Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
File: HPoACq4LHA_NOZiRS7dt_HLoc1g.mft (raw, json)
Hash identifier: cemYMAq3HIcX35UXnjYeHXooifpVMLEZX5H2fUo60I4=
Subject key identifier: F5:3E:7E:99:4F:3C:21:B9:67:08:1F:E9:A8:6D:8D:59:1C:D9:21:D1
Authority key identifier: 1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
Certificate issuer: /CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Certificate serial: 0199FCC6244A36AA8A1C53DE9B12B53305B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
Manifest number: 03B9
Signing time: Sun 19 Oct 2025 14:01:07 +0000
Manifest this update: Sun 19 Oct 2025 14:01:07 +0000
Manifest next update: Mon 20 Oct 2025 14:01:07 +0000
Files and hashes: 1: HPoACq4LHA_NOZiRS7dt_HLoc1g.crl (hash: 8lnB5plz7CQgq1BvzvN92K9eo/XBHZOuyVsEEsTFyy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:24:4a:36:aa:8a:1c:53:de:9b:12:b5:33:05:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cfa000aae0b1c0fcd3998914bb76dfc72e87358
Validity
Not Before: Oct 19 14:01:07 2025 GMT
Not After : Oct 20 14:01:07 2025 GMT
Subject: CN=f53e7e994f3c21b967081fe9a86d8d591cd921d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:40:4b:7c:d5:35:6a:9b:41:4b:ff:d3:89:82:
ad:4f:52:d6:18:e1:2f:f9:51:eb:35:58:ab:e5:b1:
f6:04:79:5f:f2:15:e8:d1:c5:1b:3e:cf:62:4b:aa:
42:e0:ab:d7:35:38:b6:86:e4:89:6a:98:25:fc:d2:
da:f2:1f:62:5e:44:98:f3:0f:c1:5c:5c:dc:50:42:
ee:dd:5b:7b:a9:03:3f:05:5b:e3:c4:1e:0f:4c:9e:
a6:af:53:e4:27:55:7d:31:0d:d0:c2:ba:92:d4:9c:
88:fa:33:aa:82:89:d7:79:00:b9:2a:0c:f2:1f:1e:
2c:cf:6d:57:e1:43:f1:f8:d8:cd:72:73:f3:a8:0c:
f1:f6:a4:bd:07:be:0d:ea:23:cd:55:1e:fa:42:fd:
e0:dd:18:11:6f:6b:98:fa:db:a5:a2:1e:f4:59:6a:
af:88:28:83:ab:b5:b4:d7:75:45:76:18:60:37:65:
e2:a6:37:6b:eb:fa:92:db:13:32:eb:bd:16:4e:70:
44:49:60:dd:8b:c6:59:24:79:01:b0:6e:b6:fd:55:
fd:f5:d6:c3:86:c6:77:61:5a:55:f2:87:74:64:e3:
79:ef:fc:99:f4:1e:6b:6a:e3:5d:1c:83:e3:f8:2e:
09:dd:ca:e2:5a:80:ef:91:89:64:59:2e:19:b4:14:
4f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:3E:7E:99:4F:3C:21:B9:67:08:1F:E9:A8:6D:8D:59:1C:D9:21:D1
X509v3 Authority Key Identifier:
keyid:1C:FA:00:0A:AE:0B:1C:0F:CD:39:98:91:4B:B7:6D:FC:72:E8:73:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPoACq4LHA_NOZiRS7dt_HLoc1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/69b7c4-e423-4bfc-ba4b-8ef709de2d64/1/HPoACq4LHA_NOZiRS7dt_HLoc1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d5:6a:b0:59:36:b3:ad:0a:d3:a8:2a:c7:90:93:e2:a4:b9:
3c:8a:8c:76:f8:b5:af:aa:e9:c6:22:4a:cb:88:0c:c2:97:ae:
2b:98:23:bc:29:99:6c:11:47:dc:63:73:76:85:ed:63:b1:c1:
37:0b:03:45:1f:5e:5d:c8:8f:ff:87:7c:11:b6:f0:24:aa:f5:
e2:2e:05:c9:87:70:b0:b7:62:0e:ea:27:a8:46:b5:92:6d:d1:
bc:33:79:9f:e7:fc:c2:c5:90:71:ce:6f:ea:cd:b1:78:3c:70:
85:c5:e9:a9:fc:2a:bd:0e:13:ec:56:7b:f3:cc:a1:02:44:70:
47:d6:03:00:4e:d4:ba:58:68:fc:37:0f:97:a8:60:b3:4d:1e:
50:37:d2:5c:e2:a3:1b:b9:30:31:8d:fa:71:bb:9f:e9:1b:75:
fd:3a:51:f4:ea:01:0e:3c:d8:1a:55:f9:0b:b2:5e:9a:23:7b:
06:38:97:8a:ed:25:3f:b0:52:c3:64:28:53:d7:f4:92:93:36:
dd:80:04:d8:44:5d:46:72:ef:e3:ea:98:79:a5:d9:06:21:28:
6c:49:0a:4a:b9:a0:2f:59:c5:81:ae:20:e0:4c:55:62:98:28:
e6:b2:eb:e3:87:bd:05:b7:fb:72:cb:00:04:f0:8c:24:c2:92:
26:b8:8d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:52:20 2025 by rpki-client