Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
File: HgClX517dTlrS_oT54lgpaEvTvU.mft (raw, json)
Hash identifier: tEuUvTpT9eSTAkFwiy9IwwKRr3faRxYkj1lSQT9U0dE=
Subject key identifier: 47:43:C3:A7:C0:6F:CC:07:58:4D:B8:33:4C:34:55:06:41:D4:6D:85
Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Certificate serial: 0199FB7CD5DDEA98700E27BE102E4AAA0853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
Manifest number: 0E98
Signing time: Sun 19 Oct 2025 08:01:26 +0000
Manifest this update: Sun 19 Oct 2025 08:01:26 +0000
Manifest next update: Mon 20 Oct 2025 08:01:26 +0000
Files and hashes: 1: HgClX517dTlrS_oT54lgpaEvTvU.crl (hash: 8NF25NWDWw1O08oWYxXCkSiZMpzd9x4ipCdEuQ9aIiI=)
2: Z9H2rikLSuyuU-ikn9teDCmjdUc.roa (hash: cRtnYLPeRJbchnmn6bYlPaowZvCX5uRJgotf5z/cank=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:d5:dd:ea:98:70:0e:27:be:10:2e:4a:aa:08:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Validity
Not Before: Oct 19 08:01:26 2025 GMT
Not After : Oct 20 08:01:26 2025 GMT
Subject: CN=4743c3a7c06fcc07584db8334c34550641d46d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5d:c0:fa:4c:90:b6:cc:00:50:32:be:35:31:
55:95:ed:87:11:6e:96:a9:00:fc:7f:3e:32:6d:ae:
8f:f5:4e:27:8b:e4:6e:63:05:2e:88:c0:71:ee:eb:
4a:3d:bd:6f:be:22:22:ea:e8:34:d3:18:87:ab:6f:
c9:05:a8:01:b7:e9:00:a8:c0:63:64:de:01:93:6a:
83:8e:6b:e6:03:3d:b0:9d:98:90:6a:71:d6:95:37:
d8:1d:ee:2f:90:26:01:1b:76:d7:d6:09:ca:06:50:
6f:a4:df:65:4b:39:7b:96:58:c9:22:6e:8e:e8:25:
16:2c:e2:cb:86:1e:42:b5:53:76:7b:37:eb:18:0f:
63:bb:cb:9e:55:80:26:0e:05:36:c9:e0:f7:6c:e9:
30:e5:6d:92:e5:d0:ec:7c:d5:01:bd:4d:a3:a6:f6:
cc:6b:96:e0:a0:70:5e:b8:9f:94:35:90:60:80:c2:
3a:91:f2:c6:01:8f:1f:31:5a:36:6b:28:56:90:d1:
8a:29:96:61:c2:2d:c5:86:09:49:1e:00:37:2b:10:
98:f9:08:c4:2b:d0:cc:21:39:21:22:96:dd:eb:69:
5f:bf:ca:9d:3f:87:8d:94:2e:af:b8:6d:0e:80:10:
a6:61:4b:ed:7f:ff:e9:1b:68:07:ec:27:5d:a7:1b:
19:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:43:C3:A7:C0:6F:CC:07:58:4D:B8:33:4C:34:55:06:41:D4:6D:85
X509v3 Authority Key Identifier:
keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:c9:06:4d:26:49:20:a9:e9:48:10:4b:75:bb:73:4b:1b:1a:
ff:e6:a8:31:23:32:75:9c:55:c3:93:86:f6:b6:14:dd:57:36:
05:ab:b6:28:87:e5:30:e5:bc:e9:76:e7:3c:da:b8:e9:39:1e:
aa:9f:49:99:85:d5:36:40:cd:51:ed:31:c5:d9:c0:ca:ed:b0:
39:15:df:72:41:9e:d8:68:17:da:a2:ec:20:36:40:94:33:34:
77:75:8b:fc:9d:c8:fe:cd:81:56:ee:63:d7:8b:d9:ba:5e:97:
bb:dd:0d:a0:7b:69:b3:10:7b:a4:fb:3b:0a:be:1d:c8:43:a4:
63:7c:9b:1c:d7:79:7c:09:23:8a:3b:50:19:6e:7a:5e:bc:7c:
b6:fa:97:5d:ea:aa:9d:c3:07:b5:13:b5:d9:c1:9f:74:62:f1:
7c:3a:b5:8f:43:bc:7d:45:98:5f:a4:7b:c4:69:c1:ab:85:e9:
68:70:fa:92:1b:24:5c:24:54:0d:84:a0:fd:d3:64:8b:47:1d:
39:21:d7:8d:12:e1:9c:20:9c:d6:64:7b:a2:4e:ba:71:8d:c6:
cb:28:6b:4b:47:a1:cc:5c:fd:ad:45:1d:12:0e:74:43:e1:ad:
fa:a0:af:44:66:5a:64:f9:50:c8:62:fa:18:34:4d:ac:59:b3:
c1:18:59:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:41:12 2025 by rpki-client