Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
File: HbaQYGGZpdSGeJxD2__QwGW93OY.mft (raw, json)
Hash identifier: yFwwnGakiC+V5g1HJOhdlaYQNrkAV/qhopOD+S5czF4=
Subject key identifier: 05:0E:BC:18:F0:EC:BD:14:16:0B:93:ED:E6:DE:42:06:77:8F:9E:27
Authority key identifier: 1D:B6:90:60:61:99:A5:D4:86:78:9C:43:DB:FF:D0:C0:65:BD:DC:E6
Certificate issuer: /CN=1db690606199a5d486789c43dbffd0c065bddce6
Certificate serial: 0199FD347CED8DA49980FDF8317338CA889C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
Manifest number: 0518
Signing time: Sun 19 Oct 2025 16:01:39 +0000
Manifest this update: Sun 19 Oct 2025 16:01:39 +0000
Manifest next update: Mon 20 Oct 2025 16:01:39 +0000
Files and hashes: 1: HbaQYGGZpdSGeJxD2__QwGW93OY.crl (hash: ugwWpLnvKfzn9D8OCWHz+akYBo9fUXs1gcpS/Vi3Qd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:7c:ed:8d:a4:99:80:fd:f8:31:73:38:ca:88:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db690606199a5d486789c43dbffd0c065bddce6
Validity
Not Before: Oct 19 16:01:39 2025 GMT
Not After : Oct 20 16:01:39 2025 GMT
Subject: CN=050ebc18f0ecbd14160b93ede6de4206778f9e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:e9:1b:df:d7:72:95:ec:50:67:ad:6c:62:
25:31:02:01:4c:10:c0:f6:82:4a:32:d0:50:a0:38:
fc:ba:65:2f:7e:72:3b:4a:a5:5c:0c:19:fe:e6:2d:
e8:06:d2:0d:03:ee:cb:69:c8:ad:2b:e7:de:de:c5:
7e:97:9b:be:dc:da:84:41:38:32:c4:0d:fe:07:83:
48:cf:58:8c:87:99:5c:1a:e2:19:d2:b5:34:75:55:
42:9d:43:09:1d:95:75:10:62:c0:b5:d5:6e:0f:af:
36:e1:be:50:6f:80:76:46:e0:de:6e:39:5a:02:75:
43:01:a6:8a:a9:d0:50:fa:5e:da:d8:b4:9c:73:ab:
0f:d0:24:6a:55:79:f9:ff:2c:9f:84:5f:69:23:ba:
31:08:d3:c3:07:33:68:1f:24:7f:5f:35:fe:96:b5:
2e:6b:44:fd:78:27:1a:3f:c9:78:7f:52:4c:c3:9a:
0f:6e:3b:d6:38:c0:f9:65:f3:2c:c6:dd:4a:7c:c3:
88:67:4e:9d:87:a4:78:b5:79:b6:0f:6f:e2:27:21:
68:0a:f4:07:fc:23:75:29:c8:5c:9a:3e:12:5c:2c:
d9:ac:58:8a:73:eb:8d:70:2c:e7:f5:20:c3:ae:de:
42:43:0b:97:0a:da:25:8d:89:a7:d8:e6:f3:12:32:
0a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0E:BC:18:F0:EC:BD:14:16:0B:93:ED:E6:DE:42:06:77:8F:9E:27
X509v3 Authority Key Identifier:
keyid:1D:B6:90:60:61:99:A5:D4:86:78:9C:43:DB:FF:D0:C0:65:BD:DC:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbaQYGGZpdSGeJxD2__QwGW93OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/03d175-30f2-4913-99b2-ffc409c503d5/1/HbaQYGGZpdSGeJxD2__QwGW93OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:7e:b5:2c:04:72:a4:1f:0b:13:c9:e5:12:b5:4d:4b:f2:64:
2e:8a:d1:67:42:d9:07:c3:f8:c6:48:1e:ab:89:bd:11:cb:d2:
37:66:49:01:b3:a9:84:57:0f:02:4f:c0:17:ed:51:2c:4e:03:
bc:bd:c9:68:c6:ca:00:64:d7:56:a0:ed:6c:5d:36:b6:a8:3d:
27:41:24:6a:a6:1a:d3:44:04:e4:42:54:f2:7d:53:b6:2d:f9:
cf:ea:af:76:14:d8:47:14:27:29:44:67:06:ee:1f:33:68:e6:
1e:21:5f:56:52:df:40:16:c1:58:76:4d:80:e6:ea:9d:a3:66:
10:0a:f8:d7:d7:60:7e:db:1d:a9:56:53:e9:4e:5b:dd:3c:a1:
0f:ea:c0:05:fd:f5:6a:8c:81:26:d3:60:c2:2f:26:d0:96:89:
5b:2d:18:b3:01:34:65:51:9f:cc:12:23:91:e0:02:31:ae:cf:
42:70:72:77:df:7e:5a:b9:3c:30:64:70:9d:86:14:c5:00:69:
47:83:6a:66:a0:f2:e7:20:0d:48:ef:da:71:2a:fd:56:1b:e9:
df:43:cc:20:49:35:d8:e5:85:46:d3:0e:c9:81:59:f3:08:64:
0c:21:e6:eb:00:27:8e:79:03:1f:f2:b3:48:2b:6a:5f:fb:d1:
2e:3f:b2:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NHztjaSZgP34MXM4yoicMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkYjY5MDYwNjE5OWE1ZDQ4Njc4OWM0M2RiZmZkMGMwNjVi
ZGRjZTYwHhcNMjUxMDE5MTYwMTM5WhcNMjUxMDIwMTYwMTM5WjAzMTEwLwYDVQQD
EygwNTBlYmMxOGYwZWNiZDE0MTYwYjkzZWRlNmRlNDIwNjc3OGY5ZTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4rpG9/XcpXsUGetbGIlMQIBTBDA
9oJKMtBQoDj8umUvfnI7SqVcDBn+5i3oBtINA+7LacitK+fe3sV+l5u+3NqEQTgy
xA3+B4NIz1iMh5lcGuIZ0rU0dVVCnUMJHZV1EGLAtdVuD6824b5Qb4B2RuDebjla
AnVDAaaKqdBQ+l7a2LScc6sP0CRqVXn5/yyfhF9pI7oxCNPDBzNoHyR/XzX+lrUu
a0T9eCcaP8l4f1JMw5oPbjvWOMD5ZfMsxt1KfMOIZ06dh6R4tXm2D2/iJyFoCvQH
/CN1Kchcmj4SXCzZrFiKc+uNcCzn9SDDrt5CQwuXCtoljYmn2ObzEjIKUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAUOvBjw7L0UFguT7ebeQgZ3j54nMB8GA1UdIwQY
MBaAFB22kGBhmaXUhnicQ9v/0MBlvdzmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGJhUVlHR1pwZFNHZUp4RDJfX1F3R1c5M09ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wM2QxNzUtMzBmMi00OTEzLTk5YjIt
ZmZjNDA5YzUwM2Q1LzEvSGJhUVlHR1pwZFNHZUp4RDJfX1F3R1c5M09ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wM2QxNzUtMzBmMi00OTEzLTk5YjItZmZjNDA5YzUwM2Q1
LzEvSGJhUVlHR1pwZFNHZUp4RDJfX1F3R1c5M09ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhX61LARy
pB8LE8nlErVNS/JkLorRZ0LZB8P4xkgeq4m9EcvSN2ZJAbOphFcPAk/AF+1RLE4D
vL3JaMbKAGTXVqDtbF02tqg9J0EkaqYa00QE5EJU8n1Tti35z+qvdhTYRxQnKURn
Bu4fM2jmHiFfVlLfQBbBWHZNgObqnaNmEAr419dgftsdqVZT6U5b3TyhD+rABf31
aoyBJtNgwi8m0JaJWy0YswE0ZVGfzBIjkeACMa7PQnByd99+Wrk8MGRwnYYUxQBp
R4NqZqDy5yANSO/acSr9Vhvp30PMIEk12OWFRtMOyYFZ8whkDCHm6wAnjnkDH/Kz
SCtqX/vRLj+y4g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:55:33 2025 by rpki-client