Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json)
Hash identifier: F4A2kgKXzTelqAnzjDE/+ejg9Ani4FIxrbv/zQ0QS8A=
Subject key identifier: 94:A3:4C:F9:79:7E:2A:DA:87:93:24:4C:BC:34:86:66:C0:D8:2E:4A
Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Certificate serial: 0199FCFD5C3F5AF56415172E643829D255C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
Manifest number: 16E6
Signing time: Sun 19 Oct 2025 15:01:26 +0000
Manifest this update: Sun 19 Oct 2025 15:01:26 +0000
Manifest next update: Mon 20 Oct 2025 15:01:26 +0000
Files and hashes: 1: CCupZ2Z50lEeozRfCFyqGlk11BE.roa (hash: u0mXYzOevuF7/VUH3KREJcVDAaOJuSJnSH+Q3fKIqwg=)
2: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: 91GbcMU5cEb+qEU6Wv8x3BpX3Odv8K1zrBlJvX01CTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:5c:3f:5a:f5:64:15:17:2e:64:38:29:d2:55:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Validity
Not Before: Oct 19 15:01:26 2025 GMT
Not After : Oct 20 15:01:26 2025 GMT
Subject: CN=94a34cf9797e2ada8793244cbc348666c0d82e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4b:ae:79:0a:c3:78:21:b8:ef:d7:93:76:60:
83:26:3b:fc:0c:7f:78:6f:24:55:e1:1c:37:d3:05:
79:61:83:e0:17:14:82:3b:b0:f6:2f:6a:4f:7a:dd:
b9:e7:99:b6:74:c8:76:05:0e:69:72:0e:c5:ea:0f:
06:a6:6a:e5:7b:9c:d4:23:5e:f2:14:6f:d2:9e:e0:
5f:f8:a8:aa:d5:6c:6f:50:41:b7:69:17:32:b9:65:
e4:ef:2c:7e:d8:f0:bc:a5:f6:52:bd:8d:06:10:fd:
aa:67:78:0f:df:d0:76:70:37:37:91:b2:f2:5f:0c:
91:c4:31:b2:b0:99:2c:25:31:39:84:62:64:81:6b:
f9:7d:8a:dd:e2:3c:14:4b:88:4b:9e:bc:80:d1:6f:
e6:72:0c:62:5a:a9:01:74:c2:e9:bd:e4:ff:0e:dd:
d0:35:df:89:11:8e:b1:72:d8:c9:4c:34:44:a9:36:
76:09:f7:8d:79:23:47:b4:93:f1:3e:57:80:41:8c:
b4:22:6e:b2:f4:7c:c1:7f:7a:cf:35:4a:2f:7d:d2:
72:d3:0c:64:c0:81:79:47:86:ab:c7:ec:58:c2:17:
f7:9a:79:68:bb:73:4e:28:86:16:58:e4:ba:39:bf:
c1:2f:fe:99:f2:fe:cc:ee:2e:98:9e:ba:5e:4e:c4:
b3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A3:4C:F9:79:7E:2A:DA:87:93:24:4C:BC:34:86:66:C0:D8:2E:4A
X509v3 Authority Key Identifier:
keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:99:85:d6:c7:f6:89:be:72:12:ac:2d:e9:f2:2a:97:6e:9c:
a5:08:d6:a6:b8:c9:55:1e:43:d8:68:18:7b:88:9a:f7:c7:10:
26:bb:05:47:b1:a4:46:f9:9f:69:d3:7e:e4:a2:06:49:77:26:
7b:1f:e7:cf:41:d0:f3:bd:b7:52:4d:33:33:3e:cf:d2:86:85:
9d:77:53:bc:e8:71:45:08:64:0b:82:7e:26:be:fe:3b:3c:58:
74:9e:c1:a3:3a:19:97:57:70:f9:bc:d9:27:bd:2e:3e:13:77:
07:77:ba:79:71:ed:5b:c4:24:66:c3:da:6d:5e:cd:ab:14:4f:
31:19:31:9c:0d:54:06:d0:42:63:fa:8f:04:18:1d:b4:96:ec:
c6:c1:c0:f1:09:71:02:16:ae:37:00:b5:51:d6:28:e3:95:65:
ca:00:15:e1:68:11:36:44:4e:59:51:59:d0:51:18:1b:d5:57:
3a:18:7f:86:b8:ae:12:2e:29:93:e8:c0:72:7b:0e:f6:c3:8d:
21:68:98:06:19:93:c7:6f:ab:d5:ab:77:99:a5:a3:f1:94:72:
e4:ee:68:b2:db:10:bf:ee:83:d9:76:57:52:be:e6:c8:28:d4:
3d:b4:31:8a:29:40:07:04:87:6f:f9:5a:c5:15:ee:32:c4:7f:
99:21:4b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:38 2025 by rpki-client