Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File: hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier: FsRVRnjczydmpZnbdycjP9xRbiMkcs8CDZbcxFU35Kk=
Subject key identifier: A2:26:B5:08:70:F6:34:B7:96:D2:EE:93:BF:F0:6D:31:90:79:F3:0F
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer: /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial: 019A4F2B9F441262017F1A4AE47025313883
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number: 0BFE
Signing time: Tue 04 Nov 2025 14:00:50 +0000
Manifest this update: Tue 04 Nov 2025 14:00:50 +0000
Manifest next update: Wed 05 Nov 2025 14:00:50 +0000
Files and hashes: 1: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: F21da4Ubk4m2uAqkfY+W2yQzoA2D/gppWc/4vyMhNX0=)
2: wWq59skVXk0ZG4IFLK9dggmPZBc.roa (hash: G7C47jomjQ8yRWntSox+zS/AjFvrINeu+2AEHacLP1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:9f:44:12:62:01:7f:1a:4a:e4:70:25:31:38:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
Validity
Not Before: Nov 4 14:00:50 2025 GMT
Not After : Nov 5 14:00:50 2025 GMT
Subject: CN=a226b50870f634b796d2ee93bff06d319079f30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c1:cc:4a:06:2d:66:12:51:84:8f:fa:a5:9c:
1e:2b:90:3c:0b:da:c2:f4:40:c6:9d:06:7d:f4:e0:
c5:71:3a:07:f5:fb:aa:2b:4b:3f:a6:85:fe:30:7e:
0c:3f:b3:0a:31:b4:65:47:20:91:3f:23:56:69:bf:
78:d3:ad:bc:9e:24:6a:dd:23:e4:5e:84:46:c4:d8:
d0:d9:43:2f:5c:fe:1b:83:0f:8f:0d:ba:96:c3:5d:
b5:6d:a5:3b:6e:cd:10:b1:a1:f1:1a:84:e3:17:ef:
c7:65:46:d7:2b:0c:76:eb:7f:7f:26:85:42:05:2f:
90:ea:e2:3b:d1:e6:d2:81:f8:a0:fa:5a:54:23:aa:
a1:ec:89:7c:18:c4:ea:dc:a1:d8:3b:d7:bc:f4:d8:
43:cd:95:f0:07:1b:de:30:c5:5a:18:b1:36:82:f3:
9a:dc:d6:c1:2a:fc:5f:55:ca:60:4c:75:a0:f3:dd:
1a:ed:a9:cb:7f:d7:38:f6:8f:5a:b4:4b:97:c1:3c:
f4:56:17:b0:0c:ac:ae:e3:a5:8a:65:97:f7:87:17:
ff:5d:29:1a:6b:df:d2:2f:0d:97:b3:a4:d3:e8:1a:
fd:a0:a7:61:97:06:29:eb:18:20:1a:4d:3e:39:04:
38:8c:24:80:89:45:ba:80:30:ee:ed:ba:8b:91:0e:
9c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:26:B5:08:70:F6:34:B7:96:D2:EE:93:BF:F0:6D:31:90:79:F3:0F
X509v3 Authority Key Identifier:
keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:31:e3:6c:3d:9c:d1:2e:a8:84:70:bf:2f:a1:24:92:9b:08:
70:9c:ff:91:99:ad:a3:08:d5:ca:3d:9f:6e:f8:ed:16:b7:69:
85:7e:44:b5:f4:22:de:94:37:ce:54:18:13:aa:04:dc:31:8f:
ae:0e:a7:31:40:19:ce:3e:9a:43:5f:b6:5a:5c:a0:d3:7b:f4:
4f:fe:4f:f9:67:3b:eb:8c:96:21:d5:c8:b2:95:2d:cc:f3:a2:
06:b6:48:0c:dc:d7:59:02:b7:6a:31:38:c2:a0:9a:01:5d:5d:
27:8f:1d:a5:51:f1:84:c1:b5:73:10:62:f2:ee:6a:93:2f:be:
09:12:e8:27:0a:3a:2a:f2:a3:aa:57:e7:f4:24:ff:c7:9e:7a:
d9:92:a5:e2:ab:64:24:c7:e3:28:96:9b:97:9a:cf:a7:4a:78:
98:9d:26:a9:9c:d2:ae:ff:bb:36:b2:be:06:d4:40:42:f7:c1:
b7:94:86:8b:9e:c6:44:44:2f:d5:71:2d:02:cd:47:ac:6b:83:
f8:cd:2d:e2:44:b5:40:b9:73:12:d4:cf:10:4a:07:ed:ff:34:
8f:6c:ba:9f:32:ed:e3:3e:25:28:4f:7d:42:1b:fc:46:e9:21:
d7:5b:6f:81:ce:06:cd:7d:9e:e1:72:79:0f:9a:84:f4:c0:f2:
23:9e:d6:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPK59EEmIBfxpK5HAlMTiDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OWIzNjAwZmQ3MzhlNjk4ZDEyZmVmMjBlMTA2ZTZhOTRl
M2I2NzQwHhcNMjUxMTA0MTQwMDUwWhcNMjUxMTA1MTQwMDUwWjAzMTEwLwYDVQQD
EyhhMjI2YjUwODcwZjYzNGI3OTZkMmVlOTNiZmYwNmQzMTkwNzlmMzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzcHMSgYtZhJRhI/6pZweK5A8C9rC
9EDGnQZ99ODFcToH9fuqK0s/poX+MH4MP7MKMbRlRyCRPyNWab940628niRq3SPk
XoRGxNjQ2UMvXP4bgw+PDbqWw121baU7bs0QsaHxGoTjF+/HZUbXKwx2639/JoVC
BS+Q6uI70ebSgfig+lpUI6qh7Il8GMTq3KHYO9e89NhDzZXwBxveMMVaGLE2gvOa
3NbBKvxfVcpgTHWg890a7anLf9c49o9atEuXwTz0VhewDKyu46WKZZf3hxf/XSka
a9/SLw2Xs6TT6Br9oKdhlwYp6xggGk0+OQQ4jCSAiUW6gDDu7bqLkQ6cmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKImtQhw9jS3ltLuk7/wbTGQefMPMB8GA1UdIwQY
MBaAFIabNgD9c45pjRL+8g4QbmqU47Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUt
NDI0M2U4OGJkNzZjLzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUtNDI0M2U4OGJkNzZj
LzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgDHjbD2c
0S6ohHC/L6EkkpsIcJz/kZmtowjVyj2fbvjtFrdphX5EtfQi3pQ3zlQYE6oE3DGP
rg6nMUAZzj6aQ1+2Wlyg03v0T/5P+Wc764yWIdXIspUtzPOiBrZIDNzXWQK3ajE4
wqCaAV1dJ48dpVHxhMG1cxBi8u5qky++CRLoJwo6KvKjqlfn9CT/x5562ZKl4qtk
JMfjKJabl5rPp0p4mJ0mqZzSrv+7NrK+BtRAQvfBt5SGi57GREQv1XEtAs1HrGuD
+M0t4kS1QLlzEtTPEEoH7f80j2y6nzLt4z4lKE99Qhv8Rukh11tvgc4GzX2e4XJ5
D5qE9MDyI57W2g==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:43:41 2025 by rpki-client