Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json)
Hash identifier: qzeGMuobxY+eKft9C+mtOOGaYq+dTHflPbdzPcys7PA=
Subject key identifier: E5:62:D5:5F:97:7C:63:B3:D8:4F:E3:D0:F8:6F:1B:33:5C:AC:E6:9F
Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c
Certificate serial: 0199FC591AD20C4435A992BE17BCACD09782
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
Manifest number: 0A1B
Signing time: Sun 19 Oct 2025 12:02:01 +0000
Manifest this update: Sun 19 Oct 2025 12:02:01 +0000
Manifest next update: Mon 20 Oct 2025 12:02:01 +0000
Files and hashes: 1: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: 1yiFsIFLjOaMsYjJNRq2XTBXuWTFjDqlq1kWV8jg7OY=)
2: uaDvodSl9Qqt6SU3QvEP4PKpm0c.roa (hash: KfFNiihZ95ffen8bkT+elj9FXLgX4E04ZxK55q4T9Kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:1a:d2:0c:44:35:a9:92:be:17:bc:ac:d0:97:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c
Validity
Not Before: Oct 19 12:02:01 2025 GMT
Not After : Oct 20 12:02:01 2025 GMT
Subject: CN=e562d55f977c63b3d84fe3d0f86f1b335cace69f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:86:52:97:e4:74:ef:22:2f:47:63:b1:0f:
e6:ee:69:03:d2:64:c9:f5:aa:91:04:ad:1d:2d:ff:
d4:6e:da:3c:ba:cd:1d:ce:c0:cf:ab:14:6a:6c:38:
7c:11:4a:76:9a:1d:3a:57:66:53:e1:2b:d5:d7:19:
43:e9:9c:37:cd:2f:b7:32:58:9e:44:69:32:83:de:
56:69:16:92:4b:6e:86:ce:55:bd:85:f2:ff:ed:a5:
75:6b:5e:a6:da:85:e5:a9:00:95:be:ef:77:a5:2b:
0e:9f:3e:f3:2e:5e:79:22:38:fe:6b:14:ec:f8:f3:
90:a4:b6:74:d5:bd:a5:35:82:e5:77:68:9d:8e:69:
db:35:ee:0d:23:cc:e1:7b:fc:65:fa:f6:4f:ef:6a:
d8:9e:12:20:da:17:27:9e:5c:11:83:62:45:14:40:
f6:4c:32:5d:a9:63:24:89:b5:89:6d:a0:83:d8:c3:
02:20:6f:e9:33:53:41:4e:bf:bc:cb:58:c8:ac:d1:
95:ca:9d:5a:68:dd:58:44:ab:bd:af:66:cd:1f:7c:
cf:b4:da:17:4f:55:1e:f9:5c:5f:13:aa:32:e1:e6:
db:5d:c5:3f:5b:1c:ef:15:5a:ed:fd:bc:7b:c0:1c:
f7:15:2d:95:dd:ca:ba:66:a0:db:2a:f5:9a:6f:a9:
23:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:62:D5:5F:97:7C:63:B3:D8:4F:E3:D0:F8:6F:1B:33:5C:AC:E6:9F
X509v3 Authority Key Identifier:
keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:5f:19:f4:13:b4:57:a6:84:21:46:59:23:bc:19:80:ae:37:
40:c6:51:20:54:8d:10:93:22:b0:5f:13:6b:7e:30:16:8f:ee:
48:ac:ac:0d:29:97:68:cb:40:b1:88:02:fd:5e:50:b4:e9:74:
df:53:9f:b7:b0:f9:dc:b9:3d:58:4d:26:c7:4d:e8:f2:85:c5:
b8:d8:b8:24:fc:36:6e:6f:a8:ea:d5:c9:84:ed:83:92:21:97:
81:31:96:c6:dc:6c:6e:96:fa:31:f6:f4:07:e8:a7:6e:02:0d:
b1:f3:b1:6b:d4:23:de:12:e1:0d:8f:f9:e1:ab:e7:4d:cf:9b:
b8:31:93:a1:b1:49:0b:44:4a:94:ee:88:c8:6a:10:92:0a:ce:
b9:0d:19:ad:5a:12:75:0d:46:46:f3:af:27:c8:d7:5f:36:a2:
5e:a5:ce:b8:c1:3c:97:e7:69:ac:12:14:cc:8c:9d:3b:a4:26:
43:41:bd:94:88:de:ff:9f:6b:8b:a6:19:6c:f9:0e:20:ab:17:
79:89:3c:8d:62:8a:e1:1a:1b:83:fe:fd:bd:5e:db:98:d4:b0:
84:92:8c:9c:4a:b2:46:5e:9d:fc:e3:27:e5:70:bc:2a:af:09:
52:8e:b8:fd:e5:54:56:ed:8a:b9:39:35:cb:ba:2d:90:81:dd:
d8:e2:3e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:07:50 2025 by rpki-client