Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
File: HzPIww-60mD0qd98O1IGahp7TtU.mft (raw, json)
Hash identifier: D5lC+xDPnNpInPDyhr7dr6qrQ/fb0TCp9jpty8he3r4=
Subject key identifier: 03:D8:77:61:83:9A:B4:79:E2:DE:46:4D:4E:F4:7D:55:76:7F:0D:DA
Authority key identifier: 1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
Certificate issuer: /CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Certificate serial: 0199FCC618F9AC85E7B2D07C598DE8F35FF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
Manifest number: A1
Signing time: Sun 19 Oct 2025 14:01:04 +0000
Manifest this update: Sun 19 Oct 2025 14:01:04 +0000
Manifest next update: Mon 20 Oct 2025 14:01:04 +0000
Files and hashes: 1: HzPIww-60mD0qd98O1IGahp7TtU.crl (hash: klq3CnDzI7KkrWm7CEol392JDeGCHLLfitPbFK4sg6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:18:f9:ac:85:e7:b2:d0:7c:59:8d:e8:f3:5f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Validity
Not Before: Oct 19 14:01:04 2025 GMT
Not After : Oct 20 14:01:04 2025 GMT
Subject: CN=03d87761839ab479e2de464d4ef47d55767f0dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8c:01:8a:7c:ba:e9:89:56:7d:3b:9a:be:61:
ad:44:50:d7:8e:a7:be:55:70:9b:a8:e0:11:82:3e:
a5:bd:a1:91:56:90:a8:51:9a:49:70:c6:4a:1b:31:
dc:60:af:31:f0:27:7c:64:f1:7b:16:7f:15:08:f2:
b7:5c:91:ca:9c:4d:9e:0f:57:96:be:99:53:ba:20:
7d:0c:c7:04:7d:9f:59:b0:b9:90:6c:e1:17:4a:01:
6d:c6:fb:5a:43:54:85:67:97:f5:80:bc:76:05:0d:
dd:68:bc:26:ca:61:5b:cc:31:f0:25:9e:2d:f5:81:
49:f7:0b:a3:96:c5:17:8a:3d:95:e5:97:dc:60:94:
0d:43:57:15:ef:ce:12:89:da:60:29:42:fe:3c:4a:
3c:5f:f6:a4:ad:37:c3:cb:fe:b4:cc:39:27:45:3c:
72:15:37:0d:c8:83:24:d6:a5:f7:83:16:18:a9:60:
f5:d9:fe:6f:33:af:d7:4d:63:a6:4d:3e:1b:5a:cc:
e8:bd:98:e0:ad:e9:5d:56:46:68:ca:8b:49:72:d1:
86:98:fd:28:6c:ac:fe:da:7a:63:4b:28:3f:11:ea:
96:1c:60:3e:96:b1:01:62:e0:e0:19:e5:82:73:ee:
53:c4:61:26:49:49:46:5f:71:db:28:ba:b3:43:d9:
ea:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D8:77:61:83:9A:B4:79:E2:DE:46:4D:4E:F4:7D:55:76:7F:0D:DA
X509v3 Authority Key Identifier:
keyid:1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:b5:fc:a5:00:33:91:34:1d:0d:6d:b0:4a:f2:8b:b6:9a:e3:
36:5b:ab:f1:f3:d2:ab:11:69:cc:8e:ea:8f:6a:1e:89:6e:4d:
49:12:6b:08:b8:4c:e0:3e:47:2d:88:bc:90:a4:11:a0:0d:3d:
49:47:fa:fb:65:34:8a:c3:f9:45:c6:b7:a0:a1:ea:dc:b3:2f:
58:7b:f7:a1:1a:c7:ce:6a:1a:35:f0:b1:01:ee:c4:f4:8f:0a:
3e:12:51:b8:fe:99:c5:b4:67:02:8c:51:62:3a:1c:a8:ec:26:
c3:89:61:dc:1d:74:11:44:bf:16:8d:30:b4:81:d4:c9:c4:4e:
ca:ba:5b:c0:31:84:bb:51:ed:cc:a8:6b:a4:1c:93:17:5f:ea:
ec:8d:cd:dc:90:10:14:0c:33:f6:bc:1d:f3:ef:7e:b7:de:df:
da:6a:60:31:23:3e:6d:bc:fe:b9:77:9d:c8:72:e0:80:af:93:
63:f9:ee:7c:42:11:45:89:00:bf:66:63:f7:af:e1:fb:22:38:
f7:7e:55:a6:10:a4:f2:e0:c4:9f:0d:23:f0:4d:ad:d4:ba:e1:
a4:b2:9f:a0:a4:22:7c:bc:b0:e0:07:d1:15:96:f5:04:67:89:
cf:fd:36:fb:f3:29:e0:dc:7d:2d:ad:11:21:a5:32:09:18:45:
28:58:d7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:19 2025 by rpki-client