Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft
File: hRRRk1wYRkb4aHgjivsKDVqwut4.mft (raw, json)
Hash identifier: g/Yxx7gBXlK4IVlkTnCFgnYmIfJ/XXPgdhNl5B60/gg=
Subject key identifier: 59:21:9E:2A:E6:72:B0:A6:0C:2D:5D:5D:1B:40:01:61:A6:37:05:64
Authority key identifier: 85:14:51:93:5C:18:46:46:F8:68:78:23:8A:FB:0A:0D:5A:B0:BA:DE
Certificate issuer: /CN=851451935c184646f86878238afb0a0d5ab0bade
Certificate serial: 0199FBEA95183ABFACA08F620100FE3AA11F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRRRk1wYRkb4aHgjivsKDVqwut4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft
Manifest number: 91
Signing time: Sun 19 Oct 2025 10:01:18 +0000
Manifest this update: Sun 19 Oct 2025 10:01:18 +0000
Manifest next update: Mon 20 Oct 2025 10:01:18 +0000
Files and hashes: 1: hRRRk1wYRkb4aHgjivsKDVqwut4.crl (hash: CB2oUuzcIpMRv3D513ZZf0F+lTg5f4soWm8STRgYKGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hRRRk1wYRkb4aHgjivsKDVqwut4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:95:18:3a:bf:ac:a0:8f:62:01:00:fe:3a:a1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851451935c184646f86878238afb0a0d5ab0bade
Validity
Not Before: Oct 19 10:01:18 2025 GMT
Not After : Oct 20 10:01:18 2025 GMT
Subject: CN=59219e2ae672b0a60c2d5d5d1b400161a6370564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d5:7b:88:15:3c:e7:9c:fb:10:b4:5a:41:16:
ad:f5:66:59:66:39:8c:6d:34:bf:38:5b:86:09:23:
ca:77:c6:c9:d1:a8:18:27:77:1e:f1:d8:9e:3b:d3:
fc:78:e8:14:76:17:c1:09:f6:7c:9f:37:de:65:69:
eb:f0:50:63:00:08:a6:e5:45:a0:e2:4c:9c:0e:61:
27:52:92:8a:ea:aa:17:b6:8d:9a:e4:84:3f:f6:98:
75:d3:57:3e:44:75:ec:bf:9d:08:2f:79:d8:3c:e1:
7d:79:2b:a0:97:9a:c6:b0:0e:20:cf:34:7c:ee:b1:
f2:4a:dd:75:a0:53:b3:f9:46:65:5e:bc:7b:09:06:
60:0d:8c:1f:e4:41:d7:6f:9f:1f:5b:eb:12:23:f2:
a4:e6:65:2f:a9:cb:ad:a9:dd:16:77:aa:0b:02:00:
13:64:15:66:6d:1c:58:ae:5b:87:c8:fd:c3:05:77:
4b:8a:44:bd:6d:4b:ff:38:a6:96:48:d4:31:7c:45:
1e:91:63:e4:91:eb:a5:e2:c7:a2:1e:73:81:23:c6:
fb:57:77:c4:ec:55:3f:a6:cd:f6:6e:b0:96:4e:ad:
5a:1d:ce:56:ab:ba:36:c6:14:f4:9e:7e:7f:0e:24:
5a:f9:62:3c:87:18:57:35:d6:0a:e4:52:14:91:0b:
ff:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:21:9E:2A:E6:72:B0:A6:0C:2D:5D:5D:1B:40:01:61:A6:37:05:64
X509v3 Authority Key Identifier:
keyid:85:14:51:93:5C:18:46:46:F8:68:78:23:8A:FB:0A:0D:5A:B0:BA:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRRRk1wYRkb4aHgjivsKDVqwut4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/db69b3-781e-4cb9-9edf-6dd6a9c55f57/1/hRRRk1wYRkb4aHgjivsKDVqwut4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:4b:75:8a:1d:43:f8:e8:c0:96:3c:e8:b4:fe:4b:6e:4a:a5:
87:40:f3:27:99:ae:c2:d2:02:29:65:3d:d9:06:7e:e3:ac:94:
c8:a0:86:1c:53:81:20:f2:43:39:92:fc:d8:aa:d0:66:40:5b:
38:6c:70:38:29:73:09:f1:61:af:ab:9d:cd:ab:c4:ec:1c:31:
a2:7c:f7:bc:94:d8:34:e0:4a:98:93:d1:aa:2d:a9:d4:c4:a1:
f5:ec:3a:fb:98:01:89:52:e1:e5:58:81:47:c0:69:e3:d2:a0:
b3:0d:1c:44:e2:d4:51:2b:f6:89:61:72:89:36:1d:42:f2:43:
e8:8c:12:d2:ea:1e:78:57:64:8f:83:90:b1:d6:b8:9e:51:a3:
e6:82:46:06:36:b8:05:66:25:1b:96:ce:5a:c1:3a:3b:4a:71:
b6:f3:34:ee:70:dd:68:a1:a4:c0:91:df:09:9b:2b:4b:36:a8:
db:aa:ad:27:1e:af:5e:57:0a:74:ec:89:c6:e9:64:d2:d3:f4:
65:27:7c:cb:07:68:05:e6:fb:23:ed:b7:aa:80:9f:bf:5d:5b:
c6:2d:ae:ee:1d:3d:ac:aa:a9:62:c6:ab:29:f1:2d:15:8d:4a:
9b:fa:13:f9:06:23:bd:34:09:9d:40:32:9a:e0:7d:ad:f5:db:
85:41:cf:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76pUYOr+soI9iAQD+OqEfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MTQ1MTkzNWMxODQ2NDZmODY4NzgyMzhhZmIwYTBkNWFi
MGJhZGUwHhcNMjUxMDE5MTAwMTE4WhcNMjUxMDIwMTAwMTE4WjAzMTEwLwYDVQQD
Eyg1OTIxOWUyYWU2NzJiMGE2MGMyZDVkNWQxYjQwMDE2MWE2MzcwNTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNV7iBU855z7ELRaQRat9WZZZjmM
bTS/OFuGCSPKd8bJ0agYJ3ce8dieO9P8eOgUdhfBCfZ8nzfeZWnr8FBjAAim5UWg
4kycDmEnUpKK6qoXto2a5IQ/9ph101c+RHXsv50IL3nYPOF9eSugl5rGsA4gzzR8
7rHySt11oFOz+UZlXrx7CQZgDYwf5EHXb58fW+sSI/Kk5mUvqcutqd0Wd6oLAgAT
ZBVmbRxYrluHyP3DBXdLikS9bUv/OKaWSNQxfEUekWPkkeul4seiHnOBI8b7V3fE
7FU/ps32brCWTq1aHc5Wq7o2xhT0nn5/DiRa+WI8hxhXNdYK5FIUkQv/gQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFkhnirmcrCmDC1dXRtAAWGmNwVkMB8GA1UdIwQY
MBaAFIUUUZNcGEZG+Gh4I4r7Cg1asLreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFJSUmsxd1lSa2I0YUhnaml2c0tEVnF3dXQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9kYjY5YjMtNzgxZS00Y2I5LTllZGYt
NmRkNmE5YzU1ZjU3LzEvaFJSUmsxd1lSa2I0YUhnaml2c0tEVnF3dXQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9kYjY5YjMtNzgxZS00Y2I5LTllZGYtNmRkNmE5YzU1ZjU3
LzEvaFJSUmsxd1lSa2I0YUhnaml2c0tEVnF3dXQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi0t1ih1D
+OjAljzotP5Lbkqlh0DzJ5muwtICKWU92QZ+46yUyKCGHFOBIPJDOZL82KrQZkBb
OGxwOClzCfFhr6udzavE7Bwxonz3vJTYNOBKmJPRqi2p1MSh9ew6+5gBiVLh5ViB
R8Bp49Kgsw0cROLUUSv2iWFyiTYdQvJD6IwS0uoeeFdkj4OQsda4nlGj5oJGBja4
BWYlG5bOWsE6O0pxtvM07nDdaKGkwJHfCZsrSzao26qtJx6vXlcKdOyJxulk0tP0
ZSd8ywdoBeb7I+23qoCfv11bxi2u7h09rKqpYsarKfEtFY1Km/oT+QYjvTQJnUAy
muB9rfXbhUHP5g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:26 2025 by rpki-client