Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier: BSZkonE5ip0G91rBsjudxbU9LgfxtOdgtyKbygCIDo4=
Subject key identifier: 6E:94:60:E8:4C:8A:C6:21:15:69:C4:D0:1E:A4:25:19:F4:8D:F2:89
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 0199FC21C07DC6DFEC15F8E254BE118AC287
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number: 0F9C
Signing time: Sun 19 Oct 2025 11:01:34 +0000
Manifest this update: Sun 19 Oct 2025 11:01:34 +0000
Manifest next update: Mon 20 Oct 2025 11:01:34 +0000
Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: i8NJZBSMyRbAAkT/KFVAJjKONgsBaZbm4yB436LyTMA=)
2: vNstzceOXGplN-vBnPrAujnN1Ks.roa (hash: A1jnUd+2zoPrt/m5wPvY6xxOOy1gAscK2t40BFmGG10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:c0:7d:c6:df:ec:15:f8:e2:54:be:11:8a:c2:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Oct 19 11:01:34 2025 GMT
Not After : Oct 20 11:01:34 2025 GMT
Subject: CN=6e9460e84c8ac6211569c4d01ea42519f48df289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:69:eb:dc:ea:58:1f:48:18:76:2e:16:2f:
cb:ec:be:b5:85:89:b6:d0:d0:17:35:03:8c:ee:fd:
e9:7c:a7:53:9d:22:49:3f:22:58:5e:46:fa:73:bc:
35:35:5d:e4:32:94:79:24:02:61:4d:df:cb:76:a9:
5b:d4:c0:fd:e8:f9:d8:c1:4a:65:96:3a:f8:08:f9:
fb:f7:b3:0f:3e:68:f1:8b:01:9a:6f:b2:38:d8:51:
de:30:65:0f:51:8d:43:40:f7:70:a6:74:99:3d:7d:
dc:02:bc:b7:ed:7f:bc:4d:dc:5c:d7:cd:95:98:c2:
86:fb:a1:a0:98:7f:d4:32:8b:a4:0a:78:82:62:31:
93:4b:e3:c7:18:e4:9a:34:c2:f4:44:15:42:78:a4:
bb:ea:7e:b9:3c:ec:18:81:e0:6b:1d:4b:f8:61:16:
0d:4e:91:68:0a:06:b2:98:1e:c4:c2:88:96:0b:3a:
33:86:c4:f5:0e:11:a4:a7:58:ae:3f:ad:a2:8f:2e:
9e:31:3b:31:c6:38:c6:d9:4d:91:b3:c3:28:c5:71:
67:fe:22:dd:19:76:ae:cf:46:16:59:2f:99:e9:12:
e6:04:35:83:ed:d4:6e:3e:0c:2e:7e:af:15:f9:a7:
10:9c:be:8f:91:bc:b5:3c:3e:d2:f9:4e:59:cc:06:
7b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:94:60:E8:4C:8A:C6:21:15:69:C4:D0:1E:A4:25:19:F4:8D:F2:89
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e1:92:71:8d:63:2d:ab:60:7e:37:81:71:46:8e:34:e3:ef:
1a:48:d0:8c:98:0f:2d:f1:f0:18:1e:d5:ae:03:31:98:6e:93:
17:db:9d:65:3e:1d:8b:6e:cd:79:0e:08:7d:b7:87:31:ba:84:
2e:22:86:a4:16:50:fc:82:06:37:c3:f7:41:78:b1:18:b6:24:
47:40:82:3c:6c:4c:1f:8f:1e:cc:4d:14:64:08:78:64:09:ec:
a8:ce:e7:9d:5d:1d:55:1a:11:70:8b:78:b6:3d:e3:cf:19:5d:
94:b0:5e:84:9d:26:11:07:f6:2b:99:04:6c:8f:e9:2d:9d:18:
3d:11:db:88:a6:8f:51:a1:25:64:81:16:a1:24:74:65:50:80:
bd:8d:c6:07:78:08:c6:47:6f:36:6b:87:60:a5:af:2d:07:96:
88:b0:4e:e1:5a:96:16:80:7c:d2:e8:90:5a:23:bc:6c:ee:70:
c5:42:d6:39:a4:4c:de:ba:db:d9:ac:45:28:77:b3:a8:87:d0:
2f:5a:46:10:5f:4b:a1:95:a7:e1:c2:d2:0a:ae:4a:00:73:fe:
92:c5:c3:16:38:ea:fe:17:87:9e:54:bf:99:7d:95:fd:e2:c8:
f8:b1:d6:af:b9:f2:87:79:19:d4:2e:30:85:3c:89:29:84:99:
47:40:00:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:13 2025 by rpki-client