Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: 2PjHECVZqp1gAI4T4Yra+C/qj+0BCPVpAQgnSSPifgk=
Subject key identifier: 16:10:9C:27:53:62:1B:8E:0A:19:96:5A:29:CF:BA:97:68:57:23:C0
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 019A4EF593AAEA7D4E240DB8C935781DAC84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0D62
Signing time: Tue 04 Nov 2025 13:01:48 +0000
Manifest this update: Tue 04 Nov 2025 13:01:48 +0000
Manifest next update: Wed 05 Nov 2025 13:01:48 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: qlJiu/Ce/gRJ3HAq2Mwltw1C6UAc3CPzhn+DE6IvTJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:93:aa:ea:7d:4e:24:0d:b8:c9:35:78:1d:ac:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: Nov 4 13:01:48 2025 GMT
Not After : Nov 5 13:01:48 2025 GMT
Subject: CN=16109c2753621b8e0a19965a29cfba97685723c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:74:d0:0a:0c:52:ee:7e:7e:de:8e:56:3e:84:
bc:57:f1:74:5d:b3:05:51:3d:86:51:e5:3a:98:22:
58:51:b5:b0:5d:d2:75:52:22:1a:5c:cd:19:e6:30:
e6:dc:30:06:59:da:60:04:c8:0b:cb:06:02:25:b6:
cf:be:4c:1c:c5:27:c6:7a:12:ba:ec:73:24:a0:cb:
2a:86:8b:ad:19:5a:22:43:5d:ba:cb:bb:37:b3:90:
45:f4:e3:8d:f5:bd:6d:5b:33:c3:71:5e:9f:3a:48:
fd:4d:cf:c4:3f:fa:2e:a0:f8:30:87:4e:db:75:1c:
45:4a:bd:2e:92:ce:92:c1:21:8d:a9:e2:df:f4:47:
84:32:20:a1:da:a3:a5:00:8a:ca:bd:50:44:25:45:
21:63:6f:91:65:ca:79:50:59:20:1a:1a:5b:b4:4a:
2c:02:12:22:0c:ce:86:40:63:17:05:47:e7:1e:3b:
13:cf:ab:03:32:6d:fa:e8:8d:77:9a:49:f6:a5:ce:
2c:1e:11:c9:15:15:7a:ee:40:34:01:4c:8d:46:58:
39:e1:25:46:98:a4:1e:68:06:53:63:c9:c9:3d:c3:
05:73:7c:c8:b0:b0:68:5d:16:e5:8b:e4:2e:5a:99:
55:98:79:ac:f6:14:b1:e4:aa:0c:8a:b1:d8:e5:6a:
aa:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:10:9C:27:53:62:1B:8E:0A:19:96:5A:29:CF:BA:97:68:57:23:C0
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:27:e3:2b:4f:6d:4e:1b:ff:6f:50:d4:df:b1:d9:ff:20:80:
5c:6a:ae:b6:69:63:9b:da:66:41:29:96:49:2b:c7:fb:a5:e6:
ca:d2:ba:cb:84:4b:83:88:7d:bb:a5:14:19:14:bd:0f:b0:c2:
6d:6a:c3:6e:fd:29:62:e8:22:01:4b:c4:73:28:f9:bc:54:4d:
76:a0:42:03:98:3b:0a:32:db:75:9c:3b:1c:66:5a:d0:8c:68:
a3:d3:e0:76:6f:9b:5a:0a:57:bc:ff:64:4f:75:ab:b9:d1:e8:
79:2f:fe:ab:90:76:54:35:e1:de:f4:09:f8:3f:8a:1c:48:92:
be:2b:a9:06:a8:84:76:fe:07:5c:b1:de:af:fd:34:2e:07:f0:
96:32:99:52:6e:cb:4c:b9:7f:9a:51:a3:ad:61:14:2d:1b:bb:
e0:b6:92:35:d6:02:b8:f5:24:28:f9:f6:06:36:26:dd:05:e3:
3b:95:34:f0:77:4d:57:3a:d5:d0:06:85:d8:59:f4:84:a7:57:
cb:38:03:90:44:06:54:5d:cb:fa:04:b4:1e:9a:fc:5b:b4:b7:
cd:75:09:59:f8:5b:36:07:03:3c:7b:73:8e:26:23:b6:bf:ba:
d5:8c:ff:c4:4c:87:41:4c:fd:3e:d1:a4:8b:19:92:dc:36:82:
d0:a4:26:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9ZOq6n1OJA24yTV4HayEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0M2U3NmUxMmQyNWRlMmNjZjQ3MTlkZjAyNTRlODUzOTUw
ZWVlYjkwHhcNMjUxMTA0MTMwMTQ4WhcNMjUxMTA1MTMwMTQ4WjAzMTEwLwYDVQQD
EygxNjEwOWMyNzUzNjIxYjhlMGExOTk2NWEyOWNmYmE5NzY4NTcyM2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm3TQCgxS7n5+3o5WPoS8V/F0XbMF
UT2GUeU6mCJYUbWwXdJ1UiIaXM0Z5jDm3DAGWdpgBMgLywYCJbbPvkwcxSfGehK6
7HMkoMsqhoutGVoiQ126y7s3s5BF9OON9b1tWzPDcV6fOkj9Tc/EP/ouoPgwh07b
dRxFSr0uks6SwSGNqeLf9EeEMiCh2qOlAIrKvVBEJUUhY2+RZcp5UFkgGhpbtEos
AhIiDM6GQGMXBUfnHjsTz6sDMm366I13mkn2pc4sHhHJFRV67kA0AUyNRlg54SVG
mKQeaAZTY8nJPcMFc3zIsLBoXRbli+QuWplVmHms9hSx5KoMirHY5WqqAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBYQnCdTYhuOChmWWinPupdoVyPAMB8GA1UdIwQY
MBaAFIQ+duEtJd4sz0cZ3wJU6FOVDu65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS85MzI1NmItYzkxMy00OTVhLWE3Zjkt
NjdmYzhkMjA2NWIxLzEvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS85MzI1NmItYzkxMy00OTVhLWE3ZjktNjdmYzhkMjA2NWIx
LzEvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhCfjK09t
Thv/b1DU37HZ/yCAXGqutmljm9pmQSmWSSvH+6XmytK6y4RLg4h9u6UUGRS9D7DC
bWrDbv0pYugiAUvEcyj5vFRNdqBCA5g7CjLbdZw7HGZa0Ixoo9Pgdm+bWgpXvP9k
T3WrudHoeS/+q5B2VDXh3vQJ+D+KHEiSviupBqiEdv4HXLHer/00LgfwljKZUm7L
TLl/mlGjrWEULRu74LaSNdYCuPUkKPn2BjYm3QXjO5U08HdNVzrV0AaF2Fn0hKdX
yzgDkEQGVF3L+gS0Hpr8W7S3zXUJWfhbNgcDPHtzjiYjtr+61Yz/xEyHQUz9PtGk
ixmS3DaC0KQmKw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:36:52 2025 by rpki-client