Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
File: hFNK68PtnHkETCI8iyXgEdq_L98.mft (raw, json)
Hash identifier: XHVvgYqITayN39dcquAp1ukJq808eQ9CiIneWhqOT3I=
Subject key identifier: 39:D5:A1:C0:B1:02:9F:E2:FE:96:D1:4B:D3:EA:8D:B1:37:3F:7C:00
Authority key identifier: 84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
Certificate issuer: /CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Certificate serial: 019A725CF8B640610852979C29860EBFC593
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
Manifest number: 0804
Signing time: Tue 11 Nov 2025 10:01:26 +0000
Manifest this update: Tue 11 Nov 2025 10:01:26 +0000
Manifest next update: Wed 12 Nov 2025 10:01:26 +0000
Files and hashes: 1: hFNK68PtnHkETCI8iyXgEdq_L98.crl (hash: 1QP8zBXYtFvo9ffEV8h05nBKaQtrjtvUq9m2Wgqj5JM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:f8:b6:40:61:08:52:97:9c:29:86:0e:bf:c5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84534aebc3ed9c79044c223c8b25e011dabf2fdf
Validity
Not Before: Nov 11 10:01:26 2025 GMT
Not After : Nov 12 10:01:26 2025 GMT
Subject: CN=39d5a1c0b1029fe2fe96d14bd3ea8db1373f7c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cd:b4:86:ff:3d:19:6f:40:86:78:af:ff:3a:
ed:31:fb:32:79:9a:17:57:e9:bb:b4:ef:51:28:f1:
72:77:73:35:07:0d:6a:3c:4e:22:71:fd:55:ec:52:
9d:82:64:74:20:97:cb:95:56:34:cc:d0:76:e1:75:
16:93:5f:89:7a:dd:19:ef:c4:13:d3:b5:fe:38:16:
53:2b:f8:e5:2c:41:5e:56:3d:24:71:d4:ec:ab:bb:
26:a3:90:2f:ad:55:13:59:07:c8:12:f4:28:8a:0f:
de:09:12:d1:18:2a:ee:c0:5a:14:3f:d4:23:65:00:
31:0b:a6:9a:38:e4:1f:61:43:67:a5:c2:58:17:2f:
5f:0a:b6:4c:9f:38:49:47:57:d7:47:b1:ec:f5:84:
9a:cf:6d:09:61:3c:c4:bb:51:1c:36:c7:12:67:42:
6c:10:75:20:16:a5:24:0c:e7:06:f5:e7:72:dc:49:
72:96:31:3a:cb:66:86:4b:9d:82:1b:20:ba:2a:af:
51:fd:e9:ef:70:1a:ec:f8:86:39:d6:5b:a3:7d:ec:
fa:d1:23:10:ac:10:f7:18:e4:ac:55:44:8b:d4:4e:
00:c1:1d:06:bd:bb:1e:f4:99:9b:46:54:09:81:a2:
d1:20:3a:94:45:a4:b1:08:bd:d2:55:4e:6c:00:a3:
d8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D5:A1:C0:B1:02:9F:E2:FE:96:D1:4B:D3:EA:8D:B1:37:3F:7C:00
X509v3 Authority Key Identifier:
keyid:84:53:4A:EB:C3:ED:9C:79:04:4C:22:3C:8B:25:E0:11:DA:BF:2F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFNK68PtnHkETCI8iyXgEdq_L98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a8e329-3bd7-437f-8107-ebde74933c77/1/hFNK68PtnHkETCI8iyXgEdq_L98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:5a:1c:78:f2:44:7e:9e:8a:af:43:ad:0d:31:59:76:b1:92:
8b:87:01:8e:b9:28:76:9d:84:73:7a:c1:29:26:d7:5b:9b:79:
10:3e:51:f8:1a:fc:44:32:b9:e0:a9:e6:9a:2b:f7:56:57:e9:
36:d4:e8:83:8d:ae:a2:03:b4:59:f7:e1:d3:16:d9:fb:3f:6a:
8b:50:41:54:02:04:df:ec:1b:d9:25:b1:a8:56:f0:02:f0:93:
14:59:d6:99:47:c5:0f:59:49:9c:7d:a0:03:fe:47:f4:af:02:
82:2c:f9:d6:d6:f6:5e:fa:81:3d:46:2b:4b:9e:7c:96:26:4a:
39:75:51:c9:10:f5:7e:b7:f8:d8:c0:0a:a2:cf:ee:a7:83:e9:
e2:ba:d4:71:7a:19:21:21:c7:05:15:e0:98:32:d6:ad:e1:90:
93:05:73:fe:57:ff:a8:ac:f0:48:4b:5d:64:83:6b:42:3c:3f:
36:bf:a8:7f:f6:14:95:ef:86:6e:92:17:77:61:76:e5:45:b1:
7b:9b:05:a0:31:4b:c9:96:89:b1:97:24:68:c3:22:72:d7:43:
30:56:0e:da:fc:45:02:5c:c2:a3:ac:a2:ab:63:35:67:d2:cf:
5f:29:f0:f9:d3:63:df:a9:40:b7:fd:b4:79:6c:35:27:20:6d:
62:af:76:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyXPi2QGEIUpecKYYOv8WTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NTM0YWViYzNlZDljNzkwNDRjMjIzYzhiMjVlMDExZGFi
ZjJmZGYwHhcNMjUxMTExMTAwMTI2WhcNMjUxMTEyMTAwMTI2WjAzMTEwLwYDVQQD
EygzOWQ1YTFjMGIxMDI5ZmUyZmU5NmQxNGJkM2VhOGRiMTM3M2Y3YzAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2820hv89GW9Ahniv/zrtMfsyeZoX
V+m7tO9RKPFyd3M1Bw1qPE4icf1V7FKdgmR0IJfLlVY0zNB24XUWk1+Jet0Z78QT
07X+OBZTK/jlLEFeVj0kcdTsq7smo5AvrVUTWQfIEvQoig/eCRLRGCruwFoUP9Qj
ZQAxC6aaOOQfYUNnpcJYFy9fCrZMnzhJR1fXR7Hs9YSaz20JYTzEu1EcNscSZ0Js
EHUgFqUkDOcG9edy3ElyljE6y2aGS52CGyC6Kq9R/envcBrs+IY51lujfez60SMQ
rBD3GOSsVUSL1E4AwR0Gvbse9JmbRlQJgaLRIDqURaSxCL3SVU5sAKPYQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDnVocCxAp/i/pbRS9PqjbE3P3wAMB8GA1UdIwQY
MBaAFIRTSuvD7Zx5BEwiPIsl4BHavy/fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEZOSzY4UHRuSGtFVENJOGl5WGdFZHFfTDk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hOGUzMjktM2JkNy00MzdmLTgxMDct
ZWJkZTc0OTMzYzc3LzEvaEZOSzY4UHRuSGtFVENJOGl5WGdFZHFfTDk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9hOGUzMjktM2JkNy00MzdmLTgxMDctZWJkZTc0OTMzYzc3
LzEvaEZOSzY4UHRuSGtFVENJOGl5WGdFZHFfTDk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJVocePJE
fp6Kr0OtDTFZdrGSi4cBjrkodp2Ec3rBKSbXW5t5ED5R+Br8RDK54Knmmiv3Vlfp
NtTog42uogO0Wffh0xbZ+z9qi1BBVAIE3+wb2SWxqFbwAvCTFFnWmUfFD1lJnH2g
A/5H9K8Cgiz51tb2XvqBPUYrS558liZKOXVRyRD1frf42MAKos/up4Pp4rrUcXoZ
ISHHBRXgmDLWreGQkwVz/lf/qKzwSEtdZINrQjw/Nr+of/YUle+GbpIXd2F25UWx
e5sFoDFLyZaJsZckaMMictdDMFYO2vxFAlzCo6yiq2M1Z9LPXynw+dNj36lAt/20
eWw1JyBtYq921g==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:20:04 2025 by rpki-client