Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: ypezlT6fISR2NglNFz2sL8GR0qVIREEOYmIZI7GS3s0=
Subject key identifier: 89:A1:B2:4A:96:7E:F4:79:CC:29:74:2C:92:86:B8:16:45:6C:97:74
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 019A085C2BFED07E2027BAB5674ADEC6E8E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 130E
Signing time: Tue 21 Oct 2025 20:00:49 +0000
Manifest this update: Tue 21 Oct 2025 20:00:49 +0000
Manifest next update: Wed 22 Oct 2025 20:00:49 +0000
Files and hashes: 1: CSj4rvQmRyDsyaDEw0jstidXLzo.roa (hash: 3pSnEcRnf/ULKrT/Poc1HoH7UgR2xUCZ7SNrN3hfNmI=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: cWWuMM2X2ruxSFgh+bvfKpL6pftA9mQPMIxyXZ4ESjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 19:12:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:08:5c:2b:fe:d0:7e:20:27:ba:b5:67:4a:de:c6:e8:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Oct 21 20:00:49 2025 GMT
Not After : Oct 22 20:00:49 2025 GMT
Subject: CN=89a1b24a967ef479cc29742c9286b816456c9774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:5f:90:ae:e4:e2:75:89:17:4a:98:7d:c1:be:
fa:62:6a:d9:2e:51:d1:98:56:fb:8d:5d:52:73:9c:
a4:ad:e7:4a:67:39:41:08:96:fb:45:6c:bc:ce:d9:
21:71:80:24:69:d5:d8:d1:95:39:90:93:98:c0:fe:
d0:cd:7d:0d:52:06:b6:1a:6d:e4:fd:1b:24:82:4d:
9b:f5:59:8f:5b:48:45:99:f1:da:de:bb:3d:d3:20:
15:29:d8:7e:ab:08:d0:95:bc:67:35:0c:f3:7d:71:
65:23:17:0e:d5:23:4a:ee:29:11:6e:e6:c5:fc:a7:
29:67:88:f1:20:3e:d6:7a:52:d0:14:4b:bf:8d:95:
4e:3d:6d:d8:40:02:c2:8c:3c:06:90:77:08:70:c4:
67:fb:af:e0:83:c4:07:fb:d0:72:0e:00:d6:a0:ac:
c5:f8:94:f0:47:a0:ed:f2:f6:de:41:1e:4d:49:7f:
b4:dd:28:13:18:ba:8e:1a:1a:90:96:71:ac:60:2a:
a4:60:f5:61:eb:5f:49:d3:d5:7a:e4:7e:ff:2f:7a:
b9:11:7e:0f:d1:8d:6c:bc:1e:3a:0f:3d:93:a9:f7:
9b:95:69:5d:be:df:61:c3:31:9d:57:9c:5e:81:da:
92:5b:f1:d5:df:49:8f:0d:14:69:b1:d8:78:2e:6b:
18:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A1:B2:4A:96:7E:F4:79:CC:29:74:2C:92:86:B8:16:45:6C:97:74
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:7c:02:78:fa:94:fa:8c:ea:27:dd:86:ed:bf:2c:84:77:d3:
fc:97:3a:bf:51:86:b4:63:cc:05:ba:b0:7c:eb:98:f3:e8:b0:
0a:bc:72:74:ba:97:c9:70:d6:c5:c4:f0:07:b7:fa:ba:82:56:
53:ff:f5:3d:a7:ac:a8:58:b2:f9:ec:17:1a:ad:31:50:6b:01:
85:f0:0e:a2:6c:68:0c:75:b6:28:2a:4d:5a:76:b1:9d:c7:60:
ba:82:6b:36:71:ee:a5:25:24:ee:32:a9:4a:49:bb:c8:48:1b:
bc:6e:c3:f7:e4:c7:5c:f6:50:67:09:b1:1a:43:1f:af:7b:54:
e2:62:91:38:62:98:e7:60:6f:9c:ef:2c:87:48:fa:e4:19:2b:
62:21:f6:04:63:10:7a:ea:1d:2a:62:ae:7a:a8:55:b1:43:ed:
4c:4a:9b:93:58:5a:43:ae:d0:c6:80:b9:8c:e7:83:27:e2:f5:
ce:ef:1d:da:fd:d7:40:4d:5a:45:9e:a4:f5:66:e9:b1:42:f9:
1d:39:ae:89:87:e3:8f:b9:c8:18:60:64:f4:d1:f3:61:ac:67:
4e:90:71:15:a4:7b:9b:5d:0c:38:40:ac:1c:bc:86:cb:5c:df:
7d:26:f7:84:f7:2b:52:40:3f:4e:1f:3b:4c:0c:4a:57:dd:21:
fb:d1:e4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 02:38:09 2025 by rpki-client