be:
fa:f2:5d:74:ec:39:9c:fa:a7:b9:83:0a:c6:74:15:ba:e7:4e:
d9:ba:dc:eb:57:ec:79:ba:3d:d4:4a:ac:ea:19:04:f5:cf:02:
7a:02:a4:1d:aa:c3:3c:ab:3e:1d:4a:86:f2:9e:15:1d:bb:62:
f7:d8:c8:89:d5:71:82:62:19:e9:c2:81:90:19:39:45:d7:bd:
8d:9a:40:de:f9:96:12:e3:65:77:97:1b:ff:2a:f4:83:25:8b:
80:6f:98:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:54 2025 by rpki-client