Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
File: hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft (raw, json)
Hash identifier: eQtRuQU2eZleFk6sL3+eAZyFN1GbYJNeu2buxiF70g8=
Subject key identifier: 8D:28:AE:42:CC:EE:6B:90:69:07:8C:51:72:9A:C8:CE:A2:2C:65:69
Authority key identifier: 84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
Certificate issuer: /CN=84f590ca62c246440583818c31f2573a0f50ffd0
Certificate serial: 0197C4C9ED4918E4A8EE1A6E979C9433303C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
Manifest number: 09D0
Signing time: Tue 01 Jul 2025 07:00:57 +0000
Manifest this update: Tue 01 Jul 2025 07:00:57 +0000
Manifest next update: Wed 02 Jul 2025 07:00:57 +0000
Files and hashes: 1: hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl (hash: OEMtisCKkNj31Qe6lryGqRq3tmMVvpHsOzV0z+tUHLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:c9:ed:49:18:e4:a8:ee:1a:6e:97:9c:94:33:30:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f590ca62c246440583818c31f2573a0f50ffd0
Validity
Not Before: Jul 1 07:00:57 2025 GMT
Not After : Jul 2 07:00:57 2025 GMT
Subject: CN=8d28ae42ccee6b9069078c51729ac8cea22c6569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ac:f5:70:97:40:fd:84:d9:54:60:31:12:14:
c1:24:33:c4:aa:66:f1:3e:c2:dd:a7:16:b4:55:ad:
e4:b9:88:88:fe:7a:f8:5f:9c:99:0b:6d:de:da:47:
0e:e4:30:69:96:c7:80:99:76:ee:67:b9:72:ce:27:
63:5a:d0:01:32:3e:5a:60:b4:82:4b:83:b2:a4:62:
80:88:e8:4b:19:9a:19:78:b7:58:20:c4:17:07:60:
b0:13:c0:61:f3:7c:27:9f:60:29:31:62:83:b2:d6:
7f:20:b1:41:5b:f3:80:22:a6:6a:b6:f9:97:2b:34:
6e:a5:88:47:61:da:11:d9:9f:be:7b:80:b1:72:96:
69:b8:af:77:aa:e7:1c:17:90:ff:9a:dd:1a:c2:f6:
dc:76:db:17:d8:8e:3a:d8:3f:e6:e1:ff:3b:2c:7f:
50:23:45:c5:ac:4e:aa:69:34:12:27:12:01:26:12:
39:cd:16:be:eb:f5:d4:8e:fe:e9:43:b6:d0:85:de:
79:01:5c:2d:70:93:53:52:29:45:30:8b:2c:bd:cc:
23:3a:54:5f:0e:c3:7a:4e:d2:4d:3c:29:20:17:42:
fa:58:b8:6c:d7:9e:dc:ef:9f:e6:cb:71:a3:e6:1b:
d5:22:14:51:c9:90:dc:c2:a7:34:dd:3e:8f:33:9c:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:28:AE:42:CC:EE:6B:90:69:07:8C:51:72:9A:C8:CE:A2:2C:65:69
X509v3 Authority Key Identifier:
keyid:84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:b6:c1:c9:89:7b:52:6b:d0:94:46:c2:3e:6d:21:ed:78:4b:
c1:8f:e8:6e:c6:1c:f0:eb:2c:cc:29:2d:4d:55:bd:39:d1:1e:
0f:bc:d3:50:e0:a7:52:a4:81:38:c8:a9:04:2d:a3:3b:07:d9:
be:84:34:d9:dc:e3:54:e9:65:48:52:e4:a6:57:d5:d4:09:0d:
d4:b6:89:3b:39:55:3a:13:3b:42:8a:c8:1f:1d:ee:16:8e:20:
9d:91:0f:8c:89:fa:f6:1a:73:f0:9e:41:8d:d0:49:8a:7a:30:
d6:3a:8c:25:56:e1:ca:43:d1:99:68:fe:95:11:f2:db:c1:84:
77:73:59:1e:54:30:2b:7f:5c:76:66:71:5a:2c:b2:f3:f9:12:
ff:5f:d3:75:17:15:cb:42:4b:64:d2:28:32:88:c2:60:7a:b6:
1f:35:9b:cd:31:9c:87:02:79:c6:1b:f9:27:30:2b:ef:03:26:
05:ac:d3:37:fa:60:73:ee:77:bf:95:c8:93:36:cd:19:3b:7f:
d4:f3:24:7f:70:3d:7d:a9:64:e5:e6:4f:b1:c9:4b:49:f4:7f:
b4:1a:62:ca:3c:16:df:78:ba:7e:55:4c:20:50:86:9b:03:5a:
47:25:6f:28:69:85:a4:96:00:da:af:81:51:8a:a4:87:5c:ec:
19:b5:65:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfEye1JGOSo7hpul5yUMzA8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZjU5MGNhNjJjMjQ2NDQwNTgzODE4YzMxZjI1NzNhMGY1
MGZmZDAwHhcNMjUwNzAxMDcwMDU3WhcNMjUwNzAyMDcwMDU3WjAzMTEwLwYDVQQD
Eyg4ZDI4YWU0MmNjZWU2YjkwNjkwNzhjNTE3MjlhYzhjZWEyMmM2NTY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKz1cJdA/YTZVGAxEhTBJDPEqmbx
PsLdpxa0Va3kuYiI/nr4X5yZC23e2kcO5DBplseAmXbuZ7lyzidjWtABMj5aYLSC
S4OypGKAiOhLGZoZeLdYIMQXB2CwE8Bh83wnn2ApMWKDstZ/ILFBW/OAIqZqtvmX
KzRupYhHYdoR2Z++e4CxcpZpuK93quccF5D/mt0awvbcdtsX2I462D/m4f87LH9Q
I0XFrE6qaTQSJxIBJhI5zRa+6/XUjv7pQ7bQhd55AVwtcJNTUilFMIssvcwjOlRf
DsN6TtJNPCkgF0L6WLhs157c75/my3Gj5hvVIhRRyZDcwqc03T6PM5wBBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI0orkLM7muQaQeMUXKayM6iLGVpMB8GA1UdIwQY
MBaAFIT1kMpiwkZEBYOBjDHyVzoPUP/QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny81YTk5ZTgtYmI0Ni00ZmNkLWFlYTEt
OGQ1NmE3YjA5OTUzLzEvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny81YTk5ZTgtYmI0Ni00ZmNkLWFlYTEtOGQ1NmE3YjA5OTUz
LzEvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMLbByYl7
UmvQlEbCPm0h7XhLwY/obsYc8OsszCktTVW9OdEeD7zTUOCnUqSBOMipBC2jOwfZ
voQ02dzjVOllSFLkplfV1AkN1LaJOzlVOhM7QorIHx3uFo4gnZEPjIn69hpz8J5B
jdBJinow1jqMJVbhykPRmWj+lRHy28GEd3NZHlQwK39cdmZxWiyy8/kS/1/TdRcV
y0JLZNIoMojCYHq2HzWbzTGchwJ5xhv5JzAr7wMmBazTN/pgc+53v5XIkzbNGTt/
1PMkf3A9falk5eZPsclLSfR/tBpiyjwW33i6flVMIFCGmwNaRyVvKGmFpJYA2q+B
UYqkh1zsGbVlcw==
-----END CERTIFICATE-----
Generated at Tue Jul 1 15:31:30 2025 by rpki-client