Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
File: HkQmt06M9v_e23sGBBgIMqhiXzI.mft (raw, json)
Hash identifier: gbnlyDtXRcw0lEeoxtb5qDNRrl4vKyR3TZvNPikev+I=
Subject key identifier: 2D:4A:0F:CD:0D:4E:B5:70:E7:EE:01:63:98:21:9D:39:FA:70:62:0A
Authority key identifier: 1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
Certificate issuer: /CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Certificate serial: 019A4EF4A6BB3B8EA6ACA4CA5A3EA7FE160F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
Manifest number: 081E
Signing time: Tue 04 Nov 2025 13:00:47 +0000
Manifest this update: Tue 04 Nov 2025 13:00:47 +0000
Manifest next update: Wed 05 Nov 2025 13:00:47 +0000
Files and hashes: 1: HkQmt06M9v_e23sGBBgIMqhiXzI.crl (hash: zA7aUj5XoFY29TBwy94/WP0y8SBI7uRjQfwVwtYc8/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:a6:bb:3b:8e:a6:ac:a4:ca:5a:3e:a7:fe:16:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32
Validity
Not Before: Nov 4 13:00:47 2025 GMT
Not After : Nov 5 13:00:47 2025 GMT
Subject: CN=2d4a0fcd0d4eb570e7ee016398219d39fa70620a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ca:20:78:9c:d6:fb:1c:ca:a5:63:4e:d8:33:
98:28:e4:14:de:e0:e0:1c:89:ae:f0:e5:a5:66:79:
1c:cd:d5:fb:2c:e3:5f:4e:24:9c:55:fb:6a:0e:40:
4a:0b:38:2b:17:80:99:09:b5:0b:7a:ce:52:f2:64:
3a:a8:7e:45:5d:ed:e1:09:59:3f:a7:9a:0e:34:39:
88:e6:be:c1:ca:9a:ef:da:68:80:5e:63:3e:df:01:
93:9b:05:98:1b:17:10:db:d8:21:7f:43:2a:8c:45:
2b:cc:20:54:cc:9a:30:79:48:c5:10:05:47:4c:d7:
95:9a:f6:1e:4e:f0:b8:9d:c2:ad:ef:3e:1e:7a:d7:
82:71:ec:eb:4e:0b:ec:85:a8:ef:0e:fa:53:58:1c:
73:a2:a0:5d:12:b1:1a:65:12:60:97:fb:ac:0e:09:
f5:09:06:66:d3:c3:7b:60:a9:d7:83:38:27:fa:2b:
62:6d:a3:84:bc:52:04:4b:e3:ed:ae:76:db:21:fc:
cc:19:f1:29:72:8c:24:f2:03:2c:a7:3c:96:ba:7a:
d4:60:61:49:70:dc:60:46:ce:25:b9:bc:b6:ec:53:
56:f7:88:26:ae:a9:41:f0:46:fc:35:bf:43:28:1f:
97:b2:ae:cc:98:32:39:5e:1a:be:23:3e:ac:1b:7b:
8b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4A:0F:CD:0D:4E:B5:70:E7:EE:01:63:98:21:9D:39:FA:70:62:0A
X509v3 Authority Key Identifier:
keyid:1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:bd:6c:9a:a5:d1:87:fd:13:3c:ec:80:5c:94:5b:69:63:9f:
68:29:57:12:ab:c7:81:11:d4:cc:39:4e:8f:bc:96:bd:3c:86:
62:6a:12:ce:04:e0:bb:ae:66:55:e0:68:7b:f6:e9:fc:8a:15:
d0:47:4b:85:86:15:35:1b:15:94:9f:13:1a:a6:c5:94:e7:7f:
57:2e:74:56:02:4d:b8:f8:46:c3:77:02:78:7c:3d:a6:4b:26:
e7:4d:75:1e:73:e4:96:8b:78:cb:d1:3b:05:5e:91:f2:73:8f:
e1:4a:3a:b6:30:75:94:62:12:23:3c:26:b5:97:f6:85:a9:46:
b7:9a:9b:d3:e4:50:18:39:7a:b1:7c:e7:ec:ae:9d:91:be:47:
d5:d5:ad:1a:e4:c9:7e:6c:12:d6:21:22:ee:c4:ae:54:07:26:
27:28:5a:04:e5:47:93:42:eb:22:df:1f:1d:9e:dc:20:1f:9e:
61:fa:8f:00:91:b0:b9:54:79:b7:05:d1:e1:ef:72:5e:77:47:
f3:07:ef:b7:c6:c0:1b:59:30:48:b9:3f:7b:16:f8:11:ca:c5:
21:9a:6c:26:a7:44:09:21:00:4b:91:8a:5c:6b:d3:a3:86:2b:
b5:83:66:6d:88:3e:50:a0:ed:de:7d:ef:a6:5c:e6:14:be:81:
d4:99:d0:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9Ka7O46mrKTKWj6n/hYPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNDQyNmI3NGU4Y2Y2ZmZkZWRiN2IwNjA0MTgwODMyYTg2
MjVmMzIwHhcNMjUxMTA0MTMwMDQ3WhcNMjUxMTA1MTMwMDQ3WjAzMTEwLwYDVQQD
EygyZDRhMGZjZDBkNGViNTcwZTdlZTAxNjM5ODIxOWQzOWZhNzA2MjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8ogeJzW+xzKpWNO2DOYKOQU3uDg
HImu8OWlZnkczdX7LONfTiScVftqDkBKCzgrF4CZCbULes5S8mQ6qH5FXe3hCVk/
p5oONDmI5r7Byprv2miAXmM+3wGTmwWYGxcQ29ghf0MqjEUrzCBUzJoweUjFEAVH
TNeVmvYeTvC4ncKt7z4eeteCcezrTgvshajvDvpTWBxzoqBdErEaZRJgl/usDgn1
CQZm08N7YKnXgzgn+itibaOEvFIES+PtrnbbIfzMGfEpcowk8gMspzyWunrUYGFJ
cNxgRs4luby27FNW94gmrqlB8Eb8Nb9DKB+Xsq7MmDI5Xhq+Iz6sG3uLpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1KD80NTrVw5+4BY5ghnTn6cGIKMB8GA1UdIwQY
MBaAFB5EJrdOjPb/3tt7BgQYCDKoYl8yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGtRbXQwNk05dl9lMjNzR0JCZ0lNcWhpWHpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy81N2QwOGUtMWZiOC00ZmZjLThhNzEt
YjQ3NDBhMjE1OGYwLzEvSGtRbXQwNk05dl9lMjNzR0JCZ0lNcWhpWHpJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy81N2QwOGUtMWZiOC00ZmZjLThhNzEtYjQ3NDBhMjE1OGYw
LzEvSGtRbXQwNk05dl9lMjNzR0JCZ0lNcWhpWHpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjb1smqXR
h/0TPOyAXJRbaWOfaClXEqvHgRHUzDlOj7yWvTyGYmoSzgTgu65mVeBoe/bp/IoV
0EdLhYYVNRsVlJ8TGqbFlOd/Vy50VgJNuPhGw3cCeHw9pksm5011HnPklot4y9E7
BV6R8nOP4Uo6tjB1lGISIzwmtZf2halGt5qb0+RQGDl6sXzn7K6dkb5H1dWtGuTJ
fmwS1iEi7sSuVAcmJyhaBOVHk0LrIt8fHZ7cIB+eYfqPAJGwuVR5twXR4e9yXndH
8wfvt8bAG1kwSLk/exb4EcrFIZpsJqdECSEAS5GKXGvTo4YrtYNmbYg+UKDt3n3v
plzmFL6B1JnQ1Q==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:53:31 2025 by rpki-client