Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier: 1ZG+iX2GOCjwPD7uCO+ByuimLPR39F0qxkQ8DXfa8XY=
Subject key identifier: E7:8B:7B:B9:AC:69:54:41:32:B2:33:42:6F:A6:E3:AC:64:FC:B1:F8
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial: 0199FFFE6A8F497F9A693BF0BE34A9D7D653
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number: 065A
Signing time: Mon 20 Oct 2025 05:01:27 +0000
Manifest this update: Mon 20 Oct 2025 05:01:27 +0000
Manifest next update: Tue 21 Oct 2025 05:01:27 +0000
Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: oIDcT6OGQPNfv4JS3luY5labmbSD8kyU3k9kHbuTz+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:fe:6a:8f:49:7f:9a:69:3b:f0:be:34:a9:d7:d6:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
Validity
Not Before: Oct 20 05:01:27 2025 GMT
Not After : Oct 21 05:01:27 2025 GMT
Subject: CN=e78b7bb9ac69544132b233426fa6e3ac64fcb1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e2:f1:2d:dc:7b:bc:21:88:99:09:99:e4:8d:
11:2c:cc:54:ee:10:35:90:95:22:65:65:ee:6c:dc:
43:aa:dd:b5:20:86:fa:d8:a6:ee:44:1f:62:8e:8f:
41:d0:c7:34:0b:e4:11:39:68:61:b1:b3:46:48:c4:
7f:24:f3:d6:25:5f:d2:5f:b1:c5:2a:13:21:93:d5:
be:84:72:0e:d0:8b:6a:bb:fc:7e:0e:1b:84:29:4d:
cd:13:75:a0:82:40:1c:33:b9:40:6e:b9:c2:66:b4:
f7:05:8d:02:0a:a7:c4:38:9a:7f:66:42:99:ee:0c:
a6:cf:67:10:cf:16:f4:0e:b7:eb:40:88:10:b1:c0:
aa:ae:54:ec:1b:be:d3:88:9e:ba:89:a7:c7:ce:58:
f0:a0:36:d7:79:da:14:07:12:d2:e5:83:b0:62:c5:
9f:a8:fb:97:e8:ce:fd:8d:10:29:d7:17:7a:eb:3e:
80:bb:4a:db:7f:0a:bd:b2:0c:28:f7:ae:b2:97:09:
9c:16:c5:e8:c2:46:3a:50:21:cc:5a:d9:ff:36:14:
c4:84:95:cb:27:79:25:06:bc:58:46:18:3e:cc:34:
6f:74:d4:11:82:8d:89:37:16:db:eb:6b:79:a5:da:
63:50:d1:d3:26:64:d8:ab:2b:1c:91:e3:63:87:d7:
a2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8B:7B:B9:AC:69:54:41:32:B2:33:42:6F:A6:E3:AC:64:FC:B1:F8
X509v3 Authority Key Identifier:
keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ce:f9:e8:14:cb:38:fc:3a:3a:48:09:2c:38:ce:ca:fc:d5:
5c:05:f8:41:94:1f:1a:cb:2e:cf:19:42:b1:cd:03:03:48:18:
10:79:cf:c7:1d:ef:18:e7:63:f5:3d:70:45:8d:cc:bc:26:b3:
15:fc:f0:af:7c:f0:80:3d:f4:9c:88:27:f6:9b:de:e0:6d:20:
38:ab:d8:ca:e8:92:af:4b:9a:32:f7:78:ef:3e:30:fd:e3:14:
af:01:bc:30:79:61:cf:64:39:fc:c6:af:53:5c:29:b3:13:60:
19:c3:74:48:41:71:fb:60:9c:ce:e7:60:63:d3:f5:c1:91:98:
69:6d:cf:c4:45:75:85:de:e0:38:f0:f4:d9:01:3c:71:7b:58:
1c:b8:99:07:26:59:36:0f:d3:97:03:9e:57:d8:6d:53:e7:ea:
af:29:32:47:b8:d3:35:df:c3:0f:dc:3d:28:1f:76:12:2c:1b:
38:57:8f:49:6e:ec:ea:5d:d3:bf:41:34:88:4a:0f:6a:0a:90:
81:d6:2f:60:7e:4d:8b:9e:09:29:b6:a2:c8:a6:ea:e6:ed:24:
62:c6:1b:44:23:6a:e3:ad:7a:9e:07:5d:84:38:66:f3:28:93:
19:a9:04:02:11:5f:81:d2:20:c5:c0:71:ca:07:a1:b6:3c:98:
cf:38:b0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:41:29 2025 by rpki-client