Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
File: HyAOBxBBRee6mHap0-55Kgc2TTY.mft (raw, json)
Hash identifier: w59ONAgsuXA1PfNjehtGFzjh6UaGNEwsp6nTYAavDe8=
Subject key identifier: D3:72:26:51:AC:C5:6A:CA:0E:5C:53:6C:65:E3:DE:AB:23:67:2E:35
Authority key identifier: 1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
Certificate issuer: /CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Certificate serial: 019883561660C7029D72B566C461085A9675
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
Manifest number: 0345
Signing time: Thu 07 Aug 2025 07:01:53 +0000
Manifest this update: Thu 07 Aug 2025 07:01:53 +0000
Manifest next update: Fri 08 Aug 2025 07:01:53 +0000
Files and hashes: 1: HyAOBxBBRee6mHap0-55Kgc2TTY.crl (hash: om80FqI3FWQyNP6VziySW+SQM0/tuX5M1YSksEQoI0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 07:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:56:16:60:c7:02:9d:72:b5:66:c4:61:08:5a:96:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Validity
Not Before: Aug 7 07:01:53 2025 GMT
Not After : Aug 8 07:01:53 2025 GMT
Subject: CN=d3722651acc56aca0e5c536c65e3deab23672e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6c:d4:3e:0c:57:26:e3:a7:9f:5c:e9:5f:27:
e9:0d:14:19:91:01:12:7b:e8:8f:74:98:30:40:90:
d5:9d:31:e9:13:ba:43:78:82:04:dd:02:e8:08:01:
fd:e5:ce:26:30:71:d0:e7:fa:bf:d4:41:57:19:95:
51:1f:00:62:ef:9c:08:f4:a4:04:ad:70:81:60:a0:
15:bd:45:bf:b0:c4:4d:4f:6e:f2:15:8a:60:87:c5:
dc:e0:8a:19:43:bf:5c:58:51:6b:7c:7d:11:e3:ea:
8e:9a:4b:2f:5a:22:8b:7a:c6:b9:8f:1d:01:0b:c2:
ea:8c:eb:f3:0a:b4:12:6b:7a:bb:d0:82:03:6e:43:
75:52:6e:e4:0d:56:0e:9a:75:bd:eb:42:86:5e:75:
dd:e4:9e:71:15:bf:99:b8:fa:c6:9b:0e:f8:f2:79:
cf:be:00:6d:18:c8:dc:76:91:df:58:34:af:82:5e:
ff:74:c7:80:32:b7:71:06:53:3e:b7:4c:e4:6a:e8:
d8:79:28:1d:aa:00:44:90:c1:60:b1:4a:fc:b7:2c:
ac:63:1d:8f:b3:c9:3d:eb:5e:74:b0:b1:d4:14:b2:
d2:69:2c:a1:b5:e5:2a:ad:1b:35:46:b0:2d:26:0f:
40:81:e2:ac:89:4c:ef:54:3f:4c:49:a0:92:74:69:
36:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:72:26:51:AC:C5:6A:CA:0E:5C:53:6C:65:E3:DE:AB:23:67:2E:35
X509v3 Authority Key Identifier:
keyid:1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:65:f3:35:0a:7f:f5:ee:d5:06:ab:30:77:d7:85:a4:8d:fb:
5a:9c:ec:77:d2:1e:e3:92:00:55:a0:4a:89:3f:9b:ca:bf:bf:
fb:04:b9:45:e8:ef:49:7c:82:b7:66:f8:72:fe:94:55:dd:45:
1b:d1:9d:14:b7:12:2b:ba:be:b1:56:df:79:e1:83:c3:76:06:
36:6d:e8:f4:a9:b0:7b:6a:da:3a:18:6d:98:8b:1b:9d:bd:29:
7b:3e:f0:6c:a3:71:09:26:80:44:65:7c:d0:2d:7e:74:84:99:
e0:a4:29:90:c4:d1:b9:24:d8:9a:f0:3c:fe:49:73:ab:c5:55:
11:d0:1c:c5:43:fc:c8:9a:d6:4e:2f:12:91:fb:7b:f1:32:9b:
1f:98:7f:78:e5:93:8e:2c:0e:be:44:0b:38:f4:c0:2d:25:26:
f3:c3:04:fd:89:c7:89:d9:64:bc:5c:e0:2a:03:83:d6:58:20:
e7:86:4b:59:f3:29:00:6c:3f:74:c0:d9:7b:9e:8e:3a:0a:88:
46:d4:ac:7b:eb:af:36:0e:45:a4:cf:d8:9b:60:69:aa:6a:e2:
3b:55:18:c4:71:03:cb:fd:7b:31:bb:c8:59:2c:f5:45:ee:4d:
3b:0d:20:59:5a:f2:a3:26:5d:58:0f:55:50:c5:bf:d8:1d:f3:
df:65:93:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiDVhZgxwKdcrVmxGEIWpZ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjAwZTA3MTA0MTQ1ZTdiYTk4NzZhOWQzZWU3OTJhMDcz
NjRkMzYwHhcNMjUwODA3MDcwMTUzWhcNMjUwODA4MDcwMTUzWjAzMTEwLwYDVQQD
EyhkMzcyMjY1MWFjYzU2YWNhMGU1YzUzNmM2NWUzZGVhYjIzNjcyZTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWzUPgxXJuOnn1zpXyfpDRQZkQES
e+iPdJgwQJDVnTHpE7pDeIIE3QLoCAH95c4mMHHQ5/q/1EFXGZVRHwBi75wI9KQE
rXCBYKAVvUW/sMRNT27yFYpgh8Xc4IoZQ79cWFFrfH0R4+qOmksvWiKLesa5jx0B
C8LqjOvzCrQSa3q70IIDbkN1Um7kDVYOmnW960KGXnXd5J5xFb+ZuPrGmw748nnP
vgBtGMjcdpHfWDSvgl7/dMeAMrdxBlM+t0zkaujYeSgdqgBEkMFgsUr8tyysYx2P
s8k96150sLHUFLLSaSyhteUqrRs1RrAtJg9AgeKsiUzvVD9MSaCSdGk2+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNNyJlGsxWrKDlxTbGXj3qsjZy41MB8GA1UdIwQY
MBaAFB8gDgcQQUXnuph2qdPueSoHNk02MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUt
Nzc1YTdlYzFjYTMzLzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUtNzc1YTdlYzFjYTMz
LzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiWXzNQp/
9e7VBqswd9eFpI37Wpzsd9Ie45IAVaBKiT+byr+/+wS5RejvSXyCt2b4cv6UVd1F
G9GdFLcSK7q+sVbfeeGDw3YGNm3o9Kmwe2raOhhtmIsbnb0pez7wbKNxCSaARGV8
0C1+dISZ4KQpkMTRuSTYmvA8/klzq8VVEdAcxUP8yJrWTi8Skft78TKbH5h/eOWT
jiwOvkQLOPTALSUm88ME/YnHidlkvFzgKgOD1lgg54ZLWfMpAGw/dMDZe56OOgqI
RtSse+uvNg5FpM/Ym2BpqmriO1UYxHEDy/17MbvIWSz1Re5NOw0gWVryoyZdWA9V
UMW/2B3z32WTMw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 11:07:13 2025 by rpki-client