Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
File: hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft (raw, json)
Hash identifier: ji6JLhaCWxL652oSAC2+pUpxZPhWs6+cB+fwxILvpt4=
Subject key identifier: 39:FB:75:0F:54:B7:7E:14:38:36:9B:04:3A:F7:AB:D0:66:13:9A:F6
Authority key identifier: 84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
Certificate issuer: /CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Certificate serial: 019896A5E88F6070D712868FC39E49FF0E18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
Manifest number: 090E
Signing time: Mon 11 Aug 2025 01:01:52 +0000
Manifest this update: Mon 11 Aug 2025 01:01:52 +0000
Manifest next update: Tue 12 Aug 2025 01:01:52 +0000
Files and hashes: 1: hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl (hash: m87eSD5tSGxMFSOW2cbuR3AoRO1q2khL8w3tcie5MDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:e8:8f:60:70:d7:12:86:8f:c3:9e:49:ff:0e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842b18f8d1db1f947621b2d8f786603e2b1bd50c
Validity
Not Before: Aug 11 01:01:52 2025 GMT
Not After : Aug 12 01:01:52 2025 GMT
Subject: CN=39fb750f54b77e1438369b043af7abd066139af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:60:cb:61:d0:53:38:4f:a4:e9:a0:b7:56:ca:
83:06:c4:90:55:f4:37:45:1d:08:30:79:c0:bb:0a:
5f:56:12:db:e2:d6:88:70:15:3c:38:38:3d:39:ab:
3b:bc:00:3b:95:18:aa:c7:47:f8:fd:a1:1f:94:6a:
cb:b7:b2:e2:40:06:77:01:72:77:d3:5d:50:97:23:
52:6c:cb:3b:7d:3c:e9:51:f5:24:a7:56:e9:90:c1:
05:46:9b:14:38:d8:e1:c9:fc:fb:3a:34:06:98:fb:
61:85:92:2a:45:0b:b7:ea:1f:db:28:47:0b:6d:d2:
8d:f1:96:ee:3d:6b:9f:50:24:9f:50:9f:88:ca:5d:
8e:f6:5d:f9:2f:69:3d:f7:ae:38:06:d0:ca:27:2d:
5a:a1:fa:af:08:d0:5e:13:eb:7b:12:d4:d0:71:69:
53:d9:a5:6d:0c:a7:ef:fe:b2:da:8f:ab:c0:cf:19:
25:21:a8:48:3d:bc:ae:44:98:9c:32:7c:34:c3:2f:
d5:07:0a:ad:93:6f:78:2d:6e:f6:03:31:a9:e3:a0:
cd:ca:ff:c5:c9:00:42:cb:51:ca:26:79:94:b6:dd:
da:97:a7:27:87:38:69:2f:12:bf:87:03:cf:ed:47:
89:2d:14:a1:94:b0:d9:3a:24:92:22:96:2d:3a:b8:
a0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FB:75:0F:54:B7:7E:14:38:36:9B:04:3A:F7:AB:D0:66:13:9A:F6
X509v3 Authority Key Identifier:
keyid:84:2B:18:F8:D1:DB:1F:94:76:21:B2:D8:F7:86:60:3E:2B:1B:D5:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hCsY-NHbH5R2IbLY94ZgPisb1Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/3c8e78-dfa0-4616-b228-0b970b96c90b/1/hCsY-NHbH5R2IbLY94ZgPisb1Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:a8:5c:1a:bb:3f:2e:12:8d:ff:43:26:06:3d:0e:89:10:dd:
42:37:c4:5c:32:c5:c3:fc:6f:37:c6:f4:4b:8e:d6:93:cc:70:
d9:66:22:e0:5e:cf:06:b2:c2:5e:69:36:7e:a1:a1:3c:32:2a:
c0:ad:7b:32:34:4f:5c:78:a7:95:34:ac:a8:59:73:a5:cb:66:
3a:36:4b:fa:bc:0f:5e:61:c5:7c:5d:63:fc:15:35:9f:78:4e:
1d:93:70:c3:30:f6:d5:87:3d:d9:23:dc:53:3a:e4:1a:df:43:
79:ba:09:b8:75:39:e6:98:c5:66:0a:34:a5:ca:34:d3:2f:46:
df:ed:65:41:29:d3:5d:05:55:76:55:de:05:15:76:24:d4:0d:
6b:49:8e:bf:45:52:07:f0:62:c9:68:d9:b1:bd:af:e5:a8:49:
21:38:04:b4:2a:c4:cc:4e:de:8d:15:b2:73:61:1f:4d:28:ce:
ae:d8:3d:ab:93:71:16:ab:b8:4b:71:e8:fb:f6:95:b7:22:69:
f9:2f:9c:27:02:5e:c2:2b:cd:54:c4:8d:e2:5f:82:19:af:56:
03:2a:8a:bc:6b:1e:e1:34:e3:ea:6f:45:ff:f8:2c:36:25:4b:
3c:87:01:cd:37:5f:59:e3:cb:d0:8e:4c:e8:57:66:9c:50:a1:
8c:4a:db:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWpeiPYHDXEoaPw55J/w4YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MmIxOGY4ZDFkYjFmOTQ3NjIxYjJkOGY3ODY2MDNlMmIx
YmQ1MGMwHhcNMjUwODExMDEwMTUyWhcNMjUwODEyMDEwMTUyWjAzMTEwLwYDVQQD
EygzOWZiNzUwZjU0Yjc3ZTE0MzgzNjliMDQzYWY3YWJkMDY2MTM5YWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGDLYdBTOE+k6aC3VsqDBsSQVfQ3
RR0IMHnAuwpfVhLb4taIcBU8ODg9Oas7vAA7lRiqx0f4/aEflGrLt7LiQAZ3AXJ3
011QlyNSbMs7fTzpUfUkp1bpkMEFRpsUONjhyfz7OjQGmPthhZIqRQu36h/bKEcL
bdKN8ZbuPWufUCSfUJ+Iyl2O9l35L2k99644BtDKJy1aofqvCNBeE+t7EtTQcWlT
2aVtDKfv/rLaj6vAzxklIahIPbyuRJicMnw0wy/VBwqtk294LW72AzGp46DNyv/F
yQBCy1HKJnmUtt3al6cnhzhpLxK/hwPP7UeJLRShlLDZOiSSIpYtOrigMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDn7dQ9Ut34UODabBDr3q9BmE5r2MB8GA1UdIwQY
MBaAFIQrGPjR2x+UdiGy2PeGYD4rG9UMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8zYzhlNzgtZGZhMC00NjE2LWIyMjgt
MGI5NzBiOTZjOTBiLzEvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8zYzhlNzgtZGZhMC00NjE2LWIyMjgtMGI5NzBiOTZjOTBi
LzEvaENzWS1OSGJINVIySWJMWTk0WmdQaXNiMVF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL6hcGrs/
LhKN/0MmBj0OiRDdQjfEXDLFw/xvN8b0S47Wk8xw2WYi4F7PBrLCXmk2fqGhPDIq
wK17MjRPXHinlTSsqFlzpctmOjZL+rwPXmHFfF1j/BU1n3hOHZNwwzD21Yc92SPc
UzrkGt9DeboJuHU55pjFZgo0pco00y9G3+1lQSnTXQVVdlXeBRV2JNQNa0mOv0VS
B/BiyWjZsb2v5ahJITgEtCrEzE7ejRWyc2EfTSjOrtg9q5NxFqu4S3Ho+/aVtyJp
+S+cJwJewivNVMSN4l+CGa9WAyqKvGse4TTj6m9F//gsNiVLPIcBzTdfWePL0I5M
6FdmnFChjErbEA==
-----END CERTIFICATE-----
Generated at Mon Aug 11 04:10:01 2025 by rpki-client