Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
File: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft (raw, json)
Hash identifier: WFjfXnLFkTISXP+g2brBygYG3bmd5ztjMHbC4xxcGdY=
Subject key identifier: 2E:C2:2B:53:8C:41:0A:A6:C0:EE:9A:F4:59:20:D9:F7:BC:CD:F7:D4
Authority key identifier: 1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
Certificate issuer: /CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Certificate serial: 0199FD3458D7ACE1CDA058DD688948574109
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
Manifest number: 1675
Signing time: Sun 19 Oct 2025 16:01:30 +0000
Manifest this update: Sun 19 Oct 2025 16:01:30 +0000
Manifest next update: Mon 20 Oct 2025 16:01:30 +0000
Files and hashes: 1: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl (hash: IsF1pmiD0JY1DMbtv4QH9AQTXKPTDNJl2zF1boTRsoM=)
2: hIagYPgcgLqF5hqMfUhJY2-sJAs.roa (hash: ZaaWq0BbjJoluHI5ROX+aFarBCsxRa8oHhsXlvsyUeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:58:d7:ac:e1:cd:a0:58:dd:68:89:48:57:41:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Validity
Not Before: Oct 19 16:01:30 2025 GMT
Not After : Oct 20 16:01:30 2025 GMT
Subject: CN=2ec22b538c410aa6c0ee9af45920d9f7bccdf7d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:46:30:8d:02:e6:dd:90:e4:19:50:c8:c9:0e:
5f:1b:f7:11:5f:3a:b4:e7:85:c3:79:75:c6:38:14:
89:d8:d1:8f:c6:d8:37:5b:f7:cc:5d:a6:bb:09:ec:
1d:5f:48:4c:5c:af:c8:51:d5:49:05:6a:50:54:f2:
2c:29:a4:63:d2:25:6c:a6:4d:33:db:0b:c3:fe:dd:
64:fd:72:8a:36:42:33:28:ff:62:22:a9:51:34:45:
f0:0d:98:11:73:33:5d:55:10:53:a1:2a:3f:d3:50:
27:5a:cd:6a:20:f9:bc:63:e6:f3:fc:52:f6:ae:f2:
f9:ed:ee:3d:7a:94:79:54:9e:e3:cc:c8:9a:e7:c4:
25:22:74:2d:33:62:3b:b4:7b:03:3f:d4:82:44:80:
84:24:14:ce:a9:f5:1c:03:24:ea:57:fc:ee:ee:61:
a2:39:7e:9b:fb:42:c0:8e:c0:0b:9c:2e:ce:89:df:
7c:35:e3:c3:da:8f:15:60:68:b7:7f:7d:90:03:94:
42:47:ea:a4:81:4a:03:91:ec:90:bc:d0:4b:3d:4c:
88:ed:1c:39:62:a3:47:b5:39:de:d2:1b:1b:a1:48:
b1:d1:17:e8:19:5b:d5:bd:46:80:16:fa:e8:66:f4:
e8:73:f9:52:7d:3a:54:b6:b1:3f:f9:90:17:61:f6:
20:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C2:2B:53:8C:41:0A:A6:C0:EE:9A:F4:59:20:D9:F7:BC:CD:F7:D4
X509v3 Authority Key Identifier:
keyid:1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:ae:7f:d0:15:eb:5b:ee:a2:55:cb:88:28:cd:9d:b2:78:01:
0a:bc:e8:2d:7e:9a:6d:52:ee:ac:4b:ea:14:bb:8d:eb:ca:6f:
e3:92:e6:e1:50:3a:de:64:53:60:e9:d6:69:57:cd:f4:ab:9c:
f3:6c:1d:2c:4f:b4:eb:79:6c:92:b9:17:8e:23:ae:e2:94:f8:
17:6c:e4:98:5d:7b:ba:41:de:65:d1:34:64:87:4e:a1:2f:7f:
ef:d7:64:40:a2:47:b1:7f:8a:45:e3:1d:70:c7:aa:c2:fb:d6:
96:a2:8e:82:45:94:a3:5b:6d:21:5d:96:b8:bf:01:a2:da:79:
50:80:0c:1f:81:e6:fa:4e:ee:dd:b1:5a:24:6b:d9:bb:8f:5e:
c6:a2:1a:d1:99:c9:d1:20:08:90:e9:55:c7:ad:ab:b9:12:c5:
11:9b:59:cb:37:c5:4d:81:d9:85:6b:62:e2:54:03:30:47:f2:
39:94:a0:fa:d3:c7:a5:09:37:19:e8:a2:59:66:a1:16:12:80:
e3:92:5e:13:95:84:b5:6d:89:68:0d:be:21:18:87:fd:37:0a:
48:31:e5:ac:de:4d:64:50:15:30:36:b5:90:bf:b7:f3:6a:53:
a9:87:eb:eb:b2:26:a4:cd:cd:41:34:2c:f7:16:02:96:59:0e:
65:55:b2:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:32:08 2025 by rpki-client