Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: zAN2NUJd0bUsxBIklxRYRLkUT9PwYrwwbEkpm8igTT8=
Subject key identifier: C5:1C:C8:59:C5:DB:53:9B:2D:17:2E:E8:2E:99:E0:F6:42:C6:86:DB
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 0199FC58F7255CCDF29C6B4688F6DE4F9AD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 12:01:52 +0000
Manifest this update: Sun 19 Oct 2025 12:01:52 +0000
Manifest next update: Mon 20 Oct 2025 12:01:52 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: /7Ku4C6qyzhnxYZArwadBxfI6l0PKi7v0lhjjAiwDSQ=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:f7:25:5c:cd:f2:9c:6b:46:88:f6:de:4f:9a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Oct 19 12:01:52 2025 GMT
Not After : Oct 20 12:01:52 2025 GMT
Subject: CN=c51cc859c5db539b2d172ee82e99e0f642c686db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2e:54:51:0f:32:06:64:3b:3a:48:37:0e:6a:
6c:8c:58:b5:ad:99:7a:9d:33:61:73:e5:6b:d4:2f:
13:3e:4a:d7:06:68:51:d2:64:f0:2d:5c:02:bc:f4:
c0:be:b3:f6:1b:4a:81:57:50:88:19:cd:dc:db:24:
99:bc:7a:86:d9:70:c9:92:97:31:1d:e9:bc:1c:a7:
c5:36:5b:d3:b5:cb:c8:3b:8a:23:48:45:e5:97:e2:
99:72:4a:54:96:8a:51:d3:c5:f0:2a:27:56:b0:40:
76:0f:cd:68:04:ff:49:53:c3:d3:6e:b0:34:c4:03:
19:5f:c6:3b:bb:91:15:02:a8:70:b2:a4:b1:ca:84:
26:64:aa:ed:bd:24:53:f3:26:3a:b8:ef:66:37:39:
af:71:1e:12:33:a9:3c:9a:b6:98:85:8f:e9:66:d2:
04:51:d0:1c:8e:e7:4c:32:8b:8f:e2:33:a4:88:2f:
d1:4e:a1:b7:f6:5b:ad:a5:fc:f3:1d:79:77:79:d3:
b3:1e:06:a9:1b:c9:76:96:a3:78:53:8c:ca:25:37:
66:ae:a9:af:f4:53:b9:a5:bd:62:df:e4:1e:d0:99:
ff:7a:97:c8:48:0c:c8:3c:8f:83:c3:de:0d:a5:45:
ab:da:0c:e5:70:c9:1a:b0:e4:f0:3d:6e:46:7f:1b:
b1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1C:C8:59:C5:DB:53:9B:2D:17:2E:E8:2E:99:E0:F6:42:C6:86:DB
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:22:34:e4:8c:f3:37:a2:02:b5:f6:f5:5d:2a:a8:3c:f3:eb:
95:cc:2d:3a:1f:89:e4:24:bf:9c:fc:01:38:17:3e:00:d4:7c:
43:d6:16:08:f4:cb:12:29:39:89:b4:2c:ed:d3:07:f5:cd:6e:
5f:84:38:f9:84:a0:17:b9:ff:55:20:a2:c7:d9:4d:e1:2a:71:
f1:7e:f6:e6:55:87:00:f5:23:38:71:0a:c0:f8:1f:b2:fc:87:
df:0d:86:b0:9b:05:84:09:48:f8:d5:42:ea:04:97:e6:de:e1:
c6:74:0b:21:ad:cf:20:da:2f:d1:c1:6a:52:78:e8:43:07:19:
8f:f0:b0:3f:76:86:e6:2d:e5:54:34:05:85:0e:91:55:b5:4c:
af:ff:b0:e3:8f:52:53:54:d6:5d:59:2a:dc:57:d2:53:fd:8c:
74:f4:3f:21:18:47:55:8a:4b:a8:a3:62:bf:bc:9c:ff:ca:a2:
39:1c:07:13:b9:8a:e8:44:ca:02:d6:a1:e5:9e:fe:42:29:9a:
a6:2c:ac:ef:91:ad:79:dd:6f:94:48:82:1c:af:3b:f5:4c:70:
97:8f:d3:17:dd:0f:5f:8f:c0:e7:8a:86:6f:99:e1:69:ad:d6:
73:8e:11:7e:30:83:ca:c4:a1:e8:09:e6:96:e1:e0:aa:61:34:
6f:dc:60:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:05:48 2025 by rpki-client