Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: f+/VNL5YlJVccQrIpR1hjMzvgaSuacGhmsvM6jBqMrQ=
Subject key identifier: 5E:02:41:53:7C:94:B7:7E:B0:E3:89:2A:86:43:19:3C:58:3D:B5:4F
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 019A70A4D0E09A4197A7785F069BFED5041D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0BD2
Signing time: Tue 11 Nov 2025 02:00:40 +0000
Manifest this update: Tue 11 Nov 2025 02:00:40 +0000
Manifest next update: Wed 12 Nov 2025 02:00:40 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: 6WZ04KFUmVEYYHgmUaRJDb0ZoHAslaCwDD5Y1wK6hJk=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a4:d0:e0:9a:41:97:a7:78:5f:06:9b:fe:d5:04:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Nov 11 02:00:40 2025 GMT
Not After : Nov 12 02:00:40 2025 GMT
Subject: CN=5e0241537c94b77eb0e3892a8643193c583db54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:06:11:d9:2b:6e:35:12:3f:88:91:24:27:8b:
ac:f5:6b:79:44:98:c1:23:f4:37:c1:4a:67:38:de:
6f:ae:e3:02:46:0d:6a:39:7a:60:93:66:4c:7e:50:
49:fa:51:69:1d:0a:49:46:49:63:c0:76:62:f4:dc:
f8:dc:18:8c:fc:1b:8b:23:45:52:04:dc:c7:b5:be:
cf:34:ae:a1:8e:88:79:15:75:bd:2d:83:7c:01:26:
01:a0:82:4f:14:4b:c1:52:fe:42:ed:a5:80:ab:b6:
dd:f6:04:e7:d1:7b:88:12:91:12:a1:74:06:dd:49:
32:4c:8f:0d:44:f2:f2:cf:01:c8:ea:1a:e6:5e:c7:
0c:3b:55:04:ee:0d:63:4c:cd:60:cc:0d:7d:b4:ba:
2b:3d:8e:5b:b1:db:67:22:9f:2b:b7:49:ce:e3:1f:
83:a7:63:bb:6d:33:66:e8:e3:48:8e:6f:ea:43:f6:
89:86:ac:af:0f:cb:62:4d:18:89:83:50:9b:10:04:
41:8e:b3:83:41:47:29:d0:df:cc:62:5f:2d:37:a3:
30:8e:aa:96:41:9f:7c:ef:22:4e:1f:fb:f9:77:90:
27:c6:fb:ca:45:5f:3e:8f:d3:77:4f:f9:c8:ae:29:
91:a3:46:f5:a3:61:9b:df:60:00:c9:dd:c3:df:41:
93:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:02:41:53:7C:94:B7:7E:B0:E3:89:2A:86:43:19:3C:58:3D:B5:4F
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:3e:f8:b2:02:b4:e5:c7:b0:17:0f:2c:3d:e9:a4:74:e5:00:
30:f7:d9:14:f5:d4:4c:89:5d:90:a5:73:ad:29:c1:8d:3e:9e:
d7:f4:c9:9e:9e:d6:39:bf:dd:3c:f8:2d:8a:58:41:b9:b1:b1:
04:08:2f:e6:55:20:77:7e:dc:8a:4a:2a:6d:af:8f:7b:93:af:
62:da:32:85:00:2c:6f:e0:ba:ae:9c:d1:08:40:95:2e:06:24:
46:5b:2a:03:7f:d5:01:b4:38:32:64:3f:b0:98:c5:97:28:e7:
28:c7:63:70:6a:9e:8b:20:47:9e:8c:9d:55:64:f6:31:a2:5e:
02:19:16:e6:23:89:68:b9:b0:9a:67:6a:74:66:1b:ac:e2:7a:
5f:87:90:5a:ba:68:6c:3b:2f:10:d3:6b:4c:a6:23:ff:9d:46:
0d:38:1f:38:2e:24:9e:22:de:c8:d8:69:dd:12:4d:73:34:eb:
37:20:88:4d:d9:7d:19:fb:0d:e4:8f:74:e0:8e:87:58:d0:8a:
29:82:58:a4:fb:c5:88:e1:f4:73:1d:42:37:6a:c5:3b:4a:a2:
72:c0:75:31:9d:6d:78:62:bd:be:9b:9a:5c:bb:66:5b:d7:69:
b7:2d:fb:49:08:a6:f9:fd:ab:69:97:35:17:94:c0:fb:4d:9c:
12:78:de:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpNDgmkGXp3hfBpv+1QQdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZGI3MWY2OTE5YjBlZjk4ZWVmYzk5NjQ5MjhhODc1MTAy
MzZhMDMwHhcNMjUxMTExMDIwMDQwWhcNMjUxMTEyMDIwMDQwWjAzMTEwLwYDVQQD
Eyg1ZTAyNDE1MzdjOTRiNzdlYjBlMzg5MmE4NjQzMTkzYzU4M2RiNTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApAYR2StuNRI/iJEkJ4us9Wt5RJjB
I/Q3wUpnON5vruMCRg1qOXpgk2ZMflBJ+lFpHQpJRkljwHZi9Nz43BiM/BuLI0VS
BNzHtb7PNK6hjoh5FXW9LYN8ASYBoIJPFEvBUv5C7aWAq7bd9gTn0XuIEpESoXQG
3UkyTI8NRPLyzwHI6hrmXscMO1UE7g1jTM1gzA19tLorPY5bsdtnIp8rt0nO4x+D
p2O7bTNm6ONIjm/qQ/aJhqyvD8tiTRiJg1CbEARBjrODQUcp0N/MYl8tN6MwjqqW
QZ987yJOH/v5d5AnxvvKRV8+j9N3T/nIrimRo0b1o2Gb32AAyd3D30GTpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4CQVN8lLd+sOOJKoZDGTxYPbVPMB8GA1UdIwQY
MBaAFIfbcfaRmw75ju/JlkkoqHUQI2oDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODIt
OTA0YTA4MDMxYTlmLzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODItOTA0YTA4MDMxYTlm
LzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlz74sgK0
5cewFw8sPemkdOUAMPfZFPXUTIldkKVzrSnBjT6e1/TJnp7WOb/dPPgtilhBubGx
BAgv5lUgd37cikoqba+Pe5OvYtoyhQAsb+C6rpzRCECVLgYkRlsqA3/VAbQ4MmQ/
sJjFlyjnKMdjcGqeiyBHnoydVWT2MaJeAhkW5iOJaLmwmmdqdGYbrOJ6X4eQWrpo
bDsvENNrTKYj/51GDTgfOC4kniLeyNhp3RJNczTrNyCITdl9GfsN5I904I6HWNCK
KYJYpPvFiOH0cx1CN2rFO0qicsB1MZ1teGK9vpuaXLtmW9dpty37SQim+f2raZc1
F5TA+02cEnje5A==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:18 2025 by rpki-client