Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File: HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier: dhENDMH/4kA/THzDBqhLnfT5swmaowscS4g7YEPPDTU=
Subject key identifier: 9E:EA:BB:34:FF:02:71:65:91:86:2C:A6:2C:FC:04:13:5D:4D:FA:9C
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer: /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial: 0198A084418DF4C21DFBAF89280D55B34164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number: 05A4
Signing time: Tue 12 Aug 2025 23:01:18 +0000
Manifest this update: Tue 12 Aug 2025 23:01:18 +0000
Manifest next update: Wed 13 Aug 2025 23:01:18 +0000
Files and hashes: 1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: VnkLA9z3a4YwVM6sVNByfkqcm4qO/dcz0IZeGau0Yb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:84:41:8d:f4:c2:1d:fb:af:89:28:0d:55:b3:41:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
Validity
Not Before: Aug 12 23:01:18 2025 GMT
Not After : Aug 13 23:01:18 2025 GMT
Subject: CN=9eeabb34ff02716591862ca62cfc04135d4dfa9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4a:d5:89:ea:40:75:80:0d:18:97:9e:dd:19:
5e:16:80:a9:f1:53:9c:57:7f:c3:01:87:29:69:25:
a1:5c:af:1f:f0:97:c0:28:06:73:be:a5:70:87:b6:
81:f4:ce:40:1a:28:be:ee:a7:06:e0:97:b4:37:c9:
bf:b7:cf:9d:d8:9d:57:76:f9:da:cc:7f:4c:c8:d6:
92:3f:54:a1:98:45:e1:16:1d:1b:ab:e9:17:ae:1d:
3e:02:89:e7:d4:28:56:1a:f0:4a:db:3a:f8:75:0e:
a5:31:9d:4e:a8:51:84:5d:09:6d:31:b2:95:0a:a5:
14:8f:54:51:eb:f4:56:bb:c3:c0:92:59:5a:fb:d4:
02:6b:a7:af:e4:05:1e:80:a5:63:98:67:e6:80:96:
1c:4c:85:e9:3c:d9:82:08:8e:2b:42:3a:28:54:40:
06:db:f8:1c:74:bf:32:5b:90:b4:d6:eb:af:3f:c3:
09:a4:5b:54:75:c3:7d:2d:bd:7b:bb:ad:e1:54:a2:
1a:21:c8:6d:2d:df:44:b7:e5:9b:36:e7:06:5b:8b:
4f:07:df:67:91:03:69:c4:53:41:50:61:87:a8:12:
ab:11:93:2a:44:f4:27:7f:2d:f8:bd:1c:e1:e1:7c:
8d:ce:cc:90:10:a0:6e:90:a8:2b:4b:2a:1d:ee:09:
ae:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EA:BB:34:FF:02:71:65:91:86:2C:A6:2C:FC:04:13:5D:4D:FA:9C
X509v3 Authority Key Identifier:
keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:5b:31:19:03:50:dc:ca:27:23:f9:17:1e:59:2b:72:5e:52:
77:f0:7e:23:0f:da:d9:48:fb:1b:e0:d8:82:22:f4:ef:17:ea:
e2:08:25:16:fb:f6:2f:53:4a:aa:12:78:16:15:c5:51:ae:18:
76:20:ef:2b:64:42:b6:db:d4:af:3a:2e:5a:4e:32:f0:5c:32:
90:29:2e:4c:70:7a:6c:6c:1e:4a:77:50:18:2d:d6:58:1b:10:
78:f4:52:f3:6c:c7:d9:d8:38:5b:7e:a7:bb:86:d0:89:98:94:
a1:2a:8c:0f:35:3e:24:76:00:7f:2d:c6:2f:09:53:d2:6a:1a:
1c:40:34:b6:c2:ca:63:e4:1e:06:b8:9a:27:f2:3a:94:88:34:
74:72:6b:70:87:c4:94:04:ad:b1:e6:4a:05:d6:e9:cb:ae:b7:
5b:72:65:18:6e:6b:4e:aa:08:3b:84:3a:f5:99:2c:d0:b9:cc:
91:0c:7c:05:19:96:4a:f2:14:c9:d6:1f:1a:0e:89:b5:ad:e7:
9b:f4:bc:9e:73:b4:08:f9:7b:8d:3b:5a:d7:15:e3:53:52:66:
d4:86:28:9a:64:e0:6f:6c:83:c6:85:dd:f0:9a:d1:04:cd:1a:
45:72:d4:b1:61:53:94:74:a6:d8:cf:e7:71:f9:d3:0b:cd:80:
a7:7c:56:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZighEGN9MId+6+JKA1Vs0FkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjRmMWNhYWZiMzIwOGViODI3YTA3ODI2NDE3YmNiOTQ5
MzQxMmYwHhcNMjUwODEyMjMwMTE4WhcNMjUwODEzMjMwMTE4WjAzMTEwLwYDVQQD
Eyg5ZWVhYmIzNGZmMDI3MTY1OTE4NjJjYTYyY2ZjMDQxMzVkNGRmYTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuErViepAdYANGJee3RleFoCp8VOc
V3/DAYcpaSWhXK8f8JfAKAZzvqVwh7aB9M5AGii+7qcG4Je0N8m/t8+d2J1Xdvna
zH9MyNaSP1ShmEXhFh0bq+kXrh0+Aonn1ChWGvBK2zr4dQ6lMZ1OqFGEXQltMbKV
CqUUj1RR6/RWu8PAklla+9QCa6ev5AUegKVjmGfmgJYcTIXpPNmCCI4rQjooVEAG
2/gcdL8yW5C01uuvP8MJpFtUdcN9Lb17u63hVKIaIchtLd9Et+WbNucGW4tPB99n
kQNpxFNBUGGHqBKrEZMqRPQnfy34vRzh4XyNzsyQEKBukKgrSyod7gmuvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ7quzT/AnFlkYYspiz8BBNdTfqcMB8GA1UdIwQY
MBaAFBwk8cqvsyCOuCegeCZBe8uUk0EvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQt
N2RjZmZmYWUyNzhjLzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQtN2RjZmZmYWUyNzhj
LzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALVsxGQNQ
3MonI/kXHlkrcl5Sd/B+Iw/a2Uj7G+DYgiL07xfq4gglFvv2L1NKqhJ4FhXFUa4Y
diDvK2RCttvUrzouWk4y8FwykCkuTHB6bGweSndQGC3WWBsQePRS82zH2dg4W36n
u4bQiZiUoSqMDzU+JHYAfy3GLwlT0moaHEA0tsLKY+QeBriaJ/I6lIg0dHJrcIfE
lAStseZKBdbpy663W3JlGG5rTqoIO4Q69Zks0LnMkQx8BRmWSvIUydYfGg6Jta3n
m/S8nnO0CPl7jTta1xXjU1Jm1IYommTgb2yDxoXd8JrRBM0aRXLUsWFTlHSm2M/n
cfnTC82Ap3xWDg==
-----END CERTIFICATE-----
Generated at Wed Aug 13 00:37:58 2025 by rpki-client