Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json)
Hash identifier: hOX84n+QGXncIpHBV/iEfk6mI9WgkMNcH2kAED9YXWI=
Subject key identifier: C7:7D:5C:2A:AE:B8:08:E5:38:0A:8E:2A:D0:A2:9C:F9:39:B3:58:17
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 0199FDDA1565C7D835CBDD5CAF07AF04E1A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
Manifest number: 1490
Signing time: Sun 19 Oct 2025 19:02:31 +0000
Manifest this update: Sun 19 Oct 2025 19:02:31 +0000
Manifest next update: Mon 20 Oct 2025 19:02:31 +0000
Files and hashes: 1: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: RjNPPxRJSe6FSoiwNpsSAUDto2ligBiNCnRmYMNSUSE=)
2: jHj1kA03qC8i8hguuEC8ASnj4XQ.roa (hash: 6J5ezyoc/LI46xWXhW/cUUltYyOZg4CBJG0jaVAl1nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:15:65:c7:d8:35:cb:dd:5c:af:07:af:04:e1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: Oct 19 19:02:31 2025 GMT
Not After : Oct 20 19:02:31 2025 GMT
Subject: CN=c77d5c2aaeb808e5380a8e2ad0a29cf939b35817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ab:b2:c7:df:4d:45:e7:57:94:c2:ed:34:2b:
00:28:8c:0c:b6:57:70:8b:e2:56:5f:eb:26:e2:d2:
5c:94:ac:7a:bc:2d:0e:b0:ae:12:5c:9b:23:13:91:
ae:23:f8:f6:29:c2:68:41:b4:6c:22:bd:8c:d4:73:
6b:30:a2:fb:b7:81:47:16:68:68:d3:1c:e6:54:7d:
05:9a:7c:5d:d9:39:1b:47:fd:2c:b4:24:f9:48:d6:
29:f0:da:b2:1b:97:94:80:58:3b:e4:f1:28:06:b3:
02:d9:21:d2:e9:4f:a5:c8:1c:59:7f:e5:70:3a:89:
05:f1:12:b0:2e:38:00:2e:d6:9d:ab:45:c2:68:82:
c1:d0:89:38:7f:2e:89:4f:4c:90:5e:52:ef:f2:d7:
ad:4b:9b:bc:dc:4a:d8:46:e2:4a:8c:2d:b3:88:47:
f7:65:a4:f0:ae:b0:2a:da:1d:2a:5d:37:a7:1e:c7:
9d:29:96:cb:6a:c9:fe:a0:0b:68:77:de:f4:6b:7c:
f2:d3:10:4b:7b:3a:97:11:71:ac:e4:6e:85:19:6a:
cd:2f:5f:e0:e1:ba:36:7d:7a:b2:d9:08:e4:05:8a:
99:b0:21:4f:fa:e2:42:77:ae:7e:91:d1:94:3a:97:
d4:67:7f:76:7b:f6:56:15:3b:34:d7:34:45:6a:1a:
a6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7D:5C:2A:AE:B8:08:E5:38:0A:8E:2A:D0:A2:9C:F9:39:B3:58:17
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:8d:fb:8b:4b:7f:05:23:e0:7b:5f:60:c0:5c:74:ef:cb:fb:
1b:24:06:2e:13:03:ca:3d:85:81:2f:25:08:9a:38:55:e3:56:
b3:9b:48:66:f4:03:9c:05:3c:f0:4c:ee:52:c2:9d:57:e3:3a:
6c:d0:d0:d2:99:4c:9f:d9:c5:63:6c:89:78:7b:b4:fd:16:65:
d1:47:b4:25:2a:3d:0e:d7:cd:da:17:13:74:cf:81:be:c3:3b:
59:a8:a9:c9:49:72:fb:c4:7f:61:bc:d1:8a:92:c5:5f:84:e3:
3c:a3:b7:c7:f0:c6:0c:59:98:4a:f6:2b:eb:82:39:d8:73:ee:
09:db:61:ac:93:b9:7a:1b:a9:72:a8:d9:20:e0:ff:9d:44:3c:
1f:f4:39:ab:85:f1:da:bd:26:09:73:1c:54:cf:f5:ea:a5:00:
fc:ea:f5:bb:28:89:47:c2:fa:96:38:c7:d5:62:15:c3:ce:4a:
27:1f:c5:ed:f0:08:ec:85:04:d8:7f:f6:9e:b1:e5:93:33:f3:
5b:27:b1:a2:4c:36:4d:73:6a:cc:33:42:ff:7e:c4:1b:61:b9:
30:6e:f7:71:f1:fc:50:94:ab:79:c0:08:a3:7b:54:26:4f:3a:
2a:d7:0d:96:50:8c:ca:c3:e9:77:65:89:a1:1a:7d:8a:be:a0:
aa:50:96:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:26:51 2025 by rpki-client