Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft
File: hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft (raw, json)
Hash identifier: RH42ChiIU2CCm/MkMha2LAlMvXO0oXfAkYZr5P7osFA=
Subject key identifier: CD:4A:7B:AF:1E:95:23:5B:10:6A:26:41:22:FB:E0:F9:80:B5:22:A1
Authority key identifier: 86:49:AA:4B:32:87:35:53:6D:27:C1:68:CD:BF:4E:A1:77:70:1D:CE
Certificate issuer: /CN=8649aa4b328735536d27c168cdbf4ea177701dce
Certificate serial: 0199FD342B7903AD530420496D3F81336C76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 16:01:18 +0000
Manifest this update: Sun 19 Oct 2025 16:01:18 +0000
Manifest next update: Mon 20 Oct 2025 16:01:18 +0000
Files and hashes: 1: hkmqSzKHNVNtJ8Fozb9OoXdwHc4.crl (hash: nLNBLROb901c3PeHJ6EVzNtaAHM+e7c+v7tot1TXqzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:2b:79:03:ad:53:04:20:49:6d:3f:81:33:6c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8649aa4b328735536d27c168cdbf4ea177701dce
Validity
Not Before: Oct 19 16:01:18 2025 GMT
Not After : Oct 20 16:01:18 2025 GMT
Subject: CN=cd4a7baf1e95235b106a264122fbe0f980b522a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:78:cf:b9:7a:22:fe:75:9e:14:58:5d:4a:85:
75:0f:2a:52:d7:69:11:67:09:9a:dc:da:b7:6d:11:
9e:04:b5:37:12:30:19:9c:9d:6b:8a:7a:d6:01:85:
ad:b8:9f:62:bb:17:e3:f1:90:3a:d9:d3:38:81:8c:
6a:49:3e:db:01:35:0e:b2:83:58:f1:b3:10:82:c8:
a1:18:58:2c:ed:1e:ba:4e:3f:03:e7:32:c4:51:e9:
d7:8a:32:6c:a4:a7:88:64:77:ea:4f:a1:3a:3f:ec:
9c:83:c2:ff:73:a5:b3:35:d4:73:5f:72:b6:36:8c:
54:ae:66:06:38:41:a9:9a:de:a0:c5:03:a9:ad:f0:
0b:95:0c:8e:12:27:e7:b5:93:85:48:7b:4f:d1:20:
9b:0a:cb:eb:e5:55:f3:59:68:68:02:6e:8a:71:b4:
dc:74:2b:b9:aa:45:de:fb:37:08:a2:f3:a5:ac:3e:
b5:e7:2c:96:cc:03:9e:59:bb:df:d1:1f:20:e6:a7:
67:83:aa:44:59:5d:a9:45:a9:d5:9f:86:c8:17:c8:
09:5b:4e:1a:b7:0c:79:b5:b1:06:52:3e:2a:40:73:
f4:6b:bf:80:db:32:10:e2:2f:8a:f5:f9:6a:56:7e:
03:48:0c:c5:ab:42:2c:a7:0d:67:6b:f5:d5:d8:b4:
3d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4A:7B:AF:1E:95:23:5B:10:6A:26:41:22:FB:E0:F9:80:B5:22:A1
X509v3 Authority Key Identifier:
keyid:86:49:AA:4B:32:87:35:53:6D:27:C1:68:CD:BF:4E:A1:77:70:1D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c4d41f-60cd-4cbb-b253-19f1dab2d1b4/1/hkmqSzKHNVNtJ8Fozb9OoXdwHc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b2:eb:cc:66:4f:94:ab:a9:fa:0a:3a:7f:04:3c:6e:55:ce:
31:94:5c:17:21:78:44:55:61:bf:ce:a2:df:af:44:cf:83:bf:
0e:de:3e:a2:33:ad:44:83:22:da:0a:b1:20:12:d4:98:f3:1c:
2e:c0:63:e6:57:d7:c0:44:81:27:be:5d:95:28:77:5c:7a:18:
63:ec:e8:69:aa:b5:b7:b0:e5:ec:b6:aa:87:be:20:19:ff:3a:
a5:2f:9b:85:a3:16:86:b2:c5:e5:4b:f9:bf:62:74:eb:b6:ea:
09:da:a6:a9:54:6b:03:ab:3a:27:c6:e8:4a:c7:dd:e5:1c:08:
7a:87:0e:08:76:7d:36:b8:af:0e:80:9c:a5:ad:ca:62:7e:00:
51:0d:2d:b1:6f:de:b8:fa:98:4a:78:63:b1:0f:5f:30:ad:de:
d7:16:48:b6:49:7d:ce:ba:b7:b0:07:56:8e:3f:32:bd:3b:44:
c6:72:a8:0f:5e:f1:f7:f3:d6:10:96:07:67:83:b6:e4:ab:98:
6c:27:8a:07:91:7b:8f:e3:a8:bb:02:22:e3:ae:09:04:60:19:
f4:1e:2d:b0:d6:b9:9e:b3:5f:e4:98:a8:9a:20:15:b4:f2:e2:
c2:a4:ce:2d:cc:c2:50:8a:7d:68:02:e8:f2:f2:02:d0:48:32:
89:6b:83:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:17 2025 by rpki-client