Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: DnLoj/BbFa5U90d2CilLHbQAZoqZEK7xXLPo/xw/SxI=
Subject key identifier: AF:CE:46:0C:B5:08:AA:20:08:EB:8A:32:55:3E:A9:1C:53:68:5A:0E
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 019874194A22ACCF6376CEE28095C39ED7FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0B36
Signing time: Mon 04 Aug 2025 08:01:11 +0000
Manifest this update: Mon 04 Aug 2025 08:01:11 +0000
Manifest next update: Tue 05 Aug 2025 08:01:11 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: yT1uXlVl6ijeN1c1/09Kb9SjFCWhnukorXPbS7suFLM=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:19:4a:22:ac:cf:63:76:ce:e2:80:95:c3:9e:d7:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Aug 4 08:01:11 2025 GMT
Not After : Aug 5 08:01:11 2025 GMT
Subject: CN=afce460cb508aa2008eb8a32553ea91c53685a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e2:0b:23:2f:6c:94:c8:a1:94:16:26:e7:f0:
82:ad:d9:29:33:8c:0d:71:31:e4:a3:fb:ac:a8:12:
41:0f:e1:7a:1f:60:1f:04:cf:e5:eb:44:b2:58:3c:
f3:1c:5e:25:08:4a:7d:f7:7f:61:36:c5:8c:25:13:
73:41:a8:33:c7:fa:87:37:e3:eb:76:ed:de:33:c5:
cd:46:69:ad:5c:92:59:29:28:ce:e2:52:99:e7:b4:
7d:8f:12:c1:65:09:cf:f7:00:3a:08:2f:72:20:97:
11:0d:42:b2:0c:9a:26:64:f3:af:0f:8a:71:92:d7:
23:09:b8:d4:02:9a:90:71:a1:eb:66:cb:c9:8a:ed:
bb:5a:fc:3e:1e:7c:d6:c6:77:cf:ac:44:87:c1:3c:
9e:f5:51:0d:a6:97:08:8b:47:f4:f7:e3:2e:33:1f:
b4:82:26:55:bb:a5:61:5f:a9:86:b4:35:cc:31:b3:
21:b6:ef:74:25:c3:38:dc:c8:da:7b:aa:ba:6b:90:
8d:d7:9a:36:e2:77:58:ae:89:8d:4c:09:85:37:73:
be:ff:fc:0b:ca:2f:df:95:66:10:4d:b7:32:38:91:
7e:91:6c:cf:d1:26:b9:72:16:92:92:2f:2b:29:9d:
ff:4f:55:00:88:d1:4d:eb:05:4b:33:f3:10:21:fa:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CE:46:0C:B5:08:AA:20:08:EB:8A:32:55:3E:A9:1C:53:68:5A:0E
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:91:28:a7:93:27:b3:11:6e:48:9d:24:3d:67:70:b3:87:43:
d8:e2:5a:fd:68:4b:32:99:1b:0e:c2:3e:a6:5a:f2:63:63:67:
61:0e:4d:1b:90:a3:b8:c0:94:0b:83:9d:41:39:b4:6b:dc:4c:
04:93:67:69:64:cc:eb:ae:3f:6a:f4:95:24:c9:5e:c3:a5:c7:
2b:9d:a2:d9:f9:34:76:37:79:57:1f:18:a6:1b:74:f5:1c:65:
23:51:63:f1:58:d8:d5:8a:d1:a4:b4:7c:c1:27:ef:cd:4f:a4:
87:d0:51:f3:38:df:cb:35:f8:f7:a7:72:54:55:b3:ce:33:94:
b3:29:6f:f9:7f:ac:a1:a9:f9:0e:47:d9:22:07:e9:51:13:48:
ec:f5:b4:aa:3a:43:7f:72:ac:97:c3:38:90:84:ce:f4:d3:dd:
3c:7c:88:90:01:29:97:2f:c6:c4:e5:b4:b1:6e:87:ad:0b:65:
d3:13:f0:66:01:07:52:a2:08:5e:58:63:a8:51:97:b3:43:73:
f8:2c:d7:d8:d3:f8:e2:91:0f:fa:30:27:fc:92:cc:cc:93:2c:
9c:fe:a4:81:16:17:f7:44:5a:34:c4:27:ae:59:dc:46:76:8a:
a1:c6:c5:82:f7:17:6b:4c:10:90:09:3b:07:b2:be:81:0c:aa:
68:11:22:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0GUoirM9jds7igJXDntf9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ODYwMjczZWIyNzE5MjJiOWY3ZWM4ZjRhNTkxMDE2MzU2
ZDczMmIwHhcNMjUwODA0MDgwMTExWhcNMjUwODA1MDgwMTExWjAzMTEwLwYDVQQD
EyhhZmNlNDYwY2I1MDhhYTIwMDhlYjhhMzI1NTNlYTkxYzUzNjg1YTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouILIy9slMihlBYm5/CCrdkpM4wN
cTHko/usqBJBD+F6H2AfBM/l60SyWDzzHF4lCEp9939hNsWMJRNzQagzx/qHN+Pr
du3eM8XNRmmtXJJZKSjO4lKZ57R9jxLBZQnP9wA6CC9yIJcRDUKyDJomZPOvD4px
ktcjCbjUApqQcaHrZsvJiu27Wvw+HnzWxnfPrESHwTye9VENppcIi0f09+MuMx+0
giZVu6VhX6mGtDXMMbMhtu90JcM43Mjae6q6a5CN15o24ndYromNTAmFN3O+//wL
yi/flWYQTbcyOJF+kWzP0Sa5chaSki8rKZ3/T1UAiNFN6wVLM/MQIfpnWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK/ORgy1CKogCOuKMlU+qRxTaFoOMB8GA1UdIwQY
MBaAFIWGAnPrJxkiuffsj0pZEBY1bXMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYt
OTkwOWVlMmYzM2IyLzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYtOTkwOWVlMmYzM2Iy
LzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb5Eop5Mn
sxFuSJ0kPWdws4dD2OJa/WhLMpkbDsI+plryY2NnYQ5NG5CjuMCUC4OdQTm0a9xM
BJNnaWTM664/avSVJMlew6XHK52i2fk0djd5Vx8Ypht09RxlI1Fj8VjY1YrRpLR8
wSfvzU+kh9BR8zjfyzX496dyVFWzzjOUsylv+X+soan5DkfZIgfpURNI7PW0qjpD
f3Ksl8M4kITO9NPdPHyIkAEply/GxOW0sW6HrQtl0xPwZgEHUqIIXlhjqFGXs0Nz
+CzX2NP44pEP+jAn/JLMzJMsnP6kgRYX90RaNMQnrlncRnaKocbFgvcXa0wQkAk7
B7K+gQyqaBEiPg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 10:59:46 2025 by rpki-client