Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: ceSAkcYKOd6yJvoIIXNnkbc6kskWTWeLGPA6ZFqN8gs=
Subject key identifier: D9:F0:6A:64:92:4B:54:5D:1B:0C:A6:9C:5E:82:7A:16:56:56:EF:04
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 0199FDD9115388F23A9417D6B749A518A873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 10BF
Signing time: Sun 19 Oct 2025 19:01:25 +0000
Manifest this update: Sun 19 Oct 2025 19:01:25 +0000
Manifest next update: Mon 20 Oct 2025 19:01:25 +0000
Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: RXdiniTppleJ1jDqdhwic+yqclfvhAdt33U5KUAXaXc=)
2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:11:53:88:f2:3a:94:17:d6:b7:49:a5:18:a8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Oct 19 19:01:25 2025 GMT
Not After : Oct 20 19:01:25 2025 GMT
Subject: CN=d9f06a64924b545d1b0ca69c5e827a165656ef04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6d:8e:02:5b:44:50:9f:d6:d9:aa:69:48:40:
53:41:52:14:d4:29:6a:d1:c8:ba:02:18:73:09:d3:
09:21:18:c7:a2:f2:8b:f5:1b:6a:a0:ae:0a:1c:82:
33:91:12:df:a3:db:99:13:82:e4:a9:8d:25:e3:7e:
95:4c:3b:1b:ed:46:fb:ed:ed:b6:2f:e3:1f:eb:af:
7e:c6:87:d3:ec:fc:6b:17:0e:22:be:e0:8b:cb:3a:
3b:90:87:cf:21:39:6a:eb:49:1d:8a:52:17:82:33:
cc:d7:83:41:76:7d:7e:81:5c:88:d1:30:51:19:90:
6a:a2:d0:75:3c:51:87:87:ee:d4:4b:21:56:70:42:
61:fb:47:f2:bb:f9:20:fc:bb:77:dc:76:b1:92:79:
9d:c8:cf:93:df:4d:b4:98:97:3b:8b:49:35:5f:5d:
d1:32:aa:62:9c:0d:3d:61:82:f7:0a:00:d5:2e:d8:
e9:9d:cb:95:dc:de:40:fe:24:14:f4:0d:15:9e:07:
85:5b:35:9f:5e:9a:4d:87:99:25:90:cd:b4:c9:1a:
c4:30:ae:0b:86:cb:c6:ae:9b:1b:fd:de:e5:a5:25:
77:56:ee:b7:7b:a1:3c:45:fc:bf:60:b6:45:47:98:
59:85:17:dd:62:97:40:33:56:1c:b0:f5:68:47:ca:
61:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:F0:6A:64:92:4B:54:5D:1B:0C:A6:9C:5E:82:7A:16:56:56:EF:04
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:12:1d:e3:81:d4:0c:c1:43:a1:25:64:a4:c1:7b:83:a8:2c:
f8:5c:a0:be:6f:b6:59:0f:51:60:d3:cf:57:f6:8e:7e:bc:53:
7b:99:fc:27:71:05:d6:f0:3f:8e:48:6e:99:d4:54:2d:0c:cd:
e3:e2:6b:4d:7e:f2:44:aa:82:5c:97:25:c4:2c:82:71:e8:96:
d1:c0:36:65:4f:3e:77:f6:87:4d:e9:7f:d9:7d:d4:ee:5d:c0:
3c:b9:a2:2c:4e:da:4f:d1:11:16:96:5d:a6:d9:ee:67:66:cf:
ed:37:53:e7:ed:23:89:e7:cf:9a:ea:71:64:12:01:6a:55:5c:
84:b7:51:a8:e1:46:44:04:f3:40:e6:f1:aa:7b:6a:d6:43:bb:
f1:08:52:17:22:b2:1c:7a:6f:d8:1c:3c:20:82:0f:99:8b:41:
56:5a:3c:f6:ef:df:4f:07:e1:ca:38:f4:53:32:80:d0:35:a5:
6c:8b:2f:37:1f:a6:7a:fa:6d:c6:55:e6:0e:ed:73:dd:35:5e:
34:02:9a:c4:26:c0:f1:a5:5f:9b:92:c0:51:d1:23:6b:a2:ee:
91:c3:0f:96:b2:80:24:55:fd:82:70:30:f0:b0:e0:bd:16:53:
10:3e:e5:c4:30:aa:0e:3f:3c:34:45:af:16:e8:6d:b6:06:0a:
f3:72:69:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:27:09 2025 by rpki-client