Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
File: hqSVrmh0HnnVjjiGviqoeMSME7Y.mft (raw, json)
Hash identifier: 6ajxxth52dots0rWG+LFcRQknw4Umopbs+BiWAldsck=
Subject key identifier: 8D:B1:2F:11:65:38:F4:13:D1:7A:37:82:D4:B6:AF:0C:1B:9F:7C:9B
Authority key identifier: 86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
Certificate issuer: /CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Certificate serial: 019A70A5128FA19975D0D9F198836C1DA500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
Manifest number: 171B
Signing time: Tue 11 Nov 2025 02:00:57 +0000
Manifest this update: Tue 11 Nov 2025 02:00:57 +0000
Manifest next update: Wed 12 Nov 2025 02:00:57 +0000
Files and hashes: 1: hqSVrmh0HnnVjjiGviqoeMSME7Y.crl (hash: omFqaQzO/83Bn8yr+vS/cUsSs/+FSB9aPlbA60ch4TE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:12:8f:a1:99:75:d0:d9:f1:98:83:6c:1d:a5:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Validity
Not Before: Nov 11 02:00:57 2025 GMT
Not After : Nov 12 02:00:57 2025 GMT
Subject: CN=8db12f116538f413d17a3782d4b6af0c1b9f7c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:38:44:16:2b:2f:c1:4f:06:99:d6:06:e0:5f:
ae:6b:75:96:84:05:8e:a1:25:2b:92:78:f2:00:93:
e6:5b:fc:bc:9f:44:09:4a:7b:ba:ff:02:e0:cc:fb:
3a:2e:3c:27:d5:45:6b:82:2d:72:67:c3:8a:01:79:
2c:9b:1c:23:3b:ba:fe:0a:40:bb:54:6f:c1:6f:ec:
95:4f:16:43:85:a6:b3:ab:ac:8a:5e:cc:0d:0a:61:
e4:25:71:4a:bd:9a:39:6f:78:ef:59:d4:66:73:e7:
ae:c1:e0:de:9c:8a:6c:ae:0d:fa:be:2b:6b:56:64:
d3:91:6d:d9:52:b0:54:18:7b:14:f2:83:ad:59:10:
66:3a:06:06:55:f9:4a:e8:39:83:6b:bf:df:61:de:
5c:14:47:86:e9:e3:6b:6a:79:76:0b:1f:e3:79:26:
cf:fe:51:1e:17:da:3b:0e:0a:4a:c7:39:6a:6a:c3:
b7:0f:b3:8b:3b:83:3f:9a:af:0b:e3:13:f4:e1:bd:
18:df:d1:48:b5:ff:32:b2:43:be:7d:1d:29:8f:e6:
9d:37:06:b0:b0:30:5a:0e:e8:36:22:01:ff:ed:4a:
bb:8f:a1:2d:83:8d:61:c0:66:da:c6:32:1b:cb:d0:
88:18:a6:87:3c:84:09:7e:94:8f:7f:0e:72:37:80:
00:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B1:2F:11:65:38:F4:13:D1:7A:37:82:D4:B6:AF:0C:1B:9F:7C:9B
X509v3 Authority Key Identifier:
keyid:86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:fa:5e:17:a3:15:31:ad:ee:74:3e:a3:5f:50:a4:da:56:8a:
45:54:d0:b8:21:eb:45:a1:ec:12:63:e2:db:fc:1f:5f:f8:a4:
03:84:16:3c:46:93:41:a9:62:18:d8:7c:c5:05:1e:2e:8e:1a:
3c:aa:c0:30:d9:bb:63:74:d8:6f:ac:29:67:ec:61:89:a9:30:
0e:45:54:91:08:94:c0:f6:98:2e:1f:ea:e4:4c:6e:c1:fd:7a:
5a:ba:41:14:70:1a:88:aa:96:63:1a:9c:d5:9a:3a:fe:1a:62:
4e:7a:5c:5e:f3:aa:9b:cb:31:d5:9c:3c:f6:a0:ba:34:a3:36:
f8:94:8d:90:0c:15:ea:01:21:ec:e9:d0:ef:87:0d:d5:ce:4d:
20:58:16:e4:8f:db:84:c2:30:28:95:5b:77:a6:59:6c:3a:f5:
1c:cc:02:dd:f1:e8:79:99:51:b6:22:1b:cf:49:04:1b:74:fc:
91:39:b2:0f:b2:87:b2:7d:89:96:bb:2c:7d:63:d8:83:c7:5c:
18:36:33:73:d8:15:c2:9c:c1:eb:d6:cc:00:98:b3:af:4c:ae:
f0:ae:87:7a:34:ad:79:0a:66:b7:f9:7e:34:79:b5:ec:40:35:
07:27:d5:47:2c:e4:3b:c3:7c:c5:5d:98:1d:63:e3:6a:90:a9:
78:7a:a0:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpRKPoZl10NnxmINsHaUAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YTQ5NWFlNjg3NDFlNzlkNThlMzg4NmJlMmFhODc4YzQ4
YzEzYjYwHhcNMjUxMTExMDIwMDU3WhcNMjUxMTEyMDIwMDU3WjAzMTEwLwYDVQQD
Eyg4ZGIxMmYxMTY1MzhmNDEzZDE3YTM3ODJkNGI2YWYwYzFiOWY3YzliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxThEFisvwU8GmdYG4F+ua3WWhAWO
oSUrknjyAJPmW/y8n0QJSnu6/wLgzPs6Ljwn1UVrgi1yZ8OKAXksmxwjO7r+CkC7
VG/Bb+yVTxZDhaazq6yKXswNCmHkJXFKvZo5b3jvWdRmc+euweDenIpsrg36vitr
VmTTkW3ZUrBUGHsU8oOtWRBmOgYGVflK6DmDa7/fYd5cFEeG6eNranl2Cx/jeSbP
/lEeF9o7DgpKxzlqasO3D7OLO4M/mq8L4xP04b0Y39FItf8yskO+fR0pj+adNwaw
sDBaDug2IgH/7Uq7j6Etg41hwGbaxjIby9CIGKaHPIQJfpSPfw5yN4AAmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI2xLxFlOPQT0Xo3gtS2rwwbn3ybMB8GA1UdIwQY
MBaAFIakla5odB551Y44hr4qqHjEjBO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEt
NDkxOGIwMjc0MmM3LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEtNDkxOGIwMjc0MmM3
LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALPpeF6MV
Ma3udD6jX1Ck2laKRVTQuCHrRaHsEmPi2/wfX/ikA4QWPEaTQaliGNh8xQUeLo4a
PKrAMNm7Y3TYb6wpZ+xhiakwDkVUkQiUwPaYLh/q5Exuwf16WrpBFHAaiKqWYxqc
1Zo6/hpiTnpcXvOqm8sx1Zw89qC6NKM2+JSNkAwV6gEh7OnQ74cN1c5NIFgW5I/b
hMIwKJVbd6ZZbDr1HMwC3fHoeZlRtiIbz0kEG3T8kTmyD7KHsn2JlrssfWPYg8dc
GDYzc9gVwpzB69bMAJizr0yu8K6HejSteQpmt/l+NHm17EA1ByfVRyzkO8N8xV2Y
HWPjapCpeHqgbg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:15 2025 by rpki-client