Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: eID82msqDkxUgalj4Fgssg8BGB3nkUVcXunQ+iSWu3o=
Subject key identifier: 3B:4C:F4:4A:6E:37:54:04:63:4E:F8:94:27:53:5A:4E:09:9F:E9:B6
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0198752C0A512A3FC21995741FE29F596AFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1626
Signing time: Mon 04 Aug 2025 13:01:17 +0000
Manifest this update: Mon 04 Aug 2025 13:01:17 +0000
Manifest next update: Tue 05 Aug 2025 13:01:17 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: B5t/2y/JYwJkAwR6f+7NyO6P/fD2BaLlY8gp9uy49QA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:2c:0a:51:2a:3f:c2:19:95:74:1f:e2:9f:59:6a:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Aug 4 13:01:17 2025 GMT
Not After : Aug 5 13:01:17 2025 GMT
Subject: CN=3b4cf44a6e375404634ef89427535a4e099fe9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cf:f1:95:ec:04:61:d1:d9:7a:42:28:13:bd:
3d:6b:5d:c0:88:7e:4a:31:c2:cf:39:02:5e:c9:68:
25:c1:79:69:5a:5b:f4:8f:4d:66:cd:fa:23:96:e6:
22:a2:12:7b:5c:ed:84:ae:53:c9:05:c7:96:16:ce:
93:c9:c5:0e:bd:d4:9c:61:16:b0:cd:b6:23:9e:19:
24:96:8c:cb:ac:31:05:00:5d:f6:8e:c3:55:2f:5e:
9a:d7:31:bf:b2:e3:50:59:b5:ad:4c:74:0c:8f:78:
64:35:82:6e:eb:d2:c9:a0:9e:30:da:2d:c1:b3:13:
92:91:6c:ca:bf:76:75:0a:ca:e6:62:09:89:33:d3:
39:f1:a7:65:2e:90:ee:0a:93:64:0e:cb:e2:c8:ab:
d6:99:41:30:c8:f1:ca:3b:fd:18:58:c1:75:45:dc:
df:85:00:c6:ef:c8:f0:e2:ec:0e:1d:51:44:4f:30:
cf:30:d0:77:db:57:9c:e1:d7:84:1a:31:7f:2e:69:
93:c3:fd:16:16:a1:9d:85:52:32:3f:45:54:f2:ab:
b1:34:6a:a4:9e:8a:55:ac:7c:25:0a:e9:0d:ca:49:
30:3e:2d:9c:e7:6e:9e:c8:6a:c4:f2:fb:36:55:74:
3e:82:d4:dd:ff:60:b3:b3:a5:4d:15:e6:6b:6f:e6:
d7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4C:F4:4A:6E:37:54:04:63:4E:F8:94:27:53:5A:4E:09:9F:E9:B6
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:ad:d8:bb:b9:e2:4d:1a:b3:1d:00:63:bc:53:b9:65:a7:c1:
7e:1e:ac:4f:fa:c3:cf:9f:c5:cb:89:ae:99:61:08:92:79:a7:
10:83:49:ba:d7:95:bc:38:9d:40:67:a5:1d:a2:06:a7:a5:57:
24:3d:a4:83:84:e9:cc:45:52:08:6d:09:7c:19:c7:f3:cc:a6:
22:aa:06:2b:7c:95:7c:95:d4:2d:67:cb:ed:b2:1c:03:0d:23:
08:d8:3c:a3:bf:9c:10:33:64:a8:71:59:cb:a5:9b:1c:ba:d7:
6a:49:d5:89:92:79:79:f3:ad:1e:38:62:2e:4b:d5:b3:96:df:
6d:cd:09:a9:1f:1a:ca:bc:b4:15:94:b2:85:b6:65:80:db:22:
53:77:21:9e:d3:df:d1:e3:c7:92:32:e4:11:8d:75:b4:e3:c5:
c2:5d:25:5e:38:b0:60:e4:7f:98:78:c6:05:b8:34:c7:c2:15:
66:94:3b:77:8d:06:19:c0:4a:56:b6:d5:81:71:1c:9f:9c:5d:
61:1c:88:67:c3:8f:0a:70:6c:7f:c1:92:82:45:97:64:ac:06:
10:a6:53:1f:e5:ca:27:b6:0b:91:e6:d2:a5:e3:e0:e3:2e:ad:
7d:b9:c1:f5:4e:4a:0c:a4:2c:7c:45:7e:ae:1a:7e:31:ec:45:
17:4d:34:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh1LApRKj/CGZV0H+KfWWr9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjFjNTQzODQ0YzQxN2Y2MWFkNzkzOTI0NGQzYjc1OWMy
YTQzZWQwHhcNMjUwODA0MTMwMTE3WhcNMjUwODA1MTMwMTE3WjAzMTEwLwYDVQQD
EygzYjRjZjQ0YTZlMzc1NDA0NjM0ZWY4OTQyNzUzNWE0ZTA5OWZlOWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvs/xlewEYdHZekIoE709a13AiH5K
McLPOQJeyWglwXlpWlv0j01mzfojluYiohJ7XO2ErlPJBceWFs6TycUOvdScYRaw
zbYjnhkklozLrDEFAF32jsNVL16a1zG/suNQWbWtTHQMj3hkNYJu69LJoJ4w2i3B
sxOSkWzKv3Z1CsrmYgmJM9M58adlLpDuCpNkDsviyKvWmUEwyPHKO/0YWMF1Rdzf
hQDG78jw4uwOHVFETzDPMNB321ec4deEGjF/LmmTw/0WFqGdhVIyP0VU8quxNGqk
nopVrHwlCukNykkwPi2c526eyGrE8vs2VXQ+gtTd/2Czs6VNFeZrb+bXRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDtM9EpuN1QEY074lCdTWk4Jn+m2MB8GA1UdIwQY
MBaAFB8hxUOETEF/Ya15OSRNO3WcKkPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2Qt
YjhjNDg1M2U0MmJjLzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2QtYjhjNDg1M2U0MmJj
LzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo63Yu7ni
TRqzHQBjvFO5ZafBfh6sT/rDz5/Fy4mumWEIknmnEINJuteVvDidQGelHaIGp6VX
JD2kg4TpzEVSCG0JfBnH88ymIqoGK3yVfJXULWfL7bIcAw0jCNg8o7+cEDNkqHFZ
y6WbHLrXaknViZJ5efOtHjhiLkvVs5bfbc0JqR8ayry0FZSyhbZlgNsiU3chntPf
0ePHkjLkEY11tOPFwl0lXjiwYOR/mHjGBbg0x8IVZpQ7d40GGcBKVrbVgXEcn5xd
YRyIZ8OPCnBsf8GSgkWXZKwGEKZTH+XKJ7YLkebSpePg4y6tfbnB9U5KDKQsfEV+
rhp+MexFF0003A==
-----END CERTIFICATE-----
Generated at Mon Aug 4 15:36:15 2025 by rpki-client