Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
File: Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft (raw, json)
Hash identifier: iV99dK1No4DxlUiO4OmIZU1O3PSYaekQCaOBojip2QQ=
Subject key identifier: F5:DD:82:C9:34:64:B7:39:E6:13:04:52:9A:AF:A2:E5:6A:7A:BC:A8
Authority key identifier: 1E:68:BF:27:DA:C7:05:F3:10:2E:A8:86:73:47:0D:27:DC:86:86:6C
Certificate issuer: /CN=1e68bf27dac705f3102ea88673470d27dc86866c
Certificate serial: 019A71B9052AD6145A1E181779CBDDEE7D44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
Manifest number: 0E3F
Signing time: Tue 11 Nov 2025 07:02:22 +0000
Manifest this update: Tue 11 Nov 2025 07:02:22 +0000
Manifest next update: Wed 12 Nov 2025 07:02:22 +0000
Files and hashes: 1: Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.crl (hash: JMVZu+oE3fFeQ4A4OwRIVQfHD4GcTH34hQGIVV04pHk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:05:2a:d6:14:5a:1e:18:17:79:cb:dd:ee:7d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e68bf27dac705f3102ea88673470d27dc86866c
Validity
Not Before: Nov 11 07:02:22 2025 GMT
Not After : Nov 12 07:02:22 2025 GMT
Subject: CN=f5dd82c93464b739e61304529aafa2e56a7abca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:86:38:00:2a:dc:1a:b9:92:d1:8d:d9:7b:fe:
a2:99:30:ca:ac:fd:60:56:88:68:9d:e7:8f:68:ba:
1d:88:f8:e4:90:4e:4d:07:4e:b5:76:3f:07:ea:ee:
a9:32:2c:f6:89:9c:0d:25:63:52:61:f5:78:0d:06:
2a:35:f0:d6:b7:48:90:ca:04:da:19:a5:61:84:9e:
f0:4b:1b:d3:42:28:87:9d:d1:0d:23:b7:57:07:a5:
c8:ed:43:f5:eb:76:87:10:fe:fa:e1:76:bf:28:b5:
37:4b:c4:fa:db:2d:2f:a2:8e:c9:0e:f1:3c:c4:45:
20:4f:3d:27:32:5e:87:f6:b0:47:95:34:b7:17:e8:
7d:16:fb:77:c3:55:4d:9d:8d:56:d3:ed:3c:41:4c:
f3:79:91:c6:97:76:87:58:bb:ac:6a:78:28:f8:e3:
06:7e:27:bb:bb:d6:a6:5d:08:39:da:2a:90:46:90:
d6:fa:1f:69:2a:b5:2a:0a:84:b6:aa:95:88:a7:78:
e1:30:7e:b1:00:8f:d3:c2:6f:06:2f:b5:63:2c:75:
1a:df:b5:97:ec:69:a8:01:fd:68:53:aa:a0:76:9e:
f7:43:e1:cf:69:9d:6d:5a:a7:ec:54:91:99:f7:d7:
6c:46:f2:c4:73:73:ca:f1:9a:1b:0d:f5:88:58:42:
2b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DD:82:C9:34:64:B7:39:E6:13:04:52:9A:AF:A2:E5:6A:7A:BC:A8
X509v3 Authority Key Identifier:
keyid:1E:68:BF:27:DA:C7:05:F3:10:2E:A8:86:73:47:0D:27:DC:86:86:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:7a:60:b8:b6:d5:d4:df:53:39:10:c8:3c:45:c7:59:53:b0:
95:e9:fc:dd:93:a5:bd:7b:0f:a2:3e:cb:0f:10:74:41:bc:12:
e0:7f:e1:91:a4:df:c9:23:5d:5f:7d:5b:9f:c1:f5:7f:38:93:
81:5d:e0:a9:ed:fe:7d:84:99:c9:df:0f:00:11:e7:f7:f9:92:
e3:a9:60:1d:64:c2:c1:92:b9:00:ed:7a:dd:2d:da:56:8d:59:
6e:08:93:cb:5e:bb:56:a3:fd:1c:6e:71:87:9d:b9:b9:ad:a5:
df:a9:87:5e:6f:0a:22:64:1c:73:92:35:fe:df:37:95:d9:a0:
49:db:79:73:40:20:fb:99:9c:e1:ae:6e:cd:5b:40:e8:ed:0c:
0e:32:09:5b:f0:c6:cf:af:5b:ba:a3:5c:1a:9a:c2:ad:e7:50:
bc:cb:4a:f9:f0:03:6f:f7:3a:81:84:cd:ff:af:5d:71:1b:67:
3f:28:e0:12:3e:54:f0:a5:3f:f2:0f:92:e8:ed:f8:d6:c2:f1:
c4:42:66:e9:8e:e4:61:7b:b6:25:9f:3e:7c:83:e9:49:6a:50:
98:f5:ec:4b:66:ac:4d:c2:d9:13:c9:63:db:3f:46:9e:de:37:
9f:e8:93:03:0e:48:c6:3e:ee:7d:98:10:b7:7b:f5:f8:67:63:
95:a5:9b:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuQUq1hRaHhgXecvd7n1EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNjhiZjI3ZGFjNzA1ZjMxMDJlYTg4NjczNDcwZDI3ZGM4
Njg2NmMwHhcNMjUxMTExMDcwMjIyWhcNMjUxMTEyMDcwMjIyWjAzMTEwLwYDVQQD
EyhmNWRkODJjOTM0NjRiNzM5ZTYxMzA0NTI5YWFmYTJlNTZhN2FiY2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmoY4ACrcGrmS0Y3Ze/6imTDKrP1g
VohoneePaLodiPjkkE5NB061dj8H6u6pMiz2iZwNJWNSYfV4DQYqNfDWt0iQygTa
GaVhhJ7wSxvTQiiHndENI7dXB6XI7UP163aHEP764Xa/KLU3S8T62y0voo7JDvE8
xEUgTz0nMl6H9rBHlTS3F+h9Fvt3w1VNnY1W0+08QUzzeZHGl3aHWLusango+OMG
fie7u9amXQg52iqQRpDW+h9pKrUqCoS2qpWIp3jhMH6xAI/Twm8GL7VjLHUa37WX
7GmoAf1oU6qgdp73Q+HPaZ1tWqfsVJGZ99dsRvLEc3PK8ZobDfWIWEIrjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPXdgsk0ZLc55hMEUpqvouVqeryoMB8GA1UdIwQY
MBaAFB5ovyfaxwXzEC6ohnNHDSfchoZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG1pX0o5ckhCZk1RTHFpR2MwY05KOXlHaG13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wNjE0NjUtOTU1ZS00MDdlLWE3MDgt
YzE1NjQ3ZjU3MDEwLzEvSG1pX0o5ckhCZk1RTHFpR2MwY05KOXlHaG13Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC8wNjE0NjUtOTU1ZS00MDdlLWE3MDgtYzE1NjQ3ZjU3MDEw
LzEvSG1pX0o5ckhCZk1RTHFpR2MwY05KOXlHaG13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfHpguLbV
1N9TORDIPEXHWVOwlen83ZOlvXsPoj7LDxB0QbwS4H/hkaTfySNdX31bn8H1fziT
gV3gqe3+fYSZyd8PABHn9/mS46lgHWTCwZK5AO163S3aVo1ZbgiTy167VqP9HG5x
h525ua2l36mHXm8KImQcc5I1/t83ldmgSdt5c0Ag+5mc4a5uzVtA6O0MDjIJW/DG
z69buqNcGprCredQvMtK+fADb/c6gYTN/69dcRtnPyjgEj5U8KU/8g+S6O341sLx
xEJm6Y7kYXu2JZ8+fIPpSWpQmPXsS2asTcLZE8lj2z9Gnt43n+iTAw5Ixj7ufZgQ
t3v1+GdjlaWbqg==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:40:17 2025 by rpki-client