
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
File: hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft (raw, json)
Hash identifier: mNfj1vuwVm7Hltv6kkeCh66KATCUhyEP7/9fSeSBHU8=
Subject key identifier: 76:4C:6F:04:F4:B4:DB:AC:E1:C3:7F:87:75:DC:29:AD:F2:D4:BD:FB
Authority key identifier: 85:02:8F:90:14:28:3B:34:9D:16:CA:FD:C9:4B:7F:5E:F1:53:0E:4D
Certificate issuer: /CN=85028f9014283b349d16cafdc94b7f5ef1530e4d
Certificate serial: 0199FB45E84C3C2DE0E35221AF7F1CA6A17D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQKPkBQoOzSdFsr9yUt_XvFTDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
Manifest number: 0478
Signing time: Sun 19 Oct 2025 07:01:26 +0000
Manifest this update: Sun 19 Oct 2025 07:01:26 +0000
Manifest next update: Mon 20 Oct 2025 07:01:26 +0000
Files and hashes: 1: hQKPkBQoOzSdFsr9yUt_XvFTDk0.crl (hash: CoNZMc1DKAnvy24+FUlmw3x19ea+3lx1uldo/Ig2Ymg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQKPkBQoOzSdFsr9yUt_XvFTDk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:e8:4c:3c:2d:e0:e3:52:21:af:7f:1c:a6:a1:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85028f9014283b349d16cafdc94b7f5ef1530e4d
Validity
Not Before: Oct 19 07:01:26 2025 GMT
Not After : Oct 20 07:01:26 2025 GMT
Subject: CN=764c6f04f4b4dbace1c37f8775dc29adf2d4bdfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d1:e9:84:76:db:f8:ea:51:3e:e0:41:d7:6e:
8a:6d:e5:c0:1a:af:b0:87:a7:8e:a7:dd:93:b9:40:
e1:92:8f:d5:85:d9:46:11:fd:5b:61:8e:1b:db:f4:
72:b8:0b:9b:d1:e5:34:0b:09:ca:4b:36:91:77:1e:
f3:72:97:30:84:78:e7:b0:0f:29:a1:e8:7e:44:54:
f0:3b:eb:71:ac:b3:3c:62:c5:0f:19:22:60:41:d5:
b7:75:5b:28:43:9b:6d:92:03:ea:0f:a0:1e:eb:90:
3c:09:17:83:9c:80:a3:a5:01:7a:ca:02:7f:0f:b3:
1e:2c:c7:21:2a:7a:7f:14:70:b0:69:cc:a4:6d:d5:
c2:f0:7c:6d:24:d7:4d:c3:c0:99:ee:2a:bf:f0:1a:
cf:62:78:ad:63:40:5c:5b:be:7a:ed:f1:34:96:4a:
f4:57:dd:c4:99:bc:1f:ee:66:b1:b8:f0:66:4a:97:
2b:b1:a2:68:55:8b:0d:d1:82:4f:f2:d1:54:08:98:
cd:8f:d1:26:fe:f7:c3:6b:1b:90:98:f1:5c:d1:a0:
8c:30:3c:4f:5a:49:28:5f:ca:8b:a5:a8:75:4f:65:
33:a2:7c:50:3a:c6:8d:2f:f9:8a:c0:b4:2c:6f:f2:
e3:0d:74:5b:23:f2:a8:bb:22:f3:85:08:fc:97:e6:
67:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4C:6F:04:F4:B4:DB:AC:E1:C3:7F:87:75:DC:29:AD:F2:D4:BD:FB
X509v3 Authority Key Identifier:
keyid:85:02:8F:90:14:28:3B:34:9D:16:CA:FD:C9:4B:7F:5E:F1:53:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQKPkBQoOzSdFsr9yUt_XvFTDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e70fce-9612-4047-92e1-8639e5da97e7/1/hQKPkBQoOzSdFsr9yUt_XvFTDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:16:24:87:03:38:18:e4:41:d3:12:5b:9e:3a:f6:ca:cb:d2:
44:8c:e2:ff:6d:34:14:1f:34:dd:fe:ac:4e:50:d5:9f:ee:b3:
24:3e:f0:fa:13:46:1b:a0:1e:3d:d1:c2:7b:2e:e7:c4:fc:4c:
7f:38:d9:72:7b:ff:8b:72:05:36:79:d2:dc:96:2a:8c:fd:ad:
6d:ca:1a:3f:4f:e5:20:ba:18:39:f3:36:01:a2:3d:a4:8a:9f:
98:64:b0:54:b0:64:02:8e:b5:4e:72:35:60:51:24:d4:dc:b6:
b4:6e:24:58:09:9d:dd:fd:3a:c9:31:a8:fe:0c:18:54:38:64:
be:ae:f5:93:be:9a:5d:8c:c3:d8:4b:a1:7d:6c:d1:cd:6c:2f:
6c:d1:5f:1a:8f:01:68:a7:a4:b1:8b:82:20:e3:04:97:4d:72:
80:0c:e5:d4:54:d5:7a:a5:ef:87:23:47:83:71:a0:76:ae:a8:
c6:77:46:ec:47:e4:0d:1d:67:70:8c:2d:46:ae:a8:03:86:b5:
db:f0:1b:35:86:9b:1b:ec:17:6c:1d:ba:b7:a8:57:4b:2e:a0:
26:11:89:65:5b:ad:3d:a3:90:21:05:9e:0f:44:00:d3:4a:12:
ea:31:58:fd:73:3e:f8:a8:be:ce:66:a4:93:74:8b:50:bc:53:
5e:4c:de:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RehMPC3g41Ihr38cpqF9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MDI4ZjkwMTQyODNiMzQ5ZDE2Y2FmZGM5NGI3ZjVlZjE1
MzBlNGQwHhcNMjUxMDE5MDcwMTI2WhcNMjUxMDIwMDcwMTI2WjAzMTEwLwYDVQQD
Eyg3NjRjNmYwNGY0YjRkYmFjZTFjMzdmODc3NWRjMjlhZGYyZDRiZGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNHphHbb+OpRPuBB126KbeXAGq+w
h6eOp92TuUDhko/VhdlGEf1bYY4b2/RyuAub0eU0CwnKSzaRdx7zcpcwhHjnsA8p
oeh+RFTwO+txrLM8YsUPGSJgQdW3dVsoQ5ttkgPqD6Ae65A8CReDnICjpQF6ygJ/
D7MeLMchKnp/FHCwacykbdXC8HxtJNdNw8CZ7iq/8BrPYnitY0BcW7567fE0lkr0
V93Embwf7maxuPBmSpcrsaJoVYsN0YJP8tFUCJjNj9Em/vfDaxuQmPFc0aCMMDxP
WkkoX8qLpah1T2UzonxQOsaNL/mKwLQsb/LjDXRbI/KouyLzhQj8l+ZnuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZMbwT0tNus4cN/h3XcKa3y1L37MB8GA1UdIwQY
MBaAFIUCj5AUKDs0nRbK/clLf17xUw5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFFLUGtCUW9PelNkRnNyOXlVdF9YdkZURGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9lNzBmY2UtOTYxMi00MDQ3LTkyZTEt
ODYzOWU1ZGE5N2U3LzEvaFFLUGtCUW9PelNkRnNyOXlVdF9YdkZURGswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9lNzBmY2UtOTYxMi00MDQ3LTkyZTEtODYzOWU1ZGE5N2U3
LzEvaFFLUGtCUW9PelNkRnNyOXlVdF9YdkZURGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkxYkhwM4
GORB0xJbnjr2ysvSRIzi/200FB803f6sTlDVn+6zJD7w+hNGG6AePdHCey7nxPxM
fzjZcnv/i3IFNnnS3JYqjP2tbcoaP0/lILoYOfM2AaI9pIqfmGSwVLBkAo61TnI1
YFEk1Ny2tG4kWAmd3f06yTGo/gwYVDhkvq71k76aXYzD2EuhfWzRzWwvbNFfGo8B
aKeksYuCIOMEl01ygAzl1FTVeqXvhyNHg3Ggdq6oxndG7EfkDR1ncIwtRq6oA4a1
2/AbNYabG+wXbB26t6hXSy6gJhGJZVutPaOQIQWeD0QA00oS6jFY/XM++Ki+zmak
k3SLULxTXkzezg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:01 2025 by rpki-client