Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json)
Hash identifier: 1k17/8FsCi+rWOefGSQdEgjDLVT5RtSPtPO/B5g85qY=
Subject key identifier: 5F:F3:D5:56:FD:37:F8:84:AB:F2:FC:94:6E:30:60:6B:A1:99:98:81
Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Certificate serial: 0199FDD9CF87E7F2CCECA445D719B86542F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
Manifest number: 15D3
Signing time: Sun 19 Oct 2025 19:02:13 +0000
Manifest this update: Sun 19 Oct 2025 19:02:13 +0000
Manifest next update: Mon 20 Oct 2025 19:02:13 +0000
Files and hashes: 1: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: ZF9cJYWkcNlkBlD7U0PtjRkVdBOxf9O+RWqqHYMLd/M=)
2: W-OtDTrcD4enIHqlL53Q8gJVqVg.roa (hash: MIoWyZfzBnM9tbFHcQ1uCgLljDFhySK8a9b/Bqx5jVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:cf:87:e7:f2:cc:ec:a4:45:d7:19:b8:65:42:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Validity
Not Before: Oct 19 19:02:13 2025 GMT
Not After : Oct 20 19:02:13 2025 GMT
Subject: CN=5ff3d556fd37f884abf2fc946e30606ba1999881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:42:5a:41:c0:71:2a:e6:ee:48:f6:c5:b7:c9:
d1:e1:0f:65:80:be:39:a3:1e:c8:c1:87:13:44:35:
36:99:57:f0:26:12:53:75:68:d5:93:91:0e:09:70:
5c:25:9d:16:ed:88:1d:69:e3:b1:1b:74:0a:0a:74:
a2:bb:23:bb:1c:81:8f:00:7b:0b:d8:8b:68:04:bf:
72:7c:31:25:33:9c:53:95:d9:ec:1b:44:13:d3:2e:
19:d6:d0:2e:d9:32:b7:a9:25:8e:54:79:8e:cb:62:
86:0c:1c:b8:fc:a1:55:d4:20:be:42:b8:d2:1a:82:
36:10:7a:89:e8:c7:d2:0e:d0:9e:bf:4b:4c:a6:91:
7d:f4:e5:13:df:2d:3f:17:51:60:fa:4f:03:55:da:
77:25:73:75:e8:cf:c6:83:23:d9:18:72:0f:54:6d:
54:84:8c:8a:3c:73:12:2e:96:1a:4e:e8:6a:34:c8:
5d:19:48:37:d2:8e:1f:9f:49:1a:75:05:f2:63:b3:
3f:9b:6c:69:ee:ef:c9:b9:c9:38:ed:1c:63:f2:54:
38:2d:30:15:52:20:3b:f0:5f:a4:77:1a:67:7e:f3:
91:4f:8b:28:c2:83:98:06:8e:21:23:f7:4a:80:82:
77:43:fa:98:7f:09:38:87:20:b7:89:7d:83:fe:68:
25:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F3:D5:56:FD:37:F8:84:AB:F2:FC:94:6E:30:60:6B:A1:99:98:81
X509v3 Authority Key Identifier:
keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:06:cc:01:11:35:a2:4f:be:80:c1:bf:7b:c6:ec:6a:06:17:
2a:3f:c8:3d:9f:82:68:02:6f:f9:5c:9a:96:69:ea:aa:74:72:
a0:94:82:c0:07:41:ce:87:69:b4:e4:b2:e0:c6:88:d3:88:04:
da:80:25:f5:87:51:50:b9:ce:a3:6c:c9:ec:e1:c7:05:69:5b:
5b:95:f0:f6:7d:36:9d:05:8c:9b:46:8b:80:1d:53:d4:41:2f:
fc:6c:e6:30:62:f5:ae:c2:ce:61:8b:eb:9d:47:33:bf:85:0d:
50:3c:f7:0e:97:90:49:a2:a7:87:e8:d2:02:dd:38:a5:73:9f:
53:5d:07:1f:f1:33:a3:6d:cf:77:6e:4d:92:35:77:fe:c0:cb:
90:ce:a3:34:8d:4f:f7:de:b2:51:9e:0e:ee:f9:8e:95:23:fd:
54:7b:3d:df:0b:4f:5f:4d:c6:e0:3d:7d:4e:44:08:f5:9a:4e:
55:74:73:c9:6b:18:37:95:f5:e4:96:43:02:03:c1:51:2c:cb:
c3:c5:83:9a:4a:50:f3:77:a1:6e:e6:3e:fc:1c:68:57:b1:58:
86:9e:4b:c9:6f:9e:94:3a:3b:ed:08:9c:16:74:5c:11:3d:bb:
ef:d9:10:69:b7:65:e7:a5:68:c0:c5:81:b2:0e:b8:1b:8c:67:
d1:75:a2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:28:34 2025 by rpki-client