Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
File: HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json)
Hash identifier: 6/LZC9Y3MqVhidahvxRfgmsrbc0cecJfUaFASq49L6k=
Subject key identifier: EC:3B:BF:BD:A8:EE:AB:4F:57:F4:5C:BE:C6:FF:AF:7D:38:54:8E:13
Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
Certificate issuer: /CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Certificate serial: 01987DF79BFA714ED6B8718F2651D51183A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
Manifest number: 1616
Signing time: Wed 06 Aug 2025 06:00:35 +0000
Manifest this update: Wed 06 Aug 2025 06:00:35 +0000
Manifest next update: Thu 07 Aug 2025 06:00:35 +0000
Files and hashes: 1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: zZqz+ipd3Iail+0AipSnqloST6mCq/gmwjWKZD1U2tc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:9b:fa:71:4e:d6:b8:71:8f:26:51:d5:11:83:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Validity
Not Before: Aug 6 06:00:35 2025 GMT
Not After : Aug 7 06:00:35 2025 GMT
Subject: CN=ec3bbfbda8eeab4f57f45cbec6ffaf7d38548e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6f:6c:69:f5:a1:b7:e2:27:53:cf:b3:aa:b8:
b7:84:0f:63:c5:97:65:fb:fc:df:69:a8:68:43:9d:
5b:4f:69:cd:d7:31:3e:e1:fe:07:a4:10:ca:61:0f:
45:e1:3f:5b:78:5f:8e:83:8c:a1:7e:9b:a0:c9:b1:
53:16:d2:a2:2a:20:c7:ee:ac:38:80:1b:2b:5a:7b:
ba:b7:32:f3:1f:fe:ae:ef:4f:27:a4:c0:66:1d:58:
31:29:5a:47:ad:37:8e:7b:b9:23:bb:3c:51:a8:10:
f6:b6:06:9e:87:d4:66:5f:58:57:40:fd:af:1d:24:
ba:f9:a8:e9:60:41:c8:ec:8a:7c:b5:8f:c2:3b:85:
3e:7d:b8:b6:cd:6d:35:fd:69:51:69:93:cc:06:4b:
49:b6:90:c1:5a:de:d6:47:c7:d1:9f:2d:cd:7c:b8:
4d:ef:55:e6:6f:47:2e:61:2e:c9:0e:a8:12:64:c0:
ba:4e:08:e7:1a:1a:fc:9d:b8:c4:98:60:71:51:38:
a4:68:0f:d2:22:61:f0:31:50:62:dc:21:c9:48:eb:
14:d7:9a:32:00:4c:a8:97:6b:d5:7b:47:c7:23:1f:
33:96:5b:08:6d:0d:60:b2:40:54:17:0c:93:46:41:
de:a1:87:d5:1d:14:29:3a:6f:b8:6d:f6:eb:0d:e1:
5d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:3B:BF:BD:A8:EE:AB:4F:57:F4:5C:BE:C6:FF:AF:7D:38:54:8E:13
X509v3 Authority Key Identifier:
keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:19:d9:99:7c:51:4d:a0:9a:d5:03:7c:24:e7:4d:3e:fd:4f:
b7:e5:10:4f:a8:e3:a0:b9:70:e7:57:24:61:7a:50:5c:6b:66:
4c:6e:e6:ae:bf:86:83:c2:c5:cc:d1:1f:cf:a0:01:d6:5c:8b:
ff:81:f9:01:c4:02:29:5f:83:22:69:d6:ee:57:3d:b2:31:8e:
7d:bd:ff:63:2c:7e:49:6f:26:0c:ad:12:6c:1b:0e:b4:37:be:
84:26:e4:a6:4f:58:14:15:81:d5:f6:b0:99:9c:0e:59:a4:d7:
35:4b:54:b2:7b:83:3e:fb:4d:fc:35:86:c2:0c:14:06:b4:b8:
ed:82:84:ec:c3:96:fd:94:9d:b1:57:40:2b:78:92:40:1e:bc:
83:ed:78:fe:41:f8:b2:05:36:5f:f3:cc:50:27:3f:18:e5:95:
c7:09:a7:b7:0a:ad:7d:86:8a:64:3a:fa:aa:6e:a9:f1:42:8b:
1b:bf:cb:40:fd:d9:24:d1:95:75:78:5f:68:b7:95:f6:85:e8:
38:d9:b4:00:d5:7b:40:21:96:fd:de:20:0d:6a:de:28:2f:57:
8f:30:d9:ea:2d:b5:bf:8e:43:d1:46:61:ed:c9:a4:a9:97:80:
3a:f2:2c:de:ae:db:03:94:8e:d3:5e:81:a6:db:b7:dc:c7:21:
f1:e1:f5:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh995v6cU7WuHGPJlHVEYOnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMjVkMGM4ODQ1Yjc5ODg2YzE5OTM0NWI4OTBmNWU4YWNk
NTE2ZDgwHhcNMjUwODA2MDYwMDM1WhcNMjUwODA3MDYwMDM1WjAzMTEwLwYDVQQD
EyhlYzNiYmZiZGE4ZWVhYjRmNTdmNDVjYmVjNmZmYWY3ZDM4NTQ4ZTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7G9safWht+InU8+zqri3hA9jxZdl
+/zfaahoQ51bT2nN1zE+4f4HpBDKYQ9F4T9beF+Og4yhfpugybFTFtKiKiDH7qw4
gBsrWnu6tzLzH/6u708npMBmHVgxKVpHrTeOe7kjuzxRqBD2tgaeh9RmX1hXQP2v
HSS6+ajpYEHI7Ip8tY/CO4U+fbi2zW01/WlRaZPMBktJtpDBWt7WR8fRny3NfLhN
71Xmb0cuYS7JDqgSZMC6TgjnGhr8nbjEmGBxUTikaA/SImHwMVBi3CHJSOsU15oy
AEyol2vVe0fHIx8zllsIbQ1gskBUFwyTRkHeoYfVHRQpOm+4bfbrDeFdzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOw7v72o7qtPV/Rcvsb/r304VI4TMB8GA1UdIwQY
MBaAFB0l0MiEW3mIbBmTRbiQ9eis1RbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy81NTc1MjQtMjk3ZC00ODQ5LWI0YmUt
YzUyZWI1NmJmYTViLzEvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy81NTc1MjQtMjk3ZC00ODQ5LWI0YmUtYzUyZWI1NmJmYTVi
LzEvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKhnZmXxR
TaCa1QN8JOdNPv1Pt+UQT6jjoLlw51ckYXpQXGtmTG7mrr+Gg8LFzNEfz6AB1lyL
/4H5AcQCKV+DImnW7lc9sjGOfb3/Yyx+SW8mDK0SbBsOtDe+hCbkpk9YFBWB1faw
mZwOWaTXNUtUsnuDPvtN/DWGwgwUBrS47YKE7MOW/ZSdsVdAK3iSQB68g+14/kH4
sgU2X/PMUCc/GOWVxwmntwqtfYaKZDr6qm6p8UKLG7/LQP3ZJNGVdXhfaLeV9oXo
ONm0ANV7QCGW/d4gDWreKC9XjzDZ6i21v45D0UZh7cmkqZeAOvIs3q7bA5SO016B
ptu33Mch8eH1tQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 09:41:04 2025 by rpki-client