Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: xHoa6rOVuZ3P33y+TFWjS2in/IPs8BlgqgodYW1KsFc=
Subject key identifier: 6F:BE:FC:7F:2C:69:08:05:F8:18:49:F4:59:27:E0:13:1D:08:5F:BD
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 0199FC213C0E1B71CBDEC80C84C296E95134
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1455
Signing time: Sun 19 Oct 2025 11:01:00 +0000
Manifest this update: Sun 19 Oct 2025 11:01:00 +0000
Manifest next update: Mon 20 Oct 2025 11:01:00 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: h+1IgLg1rg/tJ0fwqfd0nJhzMBA0jlBlmrtkNtvRUN0=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:3c:0e:1b:71:cb:de:c8:0c:84:c2:96:e9:51:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Oct 19 11:01:00 2025 GMT
Not After : Oct 20 11:01:00 2025 GMT
Subject: CN=6fbefc7f2c690805f81849f45927e0131d085fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fe:aa:f6:1a:1d:a7:0d:eb:42:ba:e3:ff:db:
01:5e:9b:d4:7c:cd:b3:97:78:d3:cd:b1:17:85:79:
86:ab:e8:c5:a0:b7:fb:be:e6:a2:55:da:0f:e3:f4:
1c:0a:48:50:65:4d:95:31:76:42:45:79:20:7e:01:
3b:2f:c5:be:a5:ff:ba:3b:d3:8d:3e:fa:54:58:cd:
0a:96:d5:ee:c9:cf:d7:88:1b:d1:7c:c5:1d:4f:31:
d8:38:3e:47:51:5e:2c:64:f5:09:4a:c3:6c:53:68:
d4:64:78:b0:c0:81:ac:e9:a1:2d:9f:b1:a1:9b:bb:
52:bb:99:3d:76:c7:74:56:3c:4c:0e:54:0c:0f:b3:
ac:27:e5:ca:72:d8:ed:55:e3:15:04:7a:be:18:72:
4a:ba:02:e4:c7:89:91:c2:db:9b:ed:7f:5d:bd:a6:
a4:22:03:aa:ea:55:f6:0b:be:a1:9c:78:5c:35:93:
64:08:e6:36:07:74:d0:79:35:55:34:b9:ea:cb:78:
9d:ee:91:5e:e1:f1:79:68:29:0d:8e:05:d8:be:c9:
d0:a7:ee:94:86:bb:46:11:62:d4:81:64:7e:84:a0:
74:2f:40:4b:33:bb:14:52:ae:62:f8:df:4c:3f:e4:
cf:ea:a8:52:8f:28:b2:25:94:1a:bb:3b:a8:6d:13:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BE:FC:7F:2C:69:08:05:F8:18:49:F4:59:27:E0:13:1D:08:5F:BD
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:c9:25:97:d2:ea:b1:b7:3c:5f:19:d9:0c:fc:8d:0d:ae:b5:
7f:43:24:e5:6b:8e:bb:4b:f3:ae:c1:c7:47:ed:87:9f:10:1e:
6c:fd:03:7d:f5:2f:ef:0a:7e:21:82:25:2c:e1:0a:8e:94:8a:
38:ab:4d:1a:e7:93:96:cd:b3:19:4f:de:5c:ff:bf:fc:42:11:
1e:fb:12:8a:dd:73:7a:78:8d:18:e5:b4:28:c2:ed:d7:8c:bb:
a3:e3:bb:50:3e:ff:6b:11:be:59:97:ca:7a:f1:93:d2:ae:16:
d1:3c:85:b0:9c:89:a1:ac:5d:84:51:f7:aa:b2:0f:bc:83:36:
d6:63:14:84:ba:9f:d9:b0:e9:d9:a8:e9:dc:07:4a:41:7a:b2:
7b:54:7f:f6:ec:36:e6:77:a9:57:63:8b:76:c6:5c:2b:be:3e:
e1:e8:a1:1f:57:33:cf:b4:a8:bf:4e:96:db:d9:1b:39:bb:4c:
ba:cf:1e:fe:78:25:5e:28:3f:0b:b6:f5:07:24:d6:1c:69:4e:
3a:20:9e:e2:d6:35:72:e1:cc:b5:d6:4b:7b:87:19:8a:b4:08:
fd:7f:f9:db:56:b6:31:af:85:13:e5:07:b5:56:2a:c7:05:42:
b0:63:49:6e:5f:b9:29:2b:a5:f4:33:25:36:44:d0:f3:65:1e:
c2:26:9b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:00:34 2025 by rpki-client