Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft
File: hphbrg2TjeJDhcQFPNo5G3RFAmc.mft (raw, json)
Hash identifier: kTNs+eNNv2krZ0a6YTgw21F/t34IqL/Twflqie/2XkU=
Subject key identifier: 5F:09:B1:1F:8D:84:50:0B:4C:D9:B3:21:A3:3F:9F:C0:65:D6:ED:2B
Authority key identifier: 86:98:5B:AE:0D:93:8D:E2:43:85:C4:05:3C:DA:39:1B:74:45:02:67
Certificate issuer: /CN=86985bae0d938de24385c4053cda391b74450267
Certificate serial: 0199FDD9D6A990B009BD6391C522EDF9B665
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hphbrg2TjeJDhcQFPNo5G3RFAmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft
Manifest number: 0A53
Signing time: Sun 19 Oct 2025 19:02:15 +0000
Manifest this update: Sun 19 Oct 2025 19:02:15 +0000
Manifest next update: Mon 20 Oct 2025 19:02:15 +0000
Files and hashes: 1: hphbrg2TjeJDhcQFPNo5G3RFAmc.crl (hash: FLxpYmYcV7Ot/Bx5EQk6g7SAvk2WuNiYhn+m3emRNsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hphbrg2TjeJDhcQFPNo5G3RFAmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:d6:a9:90:b0:09:bd:63:91:c5:22:ed:f9:b6:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86985bae0d938de24385c4053cda391b74450267
Validity
Not Before: Oct 19 19:02:15 2025 GMT
Not After : Oct 20 19:02:15 2025 GMT
Subject: CN=5f09b11f8d84500b4cd9b321a33f9fc065d6ed2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:82:fc:90:1d:96:e8:64:9e:12:2d:81:78:f9:
fd:f3:48:34:5a:34:8d:05:52:05:67:74:48:ee:fd:
15:06:bb:97:13:47:f5:20:61:77:77:de:1d:2d:17:
46:ed:bd:00:c9:9f:28:f0:e5:e6:a5:9e:bc:20:4a:
1b:49:de:0d:4b:fc:a7:c7:2a:05:35:ff:a7:56:2e:
e9:3f:f4:f7:ef:a7:fc:6e:60:e6:8c:62:41:4f:e6:
b9:d7:19:48:20:06:99:32:ee:ee:32:df:0a:9e:07:
26:05:0f:32:31:9e:95:ce:3b:dd:9d:51:d5:50:28:
a9:ae:89:91:ad:00:d7:27:89:1c:dc:d4:5b:ae:84:
e1:54:c7:35:14:61:4e:7a:e2:dd:ba:0e:c8:0f:c2:
0d:5c:3f:d0:5b:b3:27:e9:55:78:35:eb:a3:9a:e9:
46:1f:b2:9e:e9:cb:fe:5b:09:fd:43:f7:2d:2c:7c:
a6:85:a9:80:aa:f7:4b:e0:e4:13:29:ad:01:b0:74:
64:24:fb:1d:45:15:ee:7d:d0:b4:03:ea:79:3b:32:
b2:3d:36:25:bc:3c:a8:a3:e2:6a:6f:a1:53:c6:cd:
b6:82:f3:8b:af:aa:4d:34:5b:2d:59:03:41:20:63:
5d:6b:7e:b2:03:2f:9d:67:f9:36:74:cc:f7:b2:d6:
87:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:09:B1:1F:8D:84:50:0B:4C:D9:B3:21:A3:3F:9F:C0:65:D6:ED:2B
X509v3 Authority Key Identifier:
keyid:86:98:5B:AE:0D:93:8D:E2:43:85:C4:05:3C:DA:39:1B:74:45:02:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hphbrg2TjeJDhcQFPNo5G3RFAmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/f1a67b-f5c2-48be-87c1-18481c54bac0/1/hphbrg2TjeJDhcQFPNo5G3RFAmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:26:3d:fa:a7:0f:95:bf:16:68:87:59:07:1c:23:ca:24:47:
7b:2b:4a:68:bd:1c:25:dc:89:28:65:ea:aa:24:9c:99:40:40:
d8:3d:70:c1:48:59:89:eb:9e:ae:81:e9:f7:87:ef:48:d3:2f:
82:43:c1:64:9d:9e:de:00:7b:6b:7c:6a:ad:a7:3f:68:44:4e:
be:80:48:6d:af:dd:05:4d:a7:6f:b4:17:23:c8:5b:e8:ed:e6:
32:d6:0a:ca:a6:71:10:32:0a:3e:ec:c7:65:3a:03:c6:9a:61:
d7:44:e3:ec:9e:69:ad:6c:8d:0e:e9:0e:ac:ae:4d:fe:a4:ee:
6e:b3:30:82:63:b1:47:9c:5f:01:16:8e:5b:82:90:5a:b8:5e:
1d:9d:b0:18:88:31:19:29:4e:b4:bb:62:e0:6c:a4:8e:fe:9e:
da:96:20:52:5d:11:1a:5f:8c:15:b0:70:52:0e:c5:75:93:a7:
b9:4f:7c:35:f7:9f:e7:37:ac:7a:ea:1a:4d:69:42:96:a0:68:
75:a5:c0:be:f4:e0:90:bb:fc:fe:b4:e1:64:6e:7f:4e:e8:39:
1d:6d:af:ee:02:f2:04:ae:dd:56:57:ea:6a:67:8f:ee:46:f9:
ca:fd:c9:15:80:97:ac:37:65:e9:a6:67:c1:a4:1a:19:d4:f4:
b3:f5:0f:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92dapkLAJvWORxSLt+bZlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OTg1YmFlMGQ5MzhkZTI0Mzg1YzQwNTNjZGEzOTFiNzQ0
NTAyNjcwHhcNMjUxMDE5MTkwMjE1WhcNMjUxMDIwMTkwMjE1WjAzMTEwLwYDVQQD
Eyg1ZjA5YjExZjhkODQ1MDBiNGNkOWIzMjFhMzNmOWZjMDY1ZDZlZDJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAioL8kB2W6GSeEi2BePn980g0WjSN
BVIFZ3RI7v0VBruXE0f1IGF3d94dLRdG7b0AyZ8o8OXmpZ68IEobSd4NS/ynxyoF
Nf+nVi7pP/T376f8bmDmjGJBT+a51xlIIAaZMu7uMt8KngcmBQ8yMZ6VzjvdnVHV
UCipromRrQDXJ4kc3NRbroThVMc1FGFOeuLdug7ID8INXD/QW7Mn6VV4NeujmulG
H7Ke6cv+Wwn9Q/ctLHymhamAqvdL4OQTKa0BsHRkJPsdRRXufdC0A+p5OzKyPTYl
vDyoo+Jqb6FTxs22gvOLr6pNNFstWQNBIGNda36yAy+dZ/k2dMz3staHiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF8JsR+NhFALTNmzIaM/n8Bl1u0rMB8GA1UdIwQY
MBaAFIaYW64Nk43iQ4XEBTzaORt0RQJnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBoYnJnMlRqZUpEaGNRRlBObzVHM1JGQW1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mMWE2N2ItZjVjMi00OGJlLTg3YzEt
MTg0ODFjNTRiYWMwLzEvaHBoYnJnMlRqZUpEaGNRRlBObzVHM1JGQW1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy9mMWE2N2ItZjVjMi00OGJlLTg3YzEtMTg0ODFjNTRiYWMw
LzEvaHBoYnJnMlRqZUpEaGNRRlBObzVHM1JGQW1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfiY9+qcP
lb8WaIdZBxwjyiRHeytKaL0cJdyJKGXqqiScmUBA2D1wwUhZieueroHp94fvSNMv
gkPBZJ2e3gB7a3xqrac/aEROvoBIba/dBU2nb7QXI8hb6O3mMtYKyqZxEDIKPuzH
ZToDxpph10Tj7J5prWyNDukOrK5N/qTubrMwgmOxR5xfARaOW4KQWrheHZ2wGIgx
GSlOtLti4Gykjv6e2pYgUl0RGl+MFbBwUg7FdZOnuU98Nfef5zeseuoaTWlClqBo
daXAvvTgkLv8/rThZG5/Tug5HW2v7gLyBK7dVlfqameP7kb5yv3JFYCXrDdl6aZn
waQaGdT0s/UPOg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:02:09 2025 by rpki-client