Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
File: HpKJoBWvREH4-d9MjFXpiykogc8.mft (raw, json)
Hash identifier: IrGHvTaXVwt41lwJlInUCxPD4r9HcsTWwz5Qdl7X9+k=
Subject key identifier: 62:FD:4A:8C:5B:64:4B:11:90:34:53:06:A9:65:BF:90:AA:2B:9B:90
Authority key identifier: 1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
Certificate issuer: /CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Certificate serial: 019A4EF54E62BD5559D6278D1ABB1132AE3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 13:01:30 +0000
Manifest this update: Tue 04 Nov 2025 13:01:30 +0000
Manifest next update: Wed 05 Nov 2025 13:01:30 +0000
Files and hashes: 1: HpKJoBWvREH4-d9MjFXpiykogc8.crl (hash: bcZPNirj2fl28Q0Q7WnMp/rHma84HshLEgEKNw/j3nc=)
2: NgTdB5AEPD4DAHaTIZRq0754ZYU.roa (hash: X0ljVmj2cD5On812FnYT4pXdeEcEXod3j6IYZXkhhSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:4e:62:bd:55:59:d6:27:8d:1a:bb:11:32:ae:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Validity
Not Before: Nov 4 13:01:30 2025 GMT
Not After : Nov 5 13:01:30 2025 GMT
Subject: CN=62fd4a8c5b644b1190345306a965bf90aa2b9b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:77:cf:29:d3:6e:0b:15:61:fa:5a:1c:64:df:
39:3a:d0:88:d8:0b:50:7c:a4:a9:47:95:1a:d9:5b:
7d:65:08:b6:a9:7b:ff:cb:95:bd:48:93:9a:49:93:
85:17:0d:4b:54:44:f7:42:d2:15:26:75:97:ae:e2:
25:46:28:9a:db:4b:64:e6:2b:5d:98:16:35:af:15:
e9:3d:b5:56:99:41:d6:ac:98:2b:5f:21:09:bf:e8:
49:10:99:b5:c0:f0:c4:21:ef:62:a9:53:2e:4a:db:
bb:cf:e7:fe:ea:2e:d3:55:1e:28:0a:0f:7f:bc:95:
4d:a6:f6:88:c8:bc:6a:14:85:0c:84:bb:5f:a9:fb:
80:c2:bd:44:ec:1f:19:b5:1b:d8:26:1f:4b:2a:3d:
8b:d6:34:11:04:c0:85:04:cf:5d:c9:00:bb:7f:c0:
2b:00:27:ac:fa:47:64:6e:a3:d7:81:89:d8:51:b0:
92:04:5f:a3:5b:74:41:70:bc:f1:e1:43:94:c9:fd:
35:3d:9a:ca:3a:8b:5f:cd:fa:1e:86:3f:48:ab:af:
ba:f2:82:f3:f0:ca:74:5a:59:d0:2c:38:7c:31:66:
60:66:1b:bf:f9:35:48:f4:b4:61:5f:14:8c:78:1c:
c3:84:f5:e9:4a:f1:82:bd:c1:08:c6:55:10:6d:6e:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FD:4A:8C:5B:64:4B:11:90:34:53:06:A9:65:BF:90:AA:2B:9B:90
X509v3 Authority Key Identifier:
keyid:1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:b0:5e:c8:cb:45:d7:bf:39:fc:f3:e5:ef:07:c3:78:71:39:
60:64:14:70:8a:9e:af:dc:10:47:bd:1d:f9:8c:db:74:ec:56:
c6:d7:cf:e8:29:12:2e:a3:8d:63:41:f8:c1:0b:0f:31:2a:e7:
bc:b4:a3:83:2d:41:57:c4:50:f9:5e:8f:6c:98:9b:0a:83:25:
aa:a5:6f:73:7b:50:d7:30:4c:a2:96:8b:d1:1d:7c:80:30:6d:
fa:f2:36:7b:d5:fd:c8:a3:89:90:62:69:58:ef:1a:67:d4:47:
e6:52:7c:44:e5:4c:c7:69:d0:b4:54:28:06:98:77:56:19:44:
54:ee:83:cb:04:b3:38:40:e4:11:fc:7a:48:7a:52:e8:79:cf:
d0:30:99:6c:67:db:58:62:8d:77:cf:6a:2e:18:43:a3:0f:91:
48:7b:70:f9:3f:15:74:f6:b8:a2:20:41:9e:6c:af:b7:a4:7b:
aa:7c:ef:e1:53:00:eb:2a:b8:f6:20:0d:8b:09:9d:46:8a:35:
3c:82:33:56:ce:30:1e:f1:3e:40:97:45:f4:fe:56:ec:2c:61:
71:8d:b7:11:59:77:52:ab:fc:e0:64:77:b4:5a:ee:d0:05:9b:
69:23:54:24:5a:43:82:c3:d8:63:31:a3:34:0d:f6:14:c4:90:
69:56:d7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:24:27 2025 by rpki-client