Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
File: HzjUsMuomcJPTjQHOE1tP6jVGl8.mft (raw, json)
Hash identifier: kR6n38Sg/Aupv/RTK5PcetQdshhJqv432YB0xIfZ2kg=
Subject key identifier: 97:6E:81:8C:41:7A:BD:13:84:FE:E8:D7:7C:D0:7F:57:CB:31:CA:EE
Authority key identifier: 1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
Certificate issuer: /CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Certificate serial: 0199FC585A92F3B43B20700CF05FE3233C98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
Manifest number: 04AC
Signing time: Sun 19 Oct 2025 12:01:12 +0000
Manifest this update: Sun 19 Oct 2025 12:01:12 +0000
Manifest next update: Mon 20 Oct 2025 12:01:12 +0000
Files and hashes: 1: HzjUsMuomcJPTjQHOE1tP6jVGl8.crl (hash: gRY17saVj6SnIOp8in8n0DNwEWVzaaUtn/BfsM+7ghE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:5a:92:f3:b4:3b:20:70:0c:f0:5f:e3:23:3c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f38d4b0cba899c24f4e3407384d6d3fa8d51a5f
Validity
Not Before: Oct 19 12:01:12 2025 GMT
Not After : Oct 20 12:01:12 2025 GMT
Subject: CN=976e818c417abd1384fee8d77cd07f57cb31caee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6b:af:75:cd:8c:13:70:b3:4f:0b:f1:74:e6:
4f:28:bc:08:b5:9c:fd:f8:f6:6e:b2:ed:53:14:d8:
1b:4b:a4:fa:e7:00:4d:26:2f:33:31:05:1c:f1:4b:
94:d8:d5:1f:7b:b6:a9:69:f7:99:76:89:61:a4:bf:
c0:ec:94:eb:57:68:11:88:dd:19:34:07:92:9b:06:
ad:2b:e0:1c:65:9f:8b:19:89:80:57:eb:df:49:87:
fb:4a:83:3b:fd:a6:d2:02:fd:5c:d1:98:d5:5b:e1:
a1:3e:6f:d1:61:35:c5:92:69:94:22:2d:6b:5f:b7:
6c:38:3e:c8:b6:22:58:bb:3b:19:6d:30:6e:72:20:
c6:b0:dc:5f:d6:d5:c6:77:0e:f6:c2:92:0c:07:a8:
34:ec:f8:05:03:4c:64:97:c6:e1:f0:63:64:78:4f:
9c:8e:1b:e5:ef:90:27:cd:ad:4e:b0:72:89:28:0d:
41:54:d5:83:12:48:61:25:72:a6:45:cf:9e:08:1b:
9a:34:00:43:ab:5d:dc:a5:42:d0:f4:59:b8:80:68:
9c:5e:bb:96:22:4e:81:a5:9e:82:d0:ab:44:e4:46:
fe:db:06:40:57:2f:0e:3b:25:e7:fd:f6:81:26:78:
46:f1:f9:97:3b:ff:03:c0:aa:b1:65:19:cd:f4:e6:
21:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6E:81:8C:41:7A:BD:13:84:FE:E8:D7:7C:D0:7F:57:CB:31:CA:EE
X509v3 Authority Key Identifier:
keyid:1F:38:D4:B0:CB:A8:99:C2:4F:4E:34:07:38:4D:6D:3F:A8:D5:1A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzjUsMuomcJPTjQHOE1tP6jVGl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/16cf7d-a151-49ec-8d8a-3a288c2c852c/1/HzjUsMuomcJPTjQHOE1tP6jVGl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:7d:35:2e:65:69:a7:59:11:5e:f6:27:50:e0:ba:ef:2c:1d:
60:b4:83:81:f3:2b:d4:9a:76:9c:dd:6a:7b:aa:58:f7:4b:01:
8a:73:1b:fe:d7:a2:1c:ff:3c:5e:1b:4e:67:f5:55:6e:b6:22:
43:79:26:6a:45:80:e9:41:16:24:1f:11:89:81:a6:2b:d8:e4:
6c:b6:14:7e:db:58:44:ab:94:f2:9f:59:77:e5:75:3d:8d:aa:
cb:da:c1:f8:16:58:7e:dc:b2:ac:72:88:89:d0:58:ae:65:4c:
4d:84:98:84:76:da:6a:56:97:4c:a7:99:e0:b9:08:13:2b:18:
2b:10:8a:bf:99:80:15:76:5e:89:f0:5a:07:4b:4d:ab:12:1a:
d9:31:47:31:4d:6f:57:07:37:b3:19:ef:a5:a2:ff:f3:dd:c3:
86:67:d5:59:06:3d:38:b8:56:5d:f4:90:84:ac:5f:90:10:3a:
e0:eb:fa:3d:b4:4d:0a:ee:a2:2e:4f:36:27:ba:dc:67:bd:ce:
99:56:d6:a3:83:2e:31:5f:e1:db:85:30:89:4f:58:4d:47:89:
14:79:d5:d5:0e:44:1d:d3:5a:62:d6:49:dd:28:5e:89:89:9d:
6c:69:88:e4:48:d9:2f:da:69:0f:d5:5f:e7:6a:e2:83:8a:c2:
b6:96:fc:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:43 2025 by rpki-client