Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
File: HKrZOQiq2NJG62n35mqnDeW9Whc.mft (raw, json)
Hash identifier: mE+8XzHpikN/aDV8c6t6vFbSSAbevmJB4vdfvn5PPDw=
Subject key identifier: 5A:3E:8B:52:4D:8E:84:FD:19:8F:A1:B7:1D:D6:A7:71:6E:9A:FD:36
Authority key identifier: 1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
Certificate issuer: /CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Certificate serial: 0199FE0FCD7735ED8E47CCC796D814994BC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
Manifest number: 0DC8
Signing time: Sun 19 Oct 2025 20:01:12 +0000
Manifest this update: Sun 19 Oct 2025 20:01:12 +0000
Manifest next update: Mon 20 Oct 2025 20:01:12 +0000
Files and hashes: 1: HKrZOQiq2NJG62n35mqnDeW9Whc.crl (hash: vJl1qArtyGUa7VxCL6Yp4Hdyv2grZQaacao2G4AZNhQ=)
2: ackszuiJCTUVf3NL6BGlMWZR6mU.roa (hash: eS/ev9znkjBG3HaRk+tKGqjX3/CUPsNsHqj4Rs2K9+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:cd:77:35:ed:8e:47:cc:c7:96:d8:14:99:4b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caad93908aad8d246eb69f7e66aa70de5bd5a17
Validity
Not Before: Oct 19 20:01:12 2025 GMT
Not After : Oct 20 20:01:12 2025 GMT
Subject: CN=5a3e8b524d8e84fd198fa1b71dd6a7716e9afd36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:7f:3c:f8:c0:96:b1:ce:56:e9:41:34:ee:
b0:2e:6f:9e:73:1e:12:3b:16:a2:f8:bd:53:28:ce:
be:07:79:ca:88:07:60:55:bd:56:19:b0:01:33:34:
11:61:bc:58:3b:12:b1:9e:c7:3a:d0:d4:0e:ec:bd:
80:89:6b:7f:0a:6a:2f:f7:57:24:de:05:c7:c5:1d:
f3:20:b4:07:ab:7d:39:3e:7f:d5:0a:61:99:2e:35:
54:8c:e8:90:f7:1f:05:83:b4:27:04:fb:17:7c:b6:
79:c1:c6:44:73:38:36:cd:5f:cf:e9:55:2d:15:0c:
91:c9:08:35:43:11:79:68:fe:ea:f8:dc:03:f2:17:
19:dd:d2:eb:d3:ad:cc:56:5f:39:86:a6:11:84:ed:
02:b3:1f:4a:e6:47:c2:ac:23:13:0e:38:f3:42:7c:
b9:04:50:3d:39:1f:7c:24:fc:8c:e7:3a:a6:c6:79:
7e:e1:ed:2f:1e:8d:53:60:99:43:1b:94:3a:2d:9e:
38:0a:06:b5:88:71:a2:f5:2f:d2:a3:14:bc:64:fc:
ac:96:17:c9:e4:33:de:b2:47:fc:1d:5f:ed:e8:8b:
fe:1c:6b:2e:f9:31:c1:37:6f:6e:ed:e3:1b:ab:e4:
f4:32:cb:cf:97:c5:10:e2:b4:9d:d0:22:2f:77:ee:
75:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3E:8B:52:4D:8E:84:FD:19:8F:A1:B7:1D:D6:A7:71:6E:9A:FD:36
X509v3 Authority Key Identifier:
keyid:1C:AA:D9:39:08:AA:D8:D2:46:EB:69:F7:E6:6A:A7:0D:E5:BD:5A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKrZOQiq2NJG62n35mqnDeW9Whc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/abb6ca-1a11-4ba5-9ee3-a798bdc7311f/1/HKrZOQiq2NJG62n35mqnDeW9Whc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:95:d6:1a:77:08:35:93:33:2e:c1:14:f5:5e:60:7d:8d:3b:
75:3d:f0:c9:38:02:f4:b7:b2:b0:02:a9:3e:b1:73:67:35:33:
1d:85:d1:19:01:5d:d5:84:bb:93:ae:5b:2e:2a:0d:e5:da:3c:
97:b7:55:4f:ef:6f:c9:c3:ef:36:f8:99:80:b8:93:6e:07:f2:
37:03:e2:18:a5:7b:28:e9:ec:3f:39:b4:54:84:b6:58:c3:d1:
22:a7:08:cf:41:11:e7:79:e2:e7:29:ea:e8:21:bd:25:9a:37:
96:66:6c:7e:71:d0:87:14:e9:67:f8:92:32:88:91:5e:61:fa:
b6:a4:dd:ee:f8:fb:5b:79:6b:ab:6e:f2:d7:6e:46:81:f1:19:
ce:98:5c:3c:f6:9a:f4:93:8e:d8:d9:ef:03:54:a9:74:73:74:
1c:df:d9:cc:3d:56:82:d8:da:86:e7:d3:93:fe:79:f4:16:ec:
7a:fb:21:06:b1:78:14:81:a8:f1:b5:21:ea:f5:95:04:39:dd:
3a:fb:12:49:28:84:39:27:b4:da:66:73:70:dc:77:1b:63:bb:
73:e6:b9:64:cc:66:b5:b8:7b:e0:6f:3b:7e:f4:06:bf:5e:bf:
aa:6a:0f:4a:1b:54:89:f4:59:79:ca:74:0f:00:0c:06:7a:3b:
2a:b9:6b:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+D813Ne2OR8zHltgUmUvAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYWFkOTM5MDhhYWQ4ZDI0NmViNjlmN2U2NmFhNzBkZTVi
ZDVhMTcwHhcNMjUxMDE5MjAwMTEyWhcNMjUxMDIwMjAwMTEyWjAzMTEwLwYDVQQD
Eyg1YTNlOGI1MjRkOGU4NGZkMTk4ZmExYjcxZGQ2YTc3MTZlOWFmZDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAneF/PPjAlrHOVulBNO6wLm+ecx4S
Oxai+L1TKM6+B3nKiAdgVb1WGbABMzQRYbxYOxKxnsc60NQO7L2AiWt/Cmov91ck
3gXHxR3zILQHq305Pn/VCmGZLjVUjOiQ9x8Fg7QnBPsXfLZ5wcZEczg2zV/P6VUt
FQyRyQg1QxF5aP7q+NwD8hcZ3dLr063MVl85hqYRhO0Csx9K5kfCrCMTDjjzQny5
BFA9OR98JPyM5zqmxnl+4e0vHo1TYJlDG5Q6LZ44Cga1iHGi9S/SoxS8ZPyslhfJ
5DPeskf8HV/t6Iv+HGsu+THBN29u7eMbq+T0MsvPl8UQ4rSd0CIvd+51VQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFo+i1JNjoT9GY+htx3Wp3Fumv02MB8GA1UdIwQY
MBaAFByq2TkIqtjSRutp9+Zqpw3lvVoXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEtyWk9RaXEyTkpHNjJuMzVtcW5EZVc5V2hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9hYmI2Y2EtMWExMS00YmE1LTllZTMt
YTc5OGJkYzczMTFmLzEvSEtyWk9RaXEyTkpHNjJuMzVtcW5EZVc5V2hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9hYmI2Y2EtMWExMS00YmE1LTllZTMtYTc5OGJkYzczMTFm
LzEvSEtyWk9RaXEyTkpHNjJuMzVtcW5EZVc5V2hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkZXWGncI
NZMzLsEU9V5gfY07dT3wyTgC9LeysAKpPrFzZzUzHYXRGQFd1YS7k65bLioN5do8
l7dVT+9vycPvNviZgLiTbgfyNwPiGKV7KOnsPzm0VIS2WMPRIqcIz0ER53ni5ynq
6CG9JZo3lmZsfnHQhxTpZ/iSMoiRXmH6tqTd7vj7W3lrq27y125GgfEZzphcPPaa
9JOO2NnvA1SpdHN0HN/ZzD1WgtjahufTk/559BbsevshBrF4FIGo8bUh6vWVBDnd
OvsSSSiEOSe02mZzcNx3G2O7c+a5ZMxmtbh74G87fvQGv16/qmoPShtUifRZecp0
DwAMBno7KrlrMg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:19:48 2025 by rpki-client