Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: GQr5CIXwoSGhQ2eJtJYPwdodLL1EUQCMQ+FYR6evxz0=
Subject key identifier: EF:48:C0:C4:55:B5:E3:0D:58:A4:05:AC:4B:92:F0:7B:6A:61:2D:CC
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 019A4D06D972AFCFF826775569F0CF302EDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: 02ED
Signing time: Tue 04 Nov 2025 04:01:25 +0000
Manifest this update: Tue 04 Nov 2025 04:01:25 +0000
Manifest next update: Wed 05 Nov 2025 04:01:25 +0000
Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: 07D1uT3wqWyhTUVhCvDk3aPT3cUDy80bB3a/Z2xS5zE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:06:d9:72:af:cf:f8:26:77:55:69:f0:cf:30:2e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: Nov 4 04:01:25 2025 GMT
Not After : Nov 5 04:01:25 2025 GMT
Subject: CN=ef48c0c455b5e30d58a405ac4b92f07b6a612dcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:2f:9d:fe:bb:0f:28:32:35:02:1a:c5:27:
5a:74:aa:ea:b6:28:3c:9e:53:78:c2:08:f1:31:a3:
e1:70:1f:95:38:fa:27:7a:4f:de:52:46:f5:52:66:
47:eb:ba:30:37:52:23:8d:6b:cc:ba:7f:d7:97:5f:
57:2c:d1:de:30:6d:77:04:e8:46:1a:b6:84:07:ef:
8c:ec:fa:c2:70:a7:eb:ac:db:c2:2b:04:ab:05:22:
8f:53:18:c8:a7:74:fc:7b:0d:fa:5d:6c:e1:05:64:
b4:9c:1c:6a:61:6f:06:f5:1c:b6:21:74:44:4c:b9:
1e:3e:a4:52:88:f5:6d:03:49:7e:98:2e:81:6f:94:
2c:3f:b4:64:58:6a:74:21:da:d7:18:d6:c9:53:c9:
a4:5f:71:95:4d:b5:34:2f:3c:b4:12:23:1d:d3:8c:
e6:0c:06:54:93:d7:86:fe:41:e8:50:d8:1c:8d:45:
8a:ec:2f:81:ad:27:88:8a:f8:c6:a4:a3:a7:52:0d:
ec:00:93:b9:49:6c:2a:3f:7d:65:85:68:49:da:25:
82:89:4a:e0:19:97:fe:3e:1f:3b:bb:b1:db:ec:1f:
5c:b6:7f:bf:66:34:32:46:d1:b8:cf:91:f7:f8:aa:
c5:f6:54:1c:7f:6d:66:aa:b3:88:dd:0c:ea:24:54:
99:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:48:C0:C4:55:B5:E3:0D:58:A4:05:AC:4B:92:F0:7B:6A:61:2D:CC
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:60:2a:bf:30:ab:f9:c3:41:f7:55:9b:c0:3d:13:77:31:84:
6c:41:a9:45:30:15:ec:d2:75:d8:b8:93:c8:26:89:8b:ac:73:
c1:21:d2:12:fd:70:4a:92:78:89:f2:dd:9c:f9:e7:5e:0e:b3:
78:73:55:64:8e:25:6b:81:c5:63:c4:f4:51:3d:82:b7:80:bf:
1e:ee:a0:ee:2a:5c:17:be:58:f8:f2:b1:80:8c:c7:93:5d:b3:
af:de:e5:28:cd:22:d5:e9:90:b5:5d:d4:2d:23:0a:da:14:2f:
d1:86:65:31:92:d5:a4:1d:5a:fa:82:2b:6a:d1:57:56:e8:68:
2c:97:88:a5:8e:ca:16:4e:aa:2c:9e:e3:8a:8d:fc:96:fe:8d:
a2:4d:da:1e:d9:c7:7e:df:78:fe:1d:87:ce:f9:03:42:ac:82:
8f:5e:89:dd:cd:50:78:cb:be:90:8f:4b:b4:57:27:5b:ba:67:
a6:2c:79:36:49:cb:a1:f7:1e:61:36:54:97:39:4f:3e:ee:b2:
cf:ff:48:84:74:b1:6e:4b:f2:cc:9d:e9:40:b2:22:4c:b8:e5:
c9:73:f1:94:8c:5d:79:e4:2d:cc:a1:10:77:3a:e2:f3:22:ba:
35:76:a3:7d:7f:3e:f4:3e:a5:34:20:7c:c2:e3:fb:29:81:13:
7f:53:34:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNBtlyr8/4JndVafDPMC7aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZDljZWM5ZWQxZmQ0ZjQxYzBiMWUzMGVmYjk2Yzg2MTU1
M2JlMzYwHhcNMjUxMTA0MDQwMTI1WhcNMjUxMTA1MDQwMTI1WjAzMTEwLwYDVQQD
EyhlZjQ4YzBjNDU1YjVlMzBkNThhNDA1YWM0YjkyZjA3YjZhNjEyZGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmsvnf67DygyNQIaxSdadKrqtig8
nlN4wgjxMaPhcB+VOPonek/eUkb1UmZH67owN1IjjWvMun/Xl19XLNHeMG13BOhG
GraEB++M7PrCcKfrrNvCKwSrBSKPUxjIp3T8ew36XWzhBWS0nBxqYW8G9Ry2IXRE
TLkePqRSiPVtA0l+mC6Bb5QsP7RkWGp0IdrXGNbJU8mkX3GVTbU0Lzy0EiMd04zm
DAZUk9eG/kHoUNgcjUWK7C+BrSeIivjGpKOnUg3sAJO5SWwqP31lhWhJ2iWCiUrg
GZf+Ph87u7Hb7B9ctn+/ZjQyRtG4z5H3+KrF9lQcf21mqrOI3QzqJFSZZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO9IwMRVteMNWKQFrEuS8HtqYS3MMB8GA1UdIwQY
MBaAFB/ZzsntH9T0HAseMO+5bIYVU742MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDluT3llMGYxUFFjQ3g0dzc3bHNoaFZUdmpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lODFjMWEtMGM4Ny00ODI1LWJjY2Mt
MzZiN2IxZGUwNDVkLzEvSDluT3llMGYxUFFjQ3g0dzc3bHNoaFZUdmpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9lODFjMWEtMGM4Ny00ODI1LWJjY2MtMzZiN2IxZGUwNDVk
LzEvSDluT3llMGYxUFFjQ3g0dzc3bHNoaFZUdmpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUmAqvzCr
+cNB91WbwD0TdzGEbEGpRTAV7NJ12LiTyCaJi6xzwSHSEv1wSpJ4ifLdnPnnXg6z
eHNVZI4la4HFY8T0UT2Ct4C/Hu6g7ipcF75Y+PKxgIzHk12zr97lKM0i1emQtV3U
LSMK2hQv0YZlMZLVpB1a+oIratFXVuhoLJeIpY7KFk6qLJ7jio38lv6Nok3aHtnH
ft94/h2HzvkDQqyCj16J3c1QeMu+kI9LtFcnW7pnpix5NknLofceYTZUlzlPPu6y
z/9IhHSxbkvyzJ3pQLIiTLjlyXPxlIxdeeQtzKEQdzri8yK6NXajfX8+9D6lNCB8
wuP7KYETf1M0lw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 10:46:37 2025 by rpki-client