Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: rU94S8dGTRcqjmWk914dZODuHhfjpbfavGONAfPNMAU=
Subject key identifier: 61:62:9A:12:55:22:2F:10:B5:5C:1B:29:F0:86:44:B9:EC:3F:C4:3C
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019A01B5F63D9E9E31789EC7A905A123E96D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0E6A
Signing time: Mon 20 Oct 2025 13:01:33 +0000
Manifest this update: Mon 20 Oct 2025 13:01:33 +0000
Manifest next update: Tue 21 Oct 2025 13:01:33 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: qE31b8QIs4QRvkrFGemkd0SOeMEMZZOPZJQu7ugnSqE=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:b5:f6:3d:9e:9e:31:78:9e:c7:a9:05:a1:23:e9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Oct 20 13:01:33 2025 GMT
Not After : Oct 21 13:01:33 2025 GMT
Subject: CN=61629a1255222f10b55c1b29f08644b9ec3fc43c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:77:69:f8:0f:b0:4f:4f:84:23:52:8b:b1:38:
2b:20:8b:5b:50:b3:c6:cd:e8:dc:f1:68:7d:07:82:
c6:a6:3b:ff:a8:15:39:bd:28:e1:75:d5:ea:c4:76:
6f:25:60:f8:16:35:e8:d1:30:67:37:6e:b4:17:bc:
bf:f4:cd:5a:45:4d:7f:a2:24:6a:bd:09:5c:b8:1a:
4c:6e:8f:24:74:6d:43:1a:12:1a:8d:cd:18:e8:97:
2c:39:56:dd:f6:21:7b:36:48:6c:7b:2e:72:b0:c5:
2b:55:c0:98:6f:32:e7:c7:13:ca:8c:25:75:bd:1a:
24:2d:72:21:61:26:3f:79:01:6e:57:f8:8d:28:2e:
e6:3f:b8:f3:1d:35:5c:95:6a:dc:c2:d7:3b:30:9c:
33:d3:cb:b6:7a:6e:32:60:7a:3b:ef:d2:3b:34:37:
1c:a5:49:32:5b:07:f8:98:22:fc:2d:8c:74:6c:5e:
0e:ae:46:0b:ad:09:6b:9f:63:a3:f3:9a:07:71:26:
7f:f4:8d:92:26:cd:d1:c3:b4:eb:c9:37:43:80:5e:
cf:c1:2c:02:8f:8a:a0:48:48:c0:1d:4e:c8:2a:bc:
aa:32:80:99:81:46:ab:86:da:6d:92:cb:74:8b:fa:
55:df:aa:e4:89:79:6c:2c:bf:4f:c1:3f:61:d4:45:
ed:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:62:9A:12:55:22:2F:10:B5:5C:1B:29:F0:86:44:B9:EC:3F:C4:3C
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:6b:41:7c:89:4c:d0:5d:21:1a:84:8e:7c:db:14:a6:2b:82:
74:1d:a2:40:af:ed:93:9b:91:7f:c0:37:63:2a:04:5f:d0:ca:
9c:76:6a:d8:22:cc:ac:02:aa:56:ea:2a:19:a4:5e:62:6b:00:
21:15:0d:10:f6:14:f8:61:ca:fb:3c:e5:ae:f9:6a:89:09:c2:
8b:cd:2c:e8:bc:b4:c9:09:61:4b:9f:ab:a9:21:32:eb:ec:bf:
d8:c7:6e:a9:36:c4:cd:45:e2:51:f9:15:cc:3f:ed:10:54:58:
f3:e2:b6:ef:66:1f:40:ae:cb:ab:e2:98:27:32:a9:5e:c2:f5:
f7:9d:f2:dd:92:15:e7:cc:85:97:ee:5f:d7:3a:cc:f8:0c:ac:
86:7a:53:04:40:2d:a6:3f:80:f4:23:dc:b8:4a:f9:55:ff:5b:
da:9b:07:bb:8d:12:20:39:a5:35:47:58:e3:47:7b:bb:e9:1f:
47:91:b8:66:ee:41:d8:c7:88:26:37:76:89:2f:43:ea:dc:09:
80:81:63:5e:ec:ce:f8:17:7d:49:44:fb:90:8b:c5:b0:bb:bd:
38:c7:0f:32:69:b4:55:c9:d1:de:ee:69:c0:2f:b8:49:df:30:
af:3f:d2:62:3d:bc:c3:0b:5e:3b:56:01:11:55:77:da:55:12:
b2:9b:f9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 23:10:47 2025 by rpki-client