Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
File: HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft (raw, json)
Hash identifier: oIbTjEKy9EQ28G4chn0zUujZxvYjxD8BPh56XuX8wWg=
Subject key identifier: A1:6C:62:4D:71:BF:9A:85:DC:9B:83:54:E4:EC:69:2D:85:14:70:4C
Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Certificate serial: 019873E29D60447F23F8C766308EA061D3AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
Manifest number: 0691
Signing time: Mon 04 Aug 2025 07:01:27 +0000
Manifest this update: Mon 04 Aug 2025 07:01:27 +0000
Manifest next update: Tue 05 Aug 2025 07:01:27 +0000
Files and hashes: 1: HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl (hash: 5JjzcsTEbPKd8fJV8MmIYbJlJWWTR6nW4O3Bm6c/whk=)
2: bIBmhUC2WLWBXyi5VaCHLFuHkDs.roa (hash: F54YraMKL44U0jhJwgmaruTpnrxsP2uQrqeXw7OujLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:9d:60:44:7f:23:f8:c7:66:30:8e:a0:61:d3:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Validity
Not Before: Aug 4 07:01:27 2025 GMT
Not After : Aug 5 07:01:27 2025 GMT
Subject: CN=a16c624d71bf9a85dc9b8354e4ec692d8514704c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a3:17:85:e0:91:42:7f:3d:62:40:57:2d:2f:
0a:77:12:a2:1b:2d:c1:97:2a:bf:94:4d:e6:93:13:
22:52:8d:89:1a:e3:01:2c:27:5d:90:3e:66:32:b9:
ff:82:df:62:a2:a2:45:09:1b:e8:4f:4c:35:f6:08:
29:bb:be:29:e3:97:6c:c2:60:2a:59:04:30:d1:14:
25:30:c3:fe:52:42:91:af:6a:af:5b:fe:81:d8:7b:
7a:07:6e:d9:f9:e7:ad:26:62:09:96:f3:fe:d8:e9:
ef:6b:1f:16:02:58:64:1c:5e:5a:f1:62:34:d3:8b:
7a:6e:d2:f4:33:5c:56:ba:ef:3d:98:32:4d:2a:6f:
eb:9a:2e:56:c1:f4:ae:bc:55:8f:b4:75:f9:a6:4b:
2d:7f:61:51:9f:b9:2a:83:79:c3:0d:b4:f5:2b:14:
65:79:1c:a5:f3:16:e6:59:d5:51:2b:f3:79:da:f2:
6f:99:34:ea:1e:39:c7:f1:25:09:1d:5c:fe:05:fb:
32:b5:fa:c0:33:f1:39:08:38:ef:da:d2:05:72:3b:
82:44:ec:96:96:26:95:5f:99:9a:a7:39:75:3d:c2:
fd:71:ee:01:62:c3:27:b8:3c:9d:a5:4f:45:10:c2:
02:18:28:06:41:0a:3e:6b:ce:bc:d0:92:0e:40:0c:
ad:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6C:62:4D:71:BF:9A:85:DC:9B:83:54:E4:EC:69:2D:85:14:70:4C
X509v3 Authority Key Identifier:
keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:8b:31:68:53:b6:ca:15:61:a4:aa:b9:a5:4d:0d:15:7c:c8:
c6:cf:4b:cc:19:0d:db:14:87:64:27:45:e2:ad:ea:d8:a4:af:
41:65:7e:d2:28:1c:0c:b8:3a:91:48:ef:79:e2:58:5f:ba:3d:
9a:a4:c1:18:41:e0:cc:6c:13:1e:50:73:8e:2e:a2:20:fe:0b:
27:06:23:fb:28:a6:7d:63:b6:c9:b6:fd:31:81:14:d1:7b:ab:
05:ee:6e:d8:16:e4:f9:b0:b0:50:00:7a:b3:da:04:45:49:62:
0e:74:87:7f:ef:79:f0:11:55:29:25:fd:b9:27:85:74:92:8d:
8b:89:2f:33:66:f8:9b:19:cc:87:07:3d:20:88:1a:1b:8e:d5:
76:a7:a7:14:01:b5:9f:8a:28:aa:06:e7:ce:5b:26:68:95:c4:
5f:35:8c:c4:21:ce:eb:39:1a:dc:44:e6:a5:19:7b:ad:90:fc:
04:18:8a:a6:2d:3a:d4:49:c1:da:e1:45:39:70:d0:65:d1:2d:
a0:d5:52:96:08:ab:82:19:13:7e:ef:b5:64:75:1b:60:60:cd:
66:cc:5d:ed:0e:83:02:8e:44:12:a5:50:0a:13:09:af:f6:e4:
7c:23:e5:c5:a4:6c:a4:ee:1d:a7:59:97:ec:ee:88:0b:e4:31:
a3:de:76:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4p1gRH8j+MdmMI6gYdOqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNjNhNDdlY2JmY2ZhYTlmNmNmZWNlMjYxNGM3MGU4YjVh
ZGI4M2UwHhcNMjUwODA0MDcwMTI3WhcNMjUwODA1MDcwMTI3WjAzMTEwLwYDVQQD
EyhhMTZjNjI0ZDcxYmY5YTg1ZGM5YjgzNTRlNGVjNjkyZDg1MTQ3MDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4aMXheCRQn89YkBXLS8KdxKiGy3B
lyq/lE3mkxMiUo2JGuMBLCddkD5mMrn/gt9ioqJFCRvoT0w19ggpu74p45dswmAq
WQQw0RQlMMP+UkKRr2qvW/6B2Ht6B27Z+eetJmIJlvP+2Onvax8WAlhkHF5a8WI0
04t6btL0M1xWuu89mDJNKm/rmi5WwfSuvFWPtHX5pkstf2FRn7kqg3nDDbT1KxRl
eRyl8xbmWdVRK/N52vJvmTTqHjnH8SUJHVz+BfsytfrAM/E5CDjv2tIFcjuCROyW
liaVX5mapzl1PcL9ce4BYsMnuDydpU9FEMICGCgGQQo+a8680JIOQAythwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKFsYk1xv5qF3JuDVOTsaS2FFHBMMB8GA1UdIwQY
MBaAFB5jpH7L/Pqp9s/s4mFMcOi1rbg+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy80YTk2YmUtZmJlYi00NTgwLThiYWEt
MzU1YjVjZDVkOTcxLzEvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy80YTk2YmUtZmJlYi00NTgwLThiYWEtMzU1YjVjZDVkOTcx
LzEvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANosxaFO2
yhVhpKq5pU0NFXzIxs9LzBkN2xSHZCdF4q3q2KSvQWV+0igcDLg6kUjveeJYX7o9
mqTBGEHgzGwTHlBzji6iIP4LJwYj+yimfWO2ybb9MYEU0XurBe5u2Bbk+bCwUAB6
s9oERUliDnSHf+958BFVKSX9uSeFdJKNi4kvM2b4mxnMhwc9IIgaG47VdqenFAG1
n4ooqgbnzlsmaJXEXzWMxCHO6zka3ETmpRl7rZD8BBiKpi061EnB2uFFOXDQZdEt
oNVSlgirghkTfu+1ZHUbYGDNZsxd7Q6DAo5EEqVQChMJr/bkfCPlxaRspO4dp1mX
7O6IC+Qxo952+g==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:18:09 2025 by rpki-client