Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json)
Hash identifier: IRFNI2VojBJnigvOMTq5WR1vYq2DfRXySJZhPloBcMg=
Subject key identifier: 26:76:5C:62:4A:11:F8:81:A8:00:56:01:4A:0E:1A:E0:81:30:76:D4
Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2
Certificate serial: 0199FC583A387A3B198A8EA073C00633B441
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
Manifest number: 0B17
Signing time: Sun 19 Oct 2025 12:01:04 +0000
Manifest this update: Sun 19 Oct 2025 12:01:04 +0000
Manifest next update: Mon 20 Oct 2025 12:01:04 +0000
Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: 73jXH3JbG7upjv5o+zC4hWSTgcz8bk5OaBtsUO+C8K0=)
2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:3a:38:7a:3b:19:8a:8e:a0:73:c0:06:33:b4:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2
Validity
Not Before: Oct 19 12:01:04 2025 GMT
Not After : Oct 20 12:01:04 2025 GMT
Subject: CN=26765c624a11f881a80056014a0e1ae0813076d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c4:51:ad:1f:99:95:1a:e7:4a:9f:1d:56:bc:
73:b6:8c:89:5e:07:d2:4d:65:70:39:31:27:e6:5b:
1e:26:5d:7f:26:aa:06:32:59:64:e3:03:ed:f2:12:
b9:ec:a3:1d:eb:a0:32:e5:0e:18:a7:96:2c:4f:41:
ac:53:d1:82:40:4c:cd:7c:5e:52:c1:20:25:00:96:
d7:1f:98:d4:f6:17:2a:90:86:85:04:95:e4:71:1e:
2e:f9:1f:7d:00:43:73:06:9a:8a:e9:d3:41:e9:1b:
a4:b4:8d:e7:30:a5:11:d3:66:8a:73:1a:b2:ec:db:
77:9a:3e:f6:59:d7:28:4a:65:12:42:d5:8e:e1:4f:
6a:4d:6e:c9:c7:dc:2d:fe:88:8a:12:8d:67:a3:ee:
e3:ac:ea:d1:9a:8f:ac:1e:c0:3b:46:49:a6:4c:85:
e9:f6:ca:7f:40:e4:59:15:39:69:3f:c0:69:c9:c4:
60:41:4a:e8:af:29:39:0b:53:f3:53:d1:bf:aa:31:
77:83:6d:f0:60:60:0c:47:6a:00:d8:57:80:19:f5:
99:96:58:2e:ba:ff:82:e3:63:d0:6c:7d:77:45:a0:
ad:6e:1a:a3:fe:f3:59:86:1e:e4:78:7a:28:27:31:
16:d3:9f:00:fa:23:53:10:2a:bc:ce:40:52:4f:31:
66:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:76:5C:62:4A:11:F8:81:A8:00:56:01:4A:0E:1A:E0:81:30:76:D4
X509v3 Authority Key Identifier:
keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:9b:4c:8d:c0:d8:72:bf:04:9b:39:73:aa:92:c4:b8:b3:d2:
5f:ed:48:5d:a7:a2:9d:fc:87:0c:81:2a:cf:80:66:24:40:f2:
b7:24:45:d5:05:41:1a:9b:bd:23:3f:fe:39:2b:bd:ea:4d:2c:
de:e6:52:55:f2:5c:bd:a1:1e:a4:9c:e1:65:5b:b4:4f:4f:8b:
03:b6:a3:66:00:7a:aa:9a:fc:33:a7:8c:cc:a4:9c:fa:90:7e:
9a:d1:d1:70:0b:9f:2d:d8:73:29:6a:93:2d:29:d5:8a:b4:ca:
ba:33:25:01:9b:38:f9:d6:3f:3d:0b:3b:43:d2:75:e0:85:b5:
ad:1c:ec:7f:53:a8:9b:6a:dc:fb:eb:90:b5:e8:70:b4:3d:d1:
b8:a5:c1:84:84:00:a5:2c:64:c5:c4:99:a0:d4:96:f5:64:a5:
0e:3f:63:d4:12:34:a6:8a:95:5f:ca:48:44:c5:74:2d:43:13:
a6:7e:04:14:05:43:11:69:65:45:0c:22:00:24:41:a5:c1:f5:
83:73:51:3e:89:d9:89:40:2c:05:27:7c:59:1b:1f:c2:42:b5:
9a:9d:48:dc:41:f0:69:21:5c:c5:4f:be:63:93:0c:ed:04:50:
33:a1:c7:02:39:4e:6b:7b:f3:62:24:ac:1f:cd:c0:6f:5e:d3:
85:f7:d2:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WDo4ejsZio6gc8AGM7RBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZGU3NDYzZWQ4NDk4MDIwZGQzOTIzMjI0NTlkMmNmNDBm
MjI2YjIwHhcNMjUxMDE5MTIwMTA0WhcNMjUxMDIwMTIwMTA0WjAzMTEwLwYDVQQD
EygyNjc2NWM2MjRhMTFmODgxYTgwMDU2MDE0YTBlMWFlMDgxMzA3NmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosRRrR+ZlRrnSp8dVrxztoyJXgfS
TWVwOTEn5lseJl1/JqoGMllk4wPt8hK57KMd66Ay5Q4Yp5YsT0GsU9GCQEzNfF5S
wSAlAJbXH5jU9hcqkIaFBJXkcR4u+R99AENzBpqK6dNB6RuktI3nMKUR02aKcxqy
7Nt3mj72WdcoSmUSQtWO4U9qTW7Jx9wt/oiKEo1no+7jrOrRmo+sHsA7RkmmTIXp
9sp/QORZFTlpP8BpycRgQUroryk5C1PzU9G/qjF3g23wYGAMR2oA2FeAGfWZllgu
uv+C42PQbH13RaCtbhqj/vNZhh7keHooJzEW058A+iNTECq8zkBSTzFmlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCZ2XGJKEfiBqABWAUoOGuCBMHbUMB8GA1UdIwQY
MBaAFB3edGPthJgCDdOSMiRZ0s9A8iayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5Njgt
NDNjN2YwMjdjNmU0LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5NjgtNDNjN2YwMjdjNmU0
LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZtMjcDY
cr8EmzlzqpLEuLPSX+1IXaeinfyHDIEqz4BmJEDytyRF1QVBGpu9Iz/+OSu96k0s
3uZSVfJcvaEepJzhZVu0T0+LA7ajZgB6qpr8M6eMzKSc+pB+mtHRcAufLdhzKWqT
LSnVirTKujMlAZs4+dY/PQs7Q9J14IW1rRzsf1Oom2rc++uQtehwtD3RuKXBhIQA
pSxkxcSZoNSW9WSlDj9j1BI0poqVX8pIRMV0LUMTpn4EFAVDEWllRQwiACRBpcH1
g3NRPonZiUAsBSd8WRsfwkK1mp1I3EHwaSFcxU++Y5MM7QRQM6HHAjlOa3vzYiSs
H83Ab17ThffS8A==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:24:05 2025 by rpki-client