Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json)
Hash identifier: WPQqat221mmsW3veypHYgZw1iwdJF0lRFbIgf+3IWtQ=
Subject key identifier: 82:FC:74:A9:22:CA:6D:5B:8D:7F:0A:F8:66:0B:1A:FB:A1:BE:44:B4
Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Certificate serial: 0199FB45B82B76229EC567E04D9AE7E39C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
Manifest number: 0B96
Signing time: Sun 19 Oct 2025 07:01:14 +0000
Manifest this update: Sun 19 Oct 2025 07:01:14 +0000
Manifest next update: Mon 20 Oct 2025 07:01:14 +0000
Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: qXHJDKTrvpoWYuZCO9I4/cc1i52BsY/r57ErWzxUfz0=)
2: uzOfDn3na_0H4FMYAvULbyI0B6c.roa (hash: uAuwh9KcLGGG4HeIvB3vA//BXxot+F12ayTtv/6riqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:b8:2b:76:22:9e:c5:67:e0:4d:9a:e7:e3:9c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Validity
Not Before: Oct 19 07:01:14 2025 GMT
Not After : Oct 20 07:01:14 2025 GMT
Subject: CN=82fc74a922ca6d5b8d7f0af8660b1afba1be44b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7f:55:68:33:ea:cd:64:8f:d3:ac:24:9a:53:
60:8e:e0:ff:be:24:17:ae:a9:af:3b:2f:3c:70:f4:
07:09:ed:f9:ba:3d:b4:03:b7:42:82:73:b5:51:00:
7a:99:a9:b9:e4:8b:5f:84:f5:db:87:2f:24:b3:23:
01:e1:51:a1:3f:ac:d4:ee:ee:13:7f:de:92:bd:64:
41:4c:a1:7c:01:57:e7:13:f0:e5:76:db:0d:15:8e:
2e:f9:49:74:1d:f6:46:3d:c5:29:a0:5a:d4:f0:d5:
40:44:35:7b:89:bd:41:3f:7f:ae:4a:de:67:b4:29:
00:c1:bd:64:3c:3b:e1:5d:25:49:b1:10:7a:3c:6d:
6a:cd:14:60:c0:c0:e4:e1:1d:64:ab:90:2f:a3:09:
4b:8c:d1:ca:24:a3:bd:c9:88:d0:9d:67:9a:1d:95:
c3:f5:11:6d:d4:a2:04:4e:0f:ca:15:ef:cb:50:a1:
4d:e1:3b:3d:a1:a4:28:30:9b:2a:5f:db:a5:d5:dd:
44:ec:f7:5a:cf:df:7c:5e:03:e8:40:cb:b1:01:6f:
c6:cf:7f:4a:26:72:a6:15:b4:d6:11:c1:78:e1:e9:
1f:61:8d:27:b6:13:ef:ff:78:8b:aa:38:ae:16:19:
a1:2a:f1:19:f2:6c:3d:9e:38:7b:4c:e8:7a:da:06:
58:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FC:74:A9:22:CA:6D:5B:8D:7F:0A:F8:66:0B:1A:FB:A1:BE:44:B4
X509v3 Authority Key Identifier:
keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:06:b8:c4:f0:f0:a5:f9:ec:2b:f9:09:08:13:c4:1d:e2:5b:
6a:e3:2b:6d:76:d1:cc:ae:44:c7:a6:89:3a:2f:82:67:3e:5a:
f6:81:b6:a0:33:2d:11:c7:94:40:ca:8f:2d:b1:43:e6:6a:0b:
91:28:bb:d5:76:79:47:b7:a9:19:40:a1:46:9a:01:f4:c6:ff:
14:eb:0e:f1:b1:de:9e:18:62:d8:4e:a3:b2:39:5a:50:b7:e4:
68:2e:6d:56:5e:bf:e4:79:36:a1:58:a3:4a:29:40:83:63:89:
29:54:1e:77:1f:3a:b8:47:84:0d:58:59:62:b5:06:86:e2:57:
81:1c:8c:cc:18:3c:0f:61:83:c3:93:27:ba:d0:b8:fc:4a:6b:
57:57:bd:b8:76:99:bd:60:03:6c:4c:57:a2:75:e7:f8:44:ba:
ec:4b:b3:5c:16:43:ac:6d:f2:9c:cf:cd:dd:4a:8d:f6:03:ec:
2d:d1:a7:67:86:ae:b0:f9:b3:1d:63:6b:8b:bf:58:10:9b:d7:
e6:e7:f1:fd:7b:c0:c5:72:3c:26:4a:67:be:3d:70:5b:c7:bf:
c9:ac:f1:8c:a0:82:69:6b:26:d7:56:c6:32:4e:57:55:ac:22:
70:31:30:2b:94:7d:98:a6:af:1a:18:83:d4:0f:6f:72:cc:af:
55:af:e6:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RbgrdiKexWfgTZrn45wCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0NzQwNmY0OTgyYjYxODI0YzhmZDQ0YjgxZWRlMGE5OWZj
NzI0ZTAwHhcNMjUxMDE5MDcwMTE0WhcNMjUxMDIwMDcwMTE0WjAzMTEwLwYDVQQD
Eyg4MmZjNzRhOTIyY2E2ZDViOGQ3ZjBhZjg2NjBiMWFmYmExYmU0NGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6X9VaDPqzWSP06wkmlNgjuD/viQX
rqmvOy88cPQHCe35uj20A7dCgnO1UQB6mam55ItfhPXbhy8ksyMB4VGhP6zU7u4T
f96SvWRBTKF8AVfnE/DldtsNFY4u+Ul0HfZGPcUpoFrU8NVARDV7ib1BP3+uSt5n
tCkAwb1kPDvhXSVJsRB6PG1qzRRgwMDk4R1kq5AvowlLjNHKJKO9yYjQnWeaHZXD
9RFt1KIETg/KFe/LUKFN4Ts9oaQoMJsqX9ul1d1E7Pdaz998XgPoQMuxAW/Gz39K
JnKmFbTWEcF44ekfYY0nthPv/3iLqjiuFhmhKvEZ8mw9njh7TOh62gZYXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIL8dKkiym1bjX8K+GYLGvuhvkS0MB8GA1UdIwQY
MBaAFOR0BvSYK2GCTI/US4Ht4KmfxyTgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUt
NzExOGY4Mzg0Yzc3LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUtNzExOGY4Mzg0Yzc3
LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZQa4xPDw
pfnsK/kJCBPEHeJbauMrbXbRzK5Ex6aJOi+CZz5a9oG2oDMtEceUQMqPLbFD5moL
kSi71XZ5R7epGUChRpoB9Mb/FOsO8bHenhhi2E6jsjlaULfkaC5tVl6/5Hk2oVij
SilAg2OJKVQedx86uEeEDVhZYrUGhuJXgRyMzBg8D2GDw5MnutC4/EprV1e9uHaZ
vWADbExXonXn+ES67EuzXBZDrG3ynM/N3UqN9gPsLdGnZ4ausPmzHWNri79YEJvX
5ufx/XvAxXI8Jkpnvj1wW8e/yazxjKCCaWsm11bGMk5XVawicDEwK5R9mKavGhiD
1A9vcsyvVa/mjA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 12:57:57 2025 by rpki-client