Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: 1SymWNWHrR0Ui525RLw+DdLiq/Rgxfrwd3d4A6nwe7I=
Subject key identifier: 5D:05:20:46:4A:6C:F8:32:C8:D6:32:F8:AB:0B:92:35:7C:70:E3:21
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 0199FBB362000B6D2553EA32F7CA320B115E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: D4
Signing time: Sun 19 Oct 2025 09:01:01 +0000
Manifest this update: Sun 19 Oct 2025 09:01:01 +0000
Manifest next update: Mon 20 Oct 2025 09:01:01 +0000
Files and hashes: 1: EyJIl9GgE7NEizESEZnZ9ODAHzw.roa (hash: TDhr2Br5ELeOUc6goo8nbxisdzgPRnJxdfCh2qX9VlY=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: J+RgUq4mw2ftpFipfPH1jdVtEUrgyfBrHsgEdXWMMMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:62:00:0b:6d:25:53:ea:32:f7:ca:32:0b:11:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Oct 19 09:01:01 2025 GMT
Not After : Oct 20 09:01:01 2025 GMT
Subject: CN=5d0520464a6cf832c8d632f8ab0b92357c70e321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d5:b8:90:20:cb:3c:44:51:1c:a2:4e:15:7d:
ef:75:c8:5f:59:87:bc:96:a4:60:e7:28:bf:db:fa:
0d:6c:c2:bd:a2:b8:01:f5:29:60:6e:e9:df:4c:08:
51:bd:e5:1d:bf:d5:32:63:df:71:5b:9d:92:fa:a4:
a0:da:fa:01:41:7d:34:cc:dc:26:df:bf:cd:eb:82:
01:e3:e8:65:43:48:c6:db:1d:53:6d:39:e2:5d:b4:
25:2d:4d:ba:8c:83:33:bc:c0:20:96:cc:ee:fd:10:
46:02:23:71:ed:ed:0c:a8:b8:f2:88:ea:e5:b9:f7:
de:be:69:f9:16:00:05:f7:c5:58:9c:45:1d:f0:27:
00:74:c7:aa:d3:86:24:99:df:10:69:eb:cf:3d:4a:
8e:6a:39:b4:39:0a:57:2b:a8:dd:e4:42:f3:bf:9f:
7f:f4:a6:ee:52:f2:15:61:c4:32:0f:01:1e:fe:ce:
20:29:d7:69:7d:73:82:bb:ad:07:6c:7c:5c:e0:2d:
f3:11:98:52:44:45:11:ca:a9:06:63:f7:37:aa:a2:
d8:7f:97:92:9f:7f:da:23:92:cb:87:cd:9d:0c:e4:
be:3f:81:40:e2:0c:80:fd:55:a9:b7:bd:25:60:ba:
95:5f:bf:38:23:68:5d:ba:55:b2:b1:54:c3:d8:e5:
25:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:05:20:46:4A:6C:F8:32:C8:D6:32:F8:AB:0B:92:35:7C:70:E3:21
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:21:9e:f3:22:fa:b5:99:8c:cc:82:8c:19:8c:15:85:fa:9a:
68:9e:c5:ee:54:56:17:79:3e:43:14:4b:a8:b4:be:1b:83:f0:
f6:70:b3:cb:06:95:b4:15:ec:4b:30:32:01:72:b8:e2:3b:c3:
9c:91:56:cc:20:2b:13:e6:51:88:1f:a2:c9:17:ae:06:f8:5d:
04:cd:49:3a:4d:87:96:eb:05:e6:ca:23:0e:56:e7:89:65:8c:
ce:91:e8:f9:e5:dd:29:c4:80:11:ad:73:9d:a5:a3:18:4c:ec:
28:3c:83:3c:e0:45:99:c2:8e:2a:54:00:3c:56:f2:96:15:a1:
a1:26:e7:d5:ea:52:ae:45:2f:32:48:34:21:a7:16:e3:cc:a2:
d6:00:78:1e:8a:57:5b:89:d7:10:46:64:48:9f:c3:e9:3b:da:
3b:63:bb:81:fd:5f:2e:88:c7:db:ec:01:1b:2c:72:9f:da:21:
a3:80:a1:f6:08:57:07:5b:e8:8e:65:d9:15:b3:b5:85:5f:c9:
70:da:0d:c7:ce:a1:c8:f8:6d:61:90:3c:36:23:a7:3d:69:ae:
2e:41:88:f6:e3:d8:db:d1:09:3f:79:de:82:ac:8b:98:1f:fd:
67:2d:cb:83:de:c5:b0:76:fe:89:25:17:68:f8:01:36:36:f4:
46:02:68:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:31:20 2025 by rpki-client