Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: e+9qHCgXZ6JXM5xZOwi0y9M2ha0yKeKOs1pXfYG68ms=
Subject key identifier: 92:AD:26:66:B7:F1:CB:89:84:21:3D:4B:BC:43:20:4A:BF:4E:52:05
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 0199FC584680BBF409029C40CE61CD4A522E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0A7F
Signing time: Sun 19 Oct 2025 12:01:07 +0000
Manifest this update: Sun 19 Oct 2025 12:01:07 +0000
Manifest next update: Mon 20 Oct 2025 12:01:07 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: Z9dDIYMfSTyumgneYxWPvGgRYf0SR3+P7ugxX+514BM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:46:80:bb:f4:09:02:9c:40:ce:61:cd:4a:52:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Oct 19 12:01:07 2025 GMT
Not After : Oct 20 12:01:07 2025 GMT
Subject: CN=92ad2666b7f1cb8984213d4bbc43204abf4e5205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:0b:e3:80:53:02:6a:25:d4:97:b8:cc:1c:6b:
fd:86:a9:06:fb:11:b2:f7:31:13:1f:fd:f5:73:93:
6b:ad:52:8a:a0:2c:66:50:e1:6b:18:16:e2:6f:56:
4d:51:7a:f5:ae:70:bb:b5:9a:f7:a0:b2:89:e2:18:
73:ca:68:46:74:65:ab:21:34:0c:4d:5c:93:de:72:
e0:ac:76:78:a3:01:e2:b4:dc:2c:8e:99:5d:03:c2:
22:5f:1c:e1:ea:16:52:8b:dc:66:e5:47:c7:50:1e:
41:75:33:aa:f5:71:64:38:16:b9:c0:15:f2:59:fa:
67:f1:e9:b2:1e:8b:8e:17:2b:cc:b6:7b:3f:98:2c:
e6:b8:41:5a:13:a6:94:9d:f8:7f:95:b5:b6:fb:0b:
25:ed:a2:16:a9:13:29:fb:d2:e6:a5:4a:e2:92:07:
c1:77:2a:fe:de:d6:f3:37:f0:a0:7d:49:f0:a2:b0:
d2:1d:94:6d:ae:8a:ca:e6:f1:f9:26:fe:b8:cb:57:
49:b4:fd:ba:40:61:c5:59:05:43:a0:25:c1:14:d3:
e7:51:dd:80:be:39:99:2a:7c:9f:29:74:49:ac:4d:
f3:31:44:04:e3:c8:eb:a7:2e:66:40:35:19:cc:59:
c3:d9:65:c5:2e:b0:38:2f:96:2f:b9:c7:a2:98:1c:
e4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:AD:26:66:B7:F1:CB:89:84:21:3D:4B:BC:43:20:4A:BF:4E:52:05
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:59:61:bb:e3:f0:9d:68:56:24:2e:1c:f5:91:d3:8c:b8:a0:
a2:f7:70:93:e5:1a:6c:63:17:0a:c8:a1:71:f8:dc:fc:53:b2:
40:5c:58:a7:1c:82:ad:b9:70:d2:16:cf:5f:bb:8b:1b:f0:38:
d3:b6:f2:f2:3c:25:01:94:40:d3:f7:77:ce:3d:53:ed:a1:ea:
79:ab:b7:74:51:be:e2:86:86:75:7c:79:6b:58:26:e8:de:2e:
3f:b3:f2:35:c9:83:bf:b6:bb:bc:07:b2:40:97:14:ce:cf:1a:
ba:9e:0f:3e:b4:24:a4:a5:9b:fa:a2:5f:b6:31:d9:63:22:b5:
f7:06:d0:a0:1b:90:f7:e8:c5:33:2f:40:7e:a4:1e:98:ef:95:
59:9d:7b:c5:4a:65:d5:ef:b4:14:b9:c9:01:e6:18:ee:30:34:
8a:91:d9:c3:6e:e7:b2:f6:d4:97:c9:0a:c0:14:8a:c6:d9:40:
af:3a:05:eb:96:64:98:74:15:1a:ee:ea:56:77:aa:f7:0d:19:
fe:43:e8:55:ed:76:c0:b6:41:b4:22:ea:00:33:3f:d0:dc:a5:
73:3b:d4:db:db:83:65:c5:d5:fb:af:5a:1b:24:a8:47:c4:f9:
bd:83:22:b4:52:ac:dc:f1:7a:a2:08:e4:85:29:13:d7:47:4b:
c4:67:0b:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WEaAu/QJApxAzmHNSlIuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NDFlN2Y2NzgyM2VlZjUyYTE5ZmUxZGM4ZTBlNmE3ZjQx
Yzk0MzMwHhcNMjUxMDE5MTIwMTA3WhcNMjUxMDIwMTIwMTA3WjAzMTEwLwYDVQQD
Eyg5MmFkMjY2NmI3ZjFjYjg5ODQyMTNkNGJiYzQzMjA0YWJmNGU1MjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/AvjgFMCaiXUl7jMHGv9hqkG+xGy
9zETH/31c5NrrVKKoCxmUOFrGBbib1ZNUXr1rnC7tZr3oLKJ4hhzymhGdGWrITQM
TVyT3nLgrHZ4owHitNwsjpldA8IiXxzh6hZSi9xm5UfHUB5BdTOq9XFkOBa5wBXy
Wfpn8emyHouOFyvMtns/mCzmuEFaE6aUnfh/lbW2+wsl7aIWqRMp+9LmpUrikgfB
dyr+3tbzN/CgfUnworDSHZRtrorK5vH5Jv64y1dJtP26QGHFWQVDoCXBFNPnUd2A
vjmZKnyfKXRJrE3zMUQE48jrpy5mQDUZzFnD2WXFLrA4L5YvuceimBzkLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJKtJma38cuJhCE9S7xDIEq/TlIFMB8GA1UdIwQY
MBaAFKZB5/Z4I+71Khn+Hcjg5qf0HJQzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wYWMyMWMtYzcyYi00NzE5LWEwODUt
MDc4OGY3OTIxODUyLzEvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8wYWMyMWMtYzcyYi00NzE5LWEwODUtMDc4OGY3OTIxODUy
LzEvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcllhu+Pw
nWhWJC4c9ZHTjLigovdwk+UabGMXCsihcfjc/FOyQFxYpxyCrblw0hbPX7uLG/A4
07by8jwlAZRA0/d3zj1T7aHqeau3dFG+4oaGdXx5a1gm6N4uP7PyNcmDv7a7vAey
QJcUzs8aup4PPrQkpKWb+qJftjHZYyK19wbQoBuQ9+jFMy9AfqQemO+VWZ17xUpl
1e+0FLnJAeYY7jA0ipHZw27nsvbUl8kKwBSKxtlArzoF65ZkmHQVGu7qVneq9w0Z
/kPoVe12wLZBtCLqADM/0NylczvU29uDZcXV+69aGySoR8T5vYMitFKs3PF6ogjk
hSkT10dLxGcLGA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:43 2025 by rpki-client