Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
File: hDGpmcvwQL00DSk12JlhtS8EpEU.mft (raw, json)
Hash identifier: Q8y5y1wzQJlHKWSJQDWUl9cT7Skbdl+O1YH/DqtEjeQ=
Subject key identifier: CD:F6:21:87:A6:B8:67:DD:AE:FB:73:F0:D1:E7:40:63:5F:A0:15:66
Authority key identifier: 84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
Certificate issuer: /CN=8431a999cbf040bd340d2935d89961b52f04a445
Certificate serial: 019A4EF44964F677264F514B73B7DAA1AE83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
Manifest number: 0A3F
Signing time: Tue 04 Nov 2025 13:00:23 +0000
Manifest this update: Tue 04 Nov 2025 13:00:23 +0000
Manifest next update: Wed 05 Nov 2025 13:00:23 +0000
Files and hashes: 1: hDGpmcvwQL00DSk12JlhtS8EpEU.crl (hash: dhUt3CfVus56fW97RDv+b5Y960pgLvLSTtxszAyVOxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:49:64:f6:77:26:4f:51:4b:73:b7:da:a1:ae:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8431a999cbf040bd340d2935d89961b52f04a445
Validity
Not Before: Nov 4 13:00:23 2025 GMT
Not After : Nov 5 13:00:23 2025 GMT
Subject: CN=cdf62187a6b867ddaefb73f0d1e740635fa01566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:cc:1d:35:10:00:a6:1a:f5:f3:e9:cb:26:
b4:db:0d:d6:19:b8:59:d3:a2:9c:93:50:38:2c:e9:
16:51:e6:1e:64:14:e5:d9:3f:23:ec:93:dd:1c:96:
a8:a2:ad:bc:99:42:4f:a3:a7:b4:d6:51:c1:16:f6:
b6:58:01:68:9e:b7:12:26:d1:2d:f1:4d:f0:f5:16:
c8:36:44:75:5c:78:16:f8:97:c3:11:10:69:83:77:
15:7b:bc:79:a4:c7:67:5b:d7:30:62:f3:fd:e0:ae:
78:a2:af:37:18:ac:d9:51:cd:6e:8b:91:fa:35:1c:
0d:d0:51:a3:4b:16:4e:7f:44:c1:56:7a:13:e0:f1:
5c:82:45:92:61:79:53:a2:73:f0:7e:7a:d9:10:50:
2a:ee:6c:5f:5c:ee:3f:63:77:12:17:35:05:96:50:
e9:12:13:b8:3d:d8:c1:d4:77:3b:2c:db:36:63:e0:
87:7e:9f:6d:41:61:b2:cd:d9:b9:ce:01:51:0e:af:
d8:db:87:ad:aa:d5:b5:d5:ff:c6:09:35:be:c8:71:
93:8a:6b:9f:7b:c2:99:98:7e:64:7f:1f:8d:d5:04:
c4:53:bd:db:8d:73:7a:08:97:85:c3:94:7a:b9:be:
8e:b7:c4:ac:df:84:72:52:b3:71:f7:93:01:94:9d:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F6:21:87:A6:B8:67:DD:AE:FB:73:F0:D1:E7:40:63:5F:A0:15:66
X509v3 Authority Key Identifier:
keyid:84:31:A9:99:CB:F0:40:BD:34:0D:29:35:D8:99:61:B5:2F:04:A4:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDGpmcvwQL00DSk12JlhtS8EpEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/6c2c7a-fc16-4911-83ff-13d9ba27e51f/1/hDGpmcvwQL00DSk12JlhtS8EpEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:7d:2e:7e:5f:3f:25:4a:3f:5d:93:16:0a:b0:df:e2:9c:15:
f5:88:2a:8e:2f:6f:56:6a:8d:fc:29:e4:6c:9a:2a:20:dd:1b:
3c:42:5f:98:ed:08:f4:95:3a:fa:fb:1e:fb:b1:77:05:85:a0:
c5:51:23:e7:d5:54:d0:a2:47:a9:0f:b0:f0:33:23:d2:9c:55:
54:ce:82:26:53:9f:ff:b4:d4:bd:da:59:6d:bc:d3:f2:03:46:
8c:0d:f7:e4:55:bb:47:af:8f:18:0d:64:6d:24:ad:fa:16:08:
e4:8e:ce:10:6d:27:19:64:e8:0a:7f:2e:d9:20:9c:93:df:4d:
43:a6:8b:27:90:6b:5d:86:94:72:63:aa:33:e2:57:e8:b0:74:
9c:5d:d4:1b:f8:64:32:6a:65:f6:9f:3c:05:1a:11:a8:9a:e7:
40:e7:3e:a0:03:bd:e7:4c:57:0d:9c:6b:5b:b4:ab:80:60:74:
4b:c0:7d:e4:a0:a2:97:ba:da:76:8b:9d:5c:de:f5:47:55:ea:
55:75:86:92:ec:28:8f:d7:6a:ac:72:30:e8:0a:3b:07:40:d2:
36:d7:21:60:71:b0:22:25:a4:3d:d8:db:cb:29:85:bc:80:9d:
e1:40:61:24:2d:1a:d5:38:da:b5:8e:21:72:3a:ca:f9:e0:47:
57:85:4e:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9Elk9ncmT1FLc7faoa6DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MzFhOTk5Y2JmMDQwYmQzNDBkMjkzNWQ4OTk2MWI1MmYw
NGE0NDUwHhcNMjUxMTA0MTMwMDIzWhcNMjUxMTA1MTMwMDIzWjAzMTEwLwYDVQQD
EyhjZGY2MjE4N2E2Yjg2N2RkYWVmYjczZjBkMWU3NDA2MzVmYTAxNTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCbMHTUQAKYa9fPpyya02w3WGbhZ
06Kck1A4LOkWUeYeZBTl2T8j7JPdHJaooq28mUJPo6e01lHBFva2WAFonrcSJtEt
8U3w9RbINkR1XHgW+JfDERBpg3cVe7x5pMdnW9cwYvP94K54oq83GKzZUc1ui5H6
NRwN0FGjSxZOf0TBVnoT4PFcgkWSYXlTonPwfnrZEFAq7mxfXO4/Y3cSFzUFllDp
EhO4PdjB1Hc7LNs2Y+CHfp9tQWGyzdm5zgFRDq/Y24etqtW11f/GCTW+yHGTimuf
e8KZmH5kfx+N1QTEU73bjXN6CJeFw5R6ub6Ot8Ss34RyUrNx95MBlJ3N7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM32IYemuGfdrvtz8NHnQGNfoBVmMB8GA1UdIwQY
MBaAFIQxqZnL8EC9NA0pNdiZYbUvBKRFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaERHcG1jdndRTDAwRFNrMTJKbGh0UzhFcEVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82YzJjN2EtZmMxNi00OTExLTgzZmYt
MTNkOWJhMjdlNTFmLzEvaERHcG1jdndRTDAwRFNrMTJKbGh0UzhFcEVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS82YzJjN2EtZmMxNi00OTExLTgzZmYtMTNkOWJhMjdlNTFm
LzEvaERHcG1jdndRTDAwRFNrMTJKbGh0UzhFcEVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARH0ufl8/
JUo/XZMWCrDf4pwV9Ygqji9vVmqN/CnkbJoqIN0bPEJfmO0I9JU6+vse+7F3BYWg
xVEj59VU0KJHqQ+w8DMj0pxVVM6CJlOf/7TUvdpZbbzT8gNGjA335FW7R6+PGA1k
bSSt+hYI5I7OEG0nGWToCn8u2SCck99NQ6aLJ5BrXYaUcmOqM+JX6LB0nF3UG/hk
Mmpl9p88BRoRqJrnQOc+oAO950xXDZxrW7SrgGB0S8B95KCil7radoudXN71R1Xq
VXWGkuwoj9dqrHIw6Ao7B0DSNtchYHGwIiWkPdjbyymFvICd4UBhJC0a1TjatY4h
cjrK+eBHV4VORQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:03 2025 by rpki-client