Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
File: hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft (raw, json)
Hash identifier: Za1s+ofIYDOPc72aFOtIY6JtsnMNAHJd28ek010fL2g=
Subject key identifier: 44:AA:04:B3:EC:53:C6:67:3C:34:C7:C7:09:4D:41:99:C7:BB:C9:DA
Authority key identifier: 84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
Certificate issuer: /CN=84f590ca62c246440583818c31f2573a0f50ffd0
Certificate serial: 0199FAA126FDA2FA06D4FFA0791F7D18E6DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
Manifest number: 0AF5
Signing time: Sun 19 Oct 2025 04:01:29 +0000
Manifest this update: Sun 19 Oct 2025 04:01:29 +0000
Manifest next update: Mon 20 Oct 2025 04:01:29 +0000
Files and hashes: 1: hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl (hash: 0Y55i9BwHAfJ2AoRbHkdtbGXpW90b5WZADMNIvaAmfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a1:26:fd:a2:fa:06:d4:ff:a0:79:1f:7d:18:e6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f590ca62c246440583818c31f2573a0f50ffd0
Validity
Not Before: Oct 19 04:01:29 2025 GMT
Not After : Oct 20 04:01:29 2025 GMT
Subject: CN=44aa04b3ec53c6673c34c7c7094d4199c7bbc9da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5f:37:45:2c:5f:3a:f7:27:84:a2:3f:3f:ad:
5c:6e:6a:ae:dc:af:f7:22:18:f7:aa:89:71:7a:e4:
ce:36:4d:df:0c:2c:0a:1a:45:0a:f1:4d:02:94:de:
19:8a:d4:50:89:48:db:5c:e4:9a:3a:65:f9:21:9d:
96:17:b9:b8:6d:b6:8d:fe:55:2c:cf:79:d1:fb:ab:
73:b1:cd:5d:00:56:4b:ac:83:cc:dd:2d:2c:f5:7e:
55:03:b2:4f:ac:3f:b8:bf:8c:0b:70:c2:aa:89:1b:
c5:76:1e:95:a6:8b:59:28:53:1a:56:bf:f4:8f:33:
2a:87:ed:ac:8a:ea:3a:15:88:9f:b2:9b:a8:b4:a8:
76:f6:e8:05:f7:c6:90:c3:0d:5f:64:6a:76:22:10:
21:24:ed:0a:72:e4:a5:b6:2a:55:ee:cf:f4:a3:b2:
5a:07:7a:70:58:f9:5c:85:04:d0:dd:55:88:ac:ec:
43:e4:48:34:09:06:24:3d:dc:d0:49:0c:50:6e:bf:
69:92:62:d8:0a:60:d3:12:3b:b1:93:2f:ab:77:24:
a9:df:03:50:b6:14:2d:93:73:98:80:0e:ee:a7:dc:
b7:ba:75:b3:1d:82:0c:78:17:4e:08:2f:d2:be:2f:
c9:f3:8d:0d:d1:8e:2e:82:ed:17:b3:0f:85:31:33:
d9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AA:04:B3:EC:53:C6:67:3C:34:C7:C7:09:4D:41:99:C7:BB:C9:DA
X509v3 Authority Key Identifier:
keyid:84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:bb:90:7e:ff:82:36:60:0c:e8:a1:83:75:26:4f:d2:fe:0e:
3d:22:75:7f:e4:3f:ac:d8:ad:03:b8:7f:4c:7f:ad:a8:c3:2b:
82:9d:19:1f:50:cc:a9:65:23:b1:d4:c2:d2:f7:d7:85:38:7c:
8b:94:a7:8a:11:2f:6f:54:60:97:a8:e8:31:4b:52:d9:7e:b9:
95:cb:df:25:6b:03:35:29:37:62:5e:6c:fe:d8:81:01:52:fb:
b4:c6:ab:71:8d:8c:0e:c4:73:2c:f7:80:f8:bc:ee:3d:58:50:
2e:0a:47:19:bc:9a:58:94:60:8d:67:e0:5e:07:62:b2:ab:53:
92:aa:54:6c:09:b2:ed:f8:83:86:da:c6:59:ab:ca:01:47:8d:
c1:30:69:81:2d:5f:e8:35:d0:af:f8:86:6b:37:09:df:76:89:
4c:15:3a:0a:55:10:b5:cc:ea:52:da:9c:b3:60:f7:df:08:d2:
82:b7:31:e9:bf:34:67:b9:c0:7c:7b:e2:70:dd:9d:86:94:05:
a6:ae:5b:15:73:7f:40:f6:85:df:da:ce:84:71:6a:6d:de:69:
41:73:a3:99:8c:db:63:4d:f1:d6:95:f0:98:77:ff:9a:d6:04:
6f:ae:8c:ae:e2:74:6b:bc:32:a5:dd:f7:fa:35:0d:b2:68:8b:
37:82:17:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:38 2025 by rpki-client