Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
File: hD524S0l3izPRxnfAlToU5UO7rk.mft (raw, json)
Hash identifier: yz8FkV9D3NTW6iFYZ0jR68MMHVNJbW7ML4bXCeaaWTI=
Subject key identifier: 26:33:0B:28:93:42:EB:CA:CD:D7:F6:50:B0:B4:21:90:76:C9:08:D0
Authority key identifier: 84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
Certificate issuer: /CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Certificate serial: 019875D1C519B4E18C10558ABCA17AD86154
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
Manifest number: 0C6D
Signing time: Mon 04 Aug 2025 16:02:18 +0000
Manifest this update: Mon 04 Aug 2025 16:02:18 +0000
Manifest next update: Tue 05 Aug 2025 16:02:18 +0000
Files and hashes: 1: hD524S0l3izPRxnfAlToU5UO7rk.crl (hash: dvfABMaMsOtw8TeEy6SKUKvfM6j3USDvbdFc25bMpPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d1:c5:19:b4:e1:8c:10:55:8a:bc:a1:7a:d8:61:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843e76e12d25de2ccf4719df0254e853950eeeb9
Validity
Not Before: Aug 4 16:02:18 2025 GMT
Not After : Aug 5 16:02:18 2025 GMT
Subject: CN=26330b289342ebcacdd7f650b0b4219076c908d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c8:4c:1f:64:e0:8d:7e:58:12:02:f5:cd:22:
41:bb:9a:b1:2e:d9:76:eb:6f:6c:4a:27:09:61:a9:
82:fa:21:7e:cb:c2:6a:bf:9a:ab:fd:52:6a:ea:f4:
fe:14:75:ae:8b:44:e7:f7:19:f9:86:13:a6:3d:1a:
da:07:ba:b1:d9:f9:52:15:2b:54:b1:59:cf:b1:6b:
78:b9:b8:22:0e:55:da:32:9c:92:cb:69:2d:86:1e:
65:f6:b3:1a:8e:ef:0d:6b:92:b9:d7:bd:d6:24:f6:
e7:1d:62:0b:e3:cd:2c:47:2b:7f:c8:a2:65:af:ca:
b6:df:87:0a:3a:33:9c:24:b5:74:44:6e:88:06:85:
e0:b7:30:3d:85:f9:81:93:3e:7e:d7:f0:3e:fd:00:
0b:66:47:a8:74:be:ab:42:89:c0:22:15:3b:2c:12:
17:87:2e:df:68:4c:fa:67:9f:fb:b9:85:f6:0a:98:
09:12:06:27:12:1d:16:5a:4a:ec:bc:9a:41:43:c3:
5b:c1:bd:d7:aa:dd:bb:7a:73:1d:b1:9a:65:4f:be:
09:36:7b:45:ed:80:0a:16:e8:df:07:9c:d9:71:3d:
ad:d5:94:8d:89:02:f0:a8:d4:22:87:7e:a8:0e:cd:
88:a6:da:c7:a6:3e:c9:0c:2c:7f:1f:22:76:91:b1:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:33:0B:28:93:42:EB:CA:CD:D7:F6:50:B0:B4:21:90:76:C9:08:D0
X509v3 Authority Key Identifier:
keyid:84:3E:76:E1:2D:25:DE:2C:CF:47:19:DF:02:54:E8:53:95:0E:EE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD524S0l3izPRxnfAlToU5UO7rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/93256b-c913-495a-a7f9-67fc8d2065b1/1/hD524S0l3izPRxnfAlToU5UO7rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:1d:5b:5b:79:29:d2:b2:e6:4f:4d:98:60:7e:f4:6f:c6:9b:
16:1c:86:e8:49:c9:3b:cf:32:ae:27:b5:21:18:10:a8:22:08:
a5:55:03:01:c0:43:6e:8f:7f:66:16:0d:1e:07:a2:a6:cb:c2:
dd:59:f2:f1:67:2e:3b:b4:5d:85:1f:c4:cc:22:34:ce:a2:ce:
05:9c:28:81:00:e0:dd:11:37:39:4f:77:66:3f:6d:c5:b5:5e:
b3:a1:5b:bd:e8:f9:f3:b0:01:48:47:38:d6:44:af:8f:1d:7e:
99:c1:76:38:6b:25:15:2a:dc:56:03:8c:73:0b:08:39:e6:aa:
84:6f:26:84:2f:03:9d:42:44:83:77:ee:a6:1b:b1:2e:05:25:
69:a8:0b:26:b1:15:9e:b8:d0:8e:33:12:3f:f0:eb:c1:1e:eb:
84:b8:45:0d:ec:b6:04:fc:d2:0d:ae:bc:08:99:2e:19:a3:b0:
e9:ba:46:79:7b:3d:e7:3c:a0:e2:1c:62:3d:07:a0:4d:ab:5b:
72:99:be:fc:ed:f6:c3:9f:61:ba:2a:48:86:6a:88:03:6d:df:
e8:9f:0e:14:82:57:ef:4d:40:4d:db:05:80:34:01:16:d4:27:
3b:b1:0a:c1:6a:c7:bf:4f:3b:32:71:e1:d9:f1:dc:fe:9f:f9:
ed:49:29:85
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh10cUZtOGMEFWKvKF62GFUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0M2U3NmUxMmQyNWRlMmNjZjQ3MTlkZjAyNTRlODUzOTUw
ZWVlYjkwHhcNMjUwODA0MTYwMjE4WhcNMjUwODA1MTYwMjE4WjAzMTEwLwYDVQQD
EygyNjMzMGIyODkzNDJlYmNhY2RkN2Y2NTBiMGI0MjE5MDc2YzkwOGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzchMH2TgjX5YEgL1zSJBu5qxLtl2
629sSicJYamC+iF+y8Jqv5qr/VJq6vT+FHWui0Tn9xn5hhOmPRraB7qx2flSFStU
sVnPsWt4ubgiDlXaMpySy2kthh5l9rMaju8Na5K5173WJPbnHWIL480sRyt/yKJl
r8q234cKOjOcJLV0RG6IBoXgtzA9hfmBkz5+1/A+/QALZkeodL6rQonAIhU7LBIX
hy7faEz6Z5/7uYX2CpgJEgYnEh0WWkrsvJpBQ8Nbwb3Xqt27enMdsZplT74JNntF
7YAKFujfB5zZcT2t1ZSNiQLwqNQih36oDs2IptrHpj7JDCx/HyJ2kbFBIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCYzCyiTQuvKzdf2ULC0IZB2yQjQMB8GA1UdIwQY
MBaAFIQ+duEtJd4sz0cZ3wJU6FOVDu65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS85MzI1NmItYzkxMy00OTVhLWE3Zjkt
NjdmYzhkMjA2NWIxLzEvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS85MzI1NmItYzkxMy00OTVhLWE3ZjktNjdmYzhkMjA2NWIx
LzEvaEQ1MjRTMGwzaXpQUnhuZkFsVG9VNVVPN3JrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcR1bW3kp
0rLmT02YYH70b8abFhyG6EnJO88yrie1IRgQqCIIpVUDAcBDbo9/ZhYNHgeipsvC
3Vny8WcuO7RdhR/EzCI0zqLOBZwogQDg3RE3OU93Zj9txbVes6Fbvej587ABSEc4
1kSvjx1+mcF2OGslFSrcVgOMcwsIOeaqhG8mhC8DnUJEg3fuphuxLgUlaagLJrEV
nrjQjjMSP/DrwR7rhLhFDey2BPzSDa68CJkuGaOw6bpGeXs95zyg4hxiPQegTatb
cpm+/O32w59huipIhmqIA23f6J8OFIJX701ATdsFgDQBFtQnO7EKwWrHv087MnHh
2fHc/p/57UkphQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:20:53 2025 by rpki-client