Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
File: HdXNKgJh4eYGndd1iU2CbuiDbB4.mft (raw, json)
Hash identifier: rvrZdsRCmGYULAszNzmhzON/ZZLgf4yH0KB3EHf4N+8=
Subject key identifier: C1:B2:BA:7E:BB:D9:B1:38:C0:C9:59:89:0E:92:DE:99:81:08:9D:FA
Authority key identifier: 1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
Certificate issuer: /CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Certificate serial: 0199FCFD3B5708A5915FA2B7BCCFC02CF28F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 15:01:18 +0000
Manifest this update: Sun 19 Oct 2025 15:01:18 +0000
Manifest next update: Mon 20 Oct 2025 15:01:18 +0000
Files and hashes: 1: HdXNKgJh4eYGndd1iU2CbuiDbB4.crl (hash: s0QQDDmHGJWgQ+udUMeMhVa+zlARgMRAf09KbrIBuNI=)
2: Z-7u2MA1CjZD5hYP8TfU-VSZNR8.roa (hash: /80xhWNAq5Vxx5IxhDuQbH3UW7oLWMSaFXrTwbB6FYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:3b:57:08:a5:91:5f:a2:b7:bc:cf:c0:2c:f2:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Validity
Not Before: Oct 19 15:01:18 2025 GMT
Not After : Oct 20 15:01:18 2025 GMT
Subject: CN=c1b2ba7ebbd9b138c0c959890e92de9981089dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3a:1b:4c:8a:18:be:99:83:bf:ef:19:8e:0d:
48:4a:48:bc:b7:d8:49:00:ee:df:43:81:5e:b7:39:
8c:25:6b:1e:3f:c0:e5:63:dd:1f:4a:d3:de:22:83:
23:20:2a:6a:bf:e8:32:fa:5c:01:bd:1f:13:b5:df:
07:c3:20:81:b8:f9:cc:fd:f7:a8:e2:0e:76:1e:9f:
66:42:de:84:c3:3e:df:fc:1c:d0:59:81:ae:9b:34:
1a:ce:0b:95:9e:6a:25:ae:51:33:57:73:cc:84:fb:
f9:90:22:11:a5:c8:b4:06:c0:ed:29:08:f3:bf:d1:
94:86:29:54:ce:9e:3c:fd:18:02:0d:80:4a:4d:a8:
9c:bb:f1:17:64:c1:d8:0c:36:0a:5d:7d:ba:c8:70:
38:a2:d9:8f:09:4d:89:2d:f3:5e:27:f9:23:1d:01:
68:e6:a4:16:cd:a5:b1:41:2f:60:36:04:5e:1f:af:
2b:64:88:87:9e:70:2c:e3:88:cd:47:d2:aa:f5:de:
51:27:7a:5f:57:5d:d1:cd:0b:d1:b9:cb:1d:6c:2c:
a5:fe:90:b8:7c:38:1d:06:53:7d:f1:e5:4a:eb:db:
33:3d:0a:89:b5:03:c9:7b:d7:3c:df:86:b1:14:e0:
67:5f:79:e6:83:85:d7:44:05:93:34:ca:00:54:e5:
c7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:B2:BA:7E:BB:D9:B1:38:C0:C9:59:89:0E:92:DE:99:81:08:9D:FA
X509v3 Authority Key Identifier:
keyid:1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:a8:19:c0:f8:bd:ad:47:2a:9d:84:01:aa:20:51:60:a7:40:
62:5f:cf:cf:fe:20:b6:17:58:8e:d7:74:a8:b8:34:f8:6d:01:
72:ec:eb:92:f5:22:8a:66:c6:9a:46:9d:85:36:e2:e1:24:61:
10:a7:d5:76:51:47:6f:3c:27:66:a3:01:09:30:5c:a2:7a:77:
58:0f:0f:65:20:f6:89:16:e9:e0:26:08:4d:6d:04:54:73:cb:
2e:a7:17:50:f4:b8:dd:dc:9e:88:06:c0:72:e1:23:7c:c4:8b:
5e:9c:3d:71:f4:54:ff:b3:84:da:d3:47:57:9e:bb:e9:c5:d7:
d4:c0:d2:da:e2:45:d9:9d:55:cd:39:81:8c:73:f6:af:2f:1d:
f2:de:26:c0:b6:26:53:d4:00:77:c2:22:0e:2e:32:6f:06:e3:
5c:e0:80:c2:85:32:8a:fb:ea:a4:1d:b3:c5:43:30:f4:68:71:
76:42:50:c9:4e:21:0d:5a:a3:64:26:7f:6c:06:4c:0d:4a:5b:
d3:59:1e:41:2b:ae:2d:40:06:1e:56:3b:df:35:ac:41:26:da:
3f:c6:fa:19:91:25:0f:eb:71:6f:66:90:3c:fc:61:b8:d9:13:
77:c4:26:28:a7:73:be:b2:54:95:55:10:d5:ae:51:6d:3a:12:
10:e6:38:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:02:11 2025 by rpki-client