Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
File: hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft (raw, json)
Hash identifier: dBoQ9nbSjvz58haG+7irLoH45yutTDdpExw+W7QAZJg=
Subject key identifier: EC:0D:13:EA:1B:49:07:35:2E:84:B6:C1:F7:A9:55:A6:17:90:04:DC
Authority key identifier: 84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
Certificate issuer: /CN=84f590ca62c246440583818c31f2573a0f50ffd0
Certificate serial: 019A232E658C3EEE53A0A08A32EB4A29FF90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
Manifest number: 0B0A
Signing time: Mon 27 Oct 2025 01:00:34 +0000
Manifest this update: Mon 27 Oct 2025 01:00:34 +0000
Manifest next update: Tue 28 Oct 2025 01:00:34 +0000
Files and hashes: 1: hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl (hash: 1Ued6RO4TPIQep8TdyAzYqgEMs2jK3msebPZcuuYszY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:23:2e:65:8c:3e:ee:53:a0:a0:8a:32:eb:4a:29:ff:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f590ca62c246440583818c31f2573a0f50ffd0
Validity
Not Before: Oct 27 01:00:34 2025 GMT
Not After : Oct 28 01:00:34 2025 GMT
Subject: CN=ec0d13ea1b4907352e84b6c1f7a955a6179004dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a2:15:ea:47:a2:cd:3b:ed:ff:c4:5c:9d:ce:
4f:e5:06:4c:50:1a:39:39:1b:db:bc:82:ce:e0:d5:
6b:85:c2:77:c9:40:c3:7b:e9:e9:4a:cd:93:96:68:
8d:37:52:bd:12:4c:16:e3:30:26:5c:4e:43:a0:54:
22:2b:17:6a:d1:1d:50:0c:1a:04:15:8a:94:54:9c:
5d:87:61:71:b5:34:96:4a:a9:57:19:f3:f1:e5:f5:
8b:c3:b7:9a:e8:29:cb:04:d9:4a:a3:ec:93:08:6e:
98:b6:2c:d2:81:5d:e2:3e:c4:88:53:8c:4f:a6:83:
73:f7:91:98:7a:3e:36:1b:27:77:8b:6b:0e:f7:28:
4d:ea:8c:53:ee:5e:ec:78:29:f9:7e:f3:36:c7:bf:
83:67:b9:76:dc:b4:78:37:2f:6e:d6:1b:b7:dd:53:
60:07:a3:30:24:00:f7:f3:11:f0:40:eb:b3:bf:f8:
ac:3a:35:67:1c:31:9d:8e:cc:f4:cd:82:a8:38:0f:
e7:e7:92:dc:87:ea:d2:0d:7e:46:40:86:7c:c9:50:
c4:8d:c6:97:c4:ba:46:fb:d7:a5:8a:48:e4:9c:ab:
7f:67:01:4f:49:99:7d:e5:ed:c1:e9:0a:bc:b2:ec:
ba:ee:37:45:56:04:49:6d:d9:c2:43:ed:66:8e:77:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:0D:13:EA:1B:49:07:35:2E:84:B6:C1:F7:A9:55:A6:17:90:04:DC
X509v3 Authority Key Identifier:
keyid:84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:40:d5:ef:95:1c:ea:1f:22:26:e1:01:a5:7d:00:e1:20:bd:
e5:6d:fa:66:0b:5b:2f:92:e4:c0:9d:6c:14:8a:42:7b:ec:8f:
6f:ce:ac:2b:0e:14:df:6c:bf:ad:24:1f:fb:0f:58:44:b2:8e:
04:b4:7e:b6:ec:e9:8d:bb:8c:c2:37:14:a7:d4:e9:bf:39:10:
22:5b:75:35:7f:88:2a:7f:b7:e9:2f:ef:ef:b4:e8:87:41:50:
43:67:9d:34:f1:6c:43:e6:16:9c:d4:e7:f5:b6:4e:6e:2f:3f:
97:ce:ca:26:bc:a4:41:6a:48:d7:b5:ad:db:4b:a1:43:7d:f8:
04:bb:8f:79:eb:93:62:e2:72:f3:6a:3e:eb:16:ad:d6:8d:e6:
44:4b:51:bb:61:db:2b:2a:8a:0e:93:11:19:48:1e:2f:b9:b1:
fb:f6:a3:f7:b6:5a:0a:16:fe:59:97:dd:69:b0:65:fa:9b:35:
75:a4:a7:a8:e2:60:f4:b0:71:57:88:ac:1a:25:3c:24:11:bb:
4c:d2:62:4b:25:18:68:98:e8:e9:3c:c6:fe:a9:61:9e:b7:2d:
ce:5b:fd:33:87:13:65:30:3e:36:0c:5f:64:15:28:cb:cc:cb:
dd:bc:e6:d6:cf:53:79:b1:76:b6:26:43:e4:bd:4a:e5:2d:71:
f8:9f:93:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZojLmWMPu5ToKCKMutKKf+QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZjU5MGNhNjJjMjQ2NDQwNTgzODE4YzMxZjI1NzNhMGY1
MGZmZDAwHhcNMjUxMDI3MDEwMDM0WhcNMjUxMDI4MDEwMDM0WjAzMTEwLwYDVQQD
EyhlYzBkMTNlYTFiNDkwNzM1MmU4NGI2YzFmN2E5NTVhNjE3OTAwNGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqIV6keizTvt/8Rcnc5P5QZMUBo5
ORvbvILO4NVrhcJ3yUDDe+npSs2TlmiNN1K9EkwW4zAmXE5DoFQiKxdq0R1QDBoE
FYqUVJxdh2FxtTSWSqlXGfPx5fWLw7ea6CnLBNlKo+yTCG6YtizSgV3iPsSIU4xP
poNz95GYej42Gyd3i2sO9yhN6oxT7l7seCn5fvM2x7+DZ7l23LR4Ny9u1hu33VNg
B6MwJAD38xHwQOuzv/isOjVnHDGdjsz0zYKoOA/n55Lch+rSDX5GQIZ8yVDEjcaX
xLpG+9elikjknKt/ZwFPSZl95e3B6Qq8suy67jdFVgRJbdnCQ+1mjnfu7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOwNE+obSQc1LoS2wfepVaYXkATcMB8GA1UdIwQY
MBaAFIT1kMpiwkZEBYOBjDHyVzoPUP/QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny81YTk5ZTgtYmI0Ni00ZmNkLWFlYTEt
OGQ1NmE3YjA5OTUzLzEvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny81YTk5ZTgtYmI0Ni00ZmNkLWFlYTEtOGQ1NmE3YjA5OTUz
LzEvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnkDV75Uc
6h8iJuEBpX0A4SC95W36ZgtbL5LkwJ1sFIpCe+yPb86sKw4U32y/rSQf+w9YRLKO
BLR+tuzpjbuMwjcUp9TpvzkQIlt1NX+IKn+36S/v77Toh0FQQ2edNPFsQ+YWnNTn
9bZObi8/l87KJrykQWpI17Wt20uhQ334BLuPeeuTYuJy82o+6xat1o3mREtRu2Hb
KyqKDpMRGUgeL7mx+/aj97ZaChb+WZfdabBl+ps1daSnqOJg9LBxV4isGiU8JBG7
TNJiSyUYaJjo6TzG/qlhnrctzlv9M4cTZTA+NgxfZBUoy8zL3bzm1s9TebF2tiZD
5L1K5S1x+J+TRQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 06:31:46 2025 by rpki-client