Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: AoG77W83U3dZjF75Y86GMxA90jh205Yq19UAjpt4CTE=
Subject key identifier: E7:C3:D9:C3:9D:99:34:F0:43:F6:65:7F:53:4C:0D:21:35:C9:2A:DD
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 019A4DE1C67C2400C13D205C3D48821950B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 0829
Signing time: Tue 04 Nov 2025 08:00:33 +0000
Manifest this update: Tue 04 Nov 2025 08:00:33 +0000
Manifest next update: Wed 05 Nov 2025 08:00:33 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: 9JSAE+nqhDji1pmhDqUUuUkbOF4sUXyn9uZofC153UM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:c6:7c:24:00:c1:3d:20:5c:3d:48:82:19:50:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: Nov 4 08:00:33 2025 GMT
Not After : Nov 5 08:00:33 2025 GMT
Subject: CN=e7c3d9c39d9934f043f6657f534c0d2135c92add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:46:12:88:c9:6a:94:17:08:dd:b7:d5:f9:
0e:8c:1c:0c:a2:76:bf:2c:5a:aa:76:2d:20:8d:e7:
52:c0:36:3b:f8:86:30:fb:c5:15:15:42:0a:e8:2e:
62:66:d2:6d:0e:04:a1:b1:2e:85:e3:3f:f2:56:57:
c0:c1:ff:88:0e:9c:94:a2:cf:8f:8e:ed:d6:3b:bb:
6e:a8:60:1c:90:fb:26:4d:ea:7f:60:b1:fb:ef:dd:
b5:b5:4b:b6:a6:13:56:d9:51:f9:76:14:28:cb:c7:
c5:cf:20:6c:fa:ae:9a:39:21:e2:eb:63:31:6d:57:
c6:f0:a6:2b:cf:a4:97:ef:12:71:e8:2c:55:e1:d2:
e3:12:c4:59:91:27:a9:64:65:50:32:17:70:95:f4:
d4:7d:cd:8f:db:c2:ba:0d:53:aa:d1:c2:d4:16:f8:
28:ca:f1:de:29:bb:c1:06:9f:41:e2:aa:9a:0f:66:
1b:4a:aa:36:72:14:b9:ea:5f:57:3c:ee:99:0f:f3:
56:97:1c:02:14:d5:84:75:40:68:a4:d4:63:c6:50:
90:71:ef:27:96:2f:4b:ae:69:a8:e7:86:55:89:74:
56:ad:3b:a8:6a:87:e7:62:8b:4d:cc:ce:93:3f:6c:
92:05:db:60:0f:29:4e:1d:ea:f6:b5:a6:95:e0:d4:
2c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C3:D9:C3:9D:99:34:F0:43:F6:65:7F:53:4C:0D:21:35:C9:2A:DD
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:4f:47:37:2c:77:f3:91:d2:39:21:82:17:cd:88:ad:43:04:
74:5a:cf:bf:4c:89:f7:aa:fb:52:bc:87:85:40:4e:57:6a:14:
01:6e:4c:15:0d:ce:24:87:89:14:bc:b2:cf:46:48:26:53:a1:
8b:87:ac:93:26:da:00:d2:7e:64:5f:d0:37:d8:e4:c8:21:b6:
44:3e:db:8a:34:6d:f6:de:ee:c3:57:17:ee:56:72:23:ee:e0:
84:37:72:8f:a0:be:fe:61:2f:97:90:c3:6d:70:19:dc:62:da:
ba:2d:5c:ff:66:47:83:08:82:97:bf:96:f7:1d:0b:19:a1:de:
9e:0a:14:56:3c:6c:48:72:f1:e5:84:5a:eb:55:24:97:0a:c8:
aa:ba:b5:69:28:58:9b:b6:7b:9d:aa:3c:f9:e8:ae:c6:74:0c:
b1:86:63:d7:0d:0d:d3:29:0a:04:d5:a9:e4:4a:0b:91:6e:d2:
82:09:ed:e7:18:20:1a:b1:3e:99:98:ed:13:d0:7a:7e:47:45:
c2:64:1b:4e:34:10:30:14:3d:18:ed:d9:4f:46:ef:4d:66:aa:
10:ac:e8:75:8c:85:34:46:b9:e2:2d:0a:e6:a2:66:31:43:43:
f4:98:37:e2:36:10:42:0a:b2:c9:35:6d:f7:db:43:cc:5e:b1:
c1:c0:8c:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpN4cZ8JADBPSBcPUiCGVC3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlMTExN2U5NzZiM2UzMzk1M2I5MzYxYmI0YmIxZWJhMmY0
MDlkZWQwHhcNMjUxMTA0MDgwMDMzWhcNMjUxMTA1MDgwMDMzWjAzMTEwLwYDVQQD
EyhlN2MzZDljMzlkOTkzNGYwNDNmNjY1N2Y1MzRjMGQyMTM1YzkyYWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV5GEojJapQXCN231fkOjBwMona/
LFqqdi0gjedSwDY7+IYw+8UVFUIK6C5iZtJtDgShsS6F4z/yVlfAwf+IDpyUos+P
ju3WO7tuqGAckPsmTep/YLH77921tUu2phNW2VH5dhQoy8fFzyBs+q6aOSHi62Mx
bVfG8KYrz6SX7xJx6CxV4dLjEsRZkSepZGVQMhdwlfTUfc2P28K6DVOq0cLUFvgo
yvHeKbvBBp9B4qqaD2YbSqo2chS56l9XPO6ZD/NWlxwCFNWEdUBopNRjxlCQce8n
li9Lrmmo54ZViXRWrTuoaofnYotNzM6TP2ySBdtgDylOHer2taaV4NQsMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOfD2cOdmTTwQ/Zlf1NMDSE1ySrdMB8GA1UdIwQY
MBaAFP4RF+l2s+M5U7k2G7S7HrovQJ3tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2hFWDZYYXo0emxUdVRZYnRMc2V1aTlBbmUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9jY2ZiNjQtMmVjOS00ZDg2LWFhY2Ut
ODQ2ZTFmNDFmYzYyLzEvX2hFWDZYYXo0emxUdVRZYnRMc2V1aTlBbmUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9jY2ZiNjQtMmVjOS00ZDg2LWFhY2UtODQ2ZTFmNDFmYzYy
LzEvX2hFWDZYYXo0emxUdVRZYnRMc2V1aTlBbmUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0U9HNyx3
85HSOSGCF82IrUMEdFrPv0yJ96r7UryHhUBOV2oUAW5MFQ3OJIeJFLyyz0ZIJlOh
i4eskybaANJ+ZF/QN9jkyCG2RD7bijRt9t7uw1cX7lZyI+7ghDdyj6C+/mEvl5DD
bXAZ3GLaui1c/2ZHgwiCl7+W9x0LGaHengoUVjxsSHLx5YRa61UklwrIqrq1aShY
m7Z7nao8+eiuxnQMsYZj1w0N0ykKBNWp5EoLkW7Sggnt5xggGrE+mZjtE9B6fkdF
wmQbTjQQMBQ9GO3ZT0bvTWaqEKzodYyFNEa54i0K5qJmMUND9Jg34jYQQgqyyTVt
99tDzF6xwcCM2A==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:48:33 2025 by rpki-client