Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
File: hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft (raw, json)
Hash identifier: 32UL8qVQ3Ezh8mmm03Rg0qEQrelir5dr3O07F2kHXCI=
Subject key identifier: F3:D3:D7:44:8B:18:CC:C5:6B:59:30:C0:BD:4A:67:D8:42:1E:E3:0B
Authority key identifier: 86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
Certificate issuer: /CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Certificate serial: 01987F783E6BF867D76FC1B2C1FB5F53C0FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
Manifest number: 0A0D
Signing time: Wed 06 Aug 2025 13:00:43 +0000
Manifest this update: Wed 06 Aug 2025 13:00:43 +0000
Manifest next update: Thu 07 Aug 2025 13:00:43 +0000
Files and hashes: 1: hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl (hash: H+Zmxxg8bLhBSfPam7Rc8O+a4ow/NzYG/SthgbEuRX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:78:3e:6b:f8:67:d7:6f:c1:b2:c1:fb:5f:53:c0:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865af18a8d80274c0ac2f501b16d69a454e08d5e
Validity
Not Before: Aug 6 13:00:43 2025 GMT
Not After : Aug 7 13:00:43 2025 GMT
Subject: CN=f3d3d7448b18ccc56b5930c0bd4a67d8421ee30b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a0:54:96:df:52:6b:3b:1c:1f:74:c8:c0:58:
c2:a3:9d:24:38:5d:81:32:cb:0e:f3:a9:5f:f9:67:
79:9f:8d:e9:06:e7:2e:90:df:14:a8:11:ce:12:30:
8c:7b:ec:e3:5a:90:be:42:76:2c:4c:f8:35:1a:5f:
4d:b4:36:c1:1c:a6:38:41:59:79:66:18:81:5a:53:
6d:39:06:78:bd:bb:82:c8:59:9c:50:b2:18:cf:5b:
85:0a:04:80:ab:7a:b7:c1:c3:3a:17:69:7b:af:d7:
de:7e:6f:4e:3e:6d:b4:1f:a4:d0:cc:a2:3b:92:d7:
a4:a5:80:1b:7b:f7:28:1a:2b:ab:a3:65:e6:71:ea:
1f:b6:91:1f:0f:67:6c:60:c5:61:21:b5:37:8f:6f:
ee:87:e8:07:b7:68:05:b5:0a:e7:e7:7c:d2:50:82:
e9:35:6f:39:ab:80:98:02:1a:7c:ad:3c:0a:f7:50:
60:e1:66:25:30:6d:a0:56:c4:d9:59:b5:59:1e:31:
de:bd:d1:14:bd:5c:d1:1a:43:2c:00:8b:80:67:f1:
55:05:df:3c:8f:ae:9f:b6:b4:06:76:d6:a5:27:db:
2f:aa:3a:28:9e:40:ce:51:45:90:f2:0d:2c:bd:1e:
f7:3b:c8:9a:db:f8:96:c3:43:d4:eb:89:e7:ae:81:
06:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D3:D7:44:8B:18:CC:C5:6B:59:30:C0:BD:4A:67:D8:42:1E:E3:0B
X509v3 Authority Key Identifier:
keyid:86:5A:F1:8A:8D:80:27:4C:0A:C2:F5:01:B1:6D:69:A4:54:E0:8D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlrxio2AJ0wKwvUBsW1ppFTgjV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c9c800-aefb-44bc-b712-1eea4ea43a2f/1/hlrxio2AJ0wKwvUBsW1ppFTgjV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:4f:8e:b6:fb:d3:18:37:23:5f:ee:bd:6e:8c:a5:a6:45:1e:
1d:ee:d3:16:ed:a8:e5:18:b2:3d:e0:68:b6:43:07:20:d2:26:
ff:6f:6e:53:59:1d:8f:6c:d9:0a:fb:ed:14:d3:38:02:ba:dc:
c4:1f:cd:54:87:4b:10:a8:6e:17:5f:f3:e3:52:9c:04:61:64:
93:0c:ce:f1:2c:d1:70:b6:95:af:1a:2a:3a:3d:83:ea:57:2d:
7f:06:ff:38:dc:22:ee:eb:c3:4a:ba:9e:07:5d:62:44:75:59:
7f:65:95:24:5f:36:64:16:86:f5:f0:8d:ab:12:fa:9d:d5:50:
13:b4:0a:db:57:e0:13:8b:42:11:d6:79:61:78:dd:05:33:4c:
2d:81:21:a5:c5:e2:f5:78:b4:ca:a3:c4:32:0d:11:d8:02:2c:
85:cc:ba:c7:52:a1:7f:51:2d:6e:82:93:2f:78:68:a6:45:11:
6a:31:49:46:2e:89:97:61:47:e7:3a:ef:fe:17:04:55:74:3a:
3c:ab:ae:94:30:4b:9e:2e:02:cc:82:1d:c7:98:99:21:a8:8a:
6f:67:2b:86:f5:78:62:f8:f0:ce:f1:bd:16:ee:e7:9e:4a:bd:
7d:b9:e6:3b:40:42:59:6b:b6:31:d9:ec:19:71:61:86:11:ca:
cf:ec:38:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh/eD5r+GfXb8GywftfU8D6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NWFmMThhOGQ4MDI3NGMwYWMyZjUwMWIxNmQ2OWE0NTRl
MDhkNWUwHhcNMjUwODA2MTMwMDQzWhcNMjUwODA3MTMwMDQzWjAzMTEwLwYDVQQD
EyhmM2QzZDc0NDhiMThjY2M1NmI1OTMwYzBiZDRhNjdkODQyMWVlMzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9aBUlt9SazscH3TIwFjCo50kOF2B
MssO86lf+Wd5n43pBucukN8UqBHOEjCMe+zjWpC+QnYsTPg1Gl9NtDbBHKY4QVl5
ZhiBWlNtOQZ4vbuCyFmcULIYz1uFCgSAq3q3wcM6F2l7r9fefm9OPm20H6TQzKI7
ktekpYAbe/coGiuro2XmceoftpEfD2dsYMVhIbU3j2/uh+gHt2gFtQrn53zSUILp
NW85q4CYAhp8rTwK91Bg4WYlMG2gVsTZWbVZHjHevdEUvVzRGkMsAIuAZ/FVBd88
j66ftrQGdtalJ9svqjoonkDOUUWQ8g0svR73O8ia2/iWw0PU64nnroEGGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPPT10SLGMzFa1kwwL1KZ9hCHuMLMB8GA1UdIwQY
MBaAFIZa8YqNgCdMCsL1AbFtaaRU4I1eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGxyeGlvMkFKMHdLd3ZVQnNXMXBwRlRnalY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9jOWM4MDAtYWVmYi00NGJjLWI3MTIt
MWVlYTRlYTQzYTJmLzEvaGxyeGlvMkFKMHdLd3ZVQnNXMXBwRlRnalY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9jOWM4MDAtYWVmYi00NGJjLWI3MTItMWVlYTRlYTQzYTJm
LzEvaGxyeGlvMkFKMHdLd3ZVQnNXMXBwRlRnalY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGk+OtvvT
GDcjX+69boylpkUeHe7TFu2o5RiyPeBotkMHINIm/29uU1kdj2zZCvvtFNM4Arrc
xB/NVIdLEKhuF1/z41KcBGFkkwzO8SzRcLaVrxoqOj2D6lctfwb/ONwi7uvDSrqe
B11iRHVZf2WVJF82ZBaG9fCNqxL6ndVQE7QK21fgE4tCEdZ5YXjdBTNMLYEhpcXi
9Xi0yqPEMg0R2AIshcy6x1Khf1EtboKTL3hopkURajFJRi6Jl2FH5zrv/hcEVXQ6
PKuulDBLni4CzIIdx5iZIaiKb2crhvV4YvjwzvG9Fu7nnkq9fbnmO0BCWWu2Mdns
GXFhhhHKz+w42Q==
-----END CERTIFICATE-----
Generated at Wed Aug 6 16:01:58 2025 by rpki-client