Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
File: HpKJoBWvREH4-d9MjFXpiykogc8.mft (raw, json)
Hash identifier: xsRzDklsSVpGnUbsdO+hKJt/nYWGuv3vNadZ/ttFOAw=
Subject key identifier: 76:4E:32:8C:BA:CC:C9:B4:7A:30:0F:C3:5A:20:58:9E:28:70:02:6B
Authority key identifier: 1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
Certificate issuer: /CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Certificate serial: 019894B750982D84ECEA9EC469579BBBFD0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
Manifest number: 1627
Signing time: Sun 10 Aug 2025 16:01:38 +0000
Manifest this update: Sun 10 Aug 2025 16:01:38 +0000
Manifest next update: Mon 11 Aug 2025 16:01:38 +0000
Files and hashes: 1: HpKJoBWvREH4-d9MjFXpiykogc8.crl (hash: szjorrasARYHIBXCT7IYHb8EOU8ssUW4NmZfqfZzS3s=)
2: NgTdB5AEPD4DAHaTIZRq0754ZYU.roa (hash: X0ljVmj2cD5On812FnYT4pXdeEcEXod3j6IYZXkhhSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b7:50:98:2d:84:ec:ea:9e:c4:69:57:9b:bb:fd:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9289a015af4441f8f9df4c8c55e98b292881cf
Validity
Not Before: Aug 10 16:01:38 2025 GMT
Not After : Aug 11 16:01:38 2025 GMT
Subject: CN=764e328cbaccc9b47a300fc35a20589e2870026b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:cd:a3:91:80:26:8f:b0:eb:84:5f:db:cb:88:
83:1f:1b:f1:af:c5:ed:90:31:c5:3a:d3:94:aa:1f:
b6:f3:03:4b:3a:47:78:69:23:93:57:13:b8:a5:59:
5b:b9:f4:26:3f:c4:14:fd:70:bd:8d:04:dd:e6:9e:
13:d7:d6:e8:98:91:da:1e:f6:6f:15:54:a6:7a:69:
80:f3:c2:79:c3:18:f1:c2:c9:54:a9:e8:12:e6:68:
fa:4a:a3:ae:52:78:bb:50:5c:3f:14:69:f8:3e:09:
5d:95:b3:e7:58:d4:dd:b4:04:22:dd:53:03:c4:64:
06:22:03:f8:36:79:5f:d1:e8:84:3a:e2:7d:b1:01:
c6:d1:f6:c2:bc:ae:f6:2b:2a:52:c9:4f:50:0e:c8:
4f:20:c7:5d:b6:98:12:82:02:bd:7b:71:56:e8:b5:
76:d5:e3:95:e4:95:d3:63:ee:bc:7b:37:86:89:9a:
bb:f6:5d:7f:96:13:6b:c1:ad:ca:83:a2:fe:15:ee:
42:31:2a:1c:e9:e2:ad:e5:06:19:12:26:08:b9:64:
cc:a5:66:fc:20:07:f9:f4:4d:4c:2d:c1:93:29:91:
dc:14:a2:a9:ec:1c:b2:15:b7:29:e4:bd:f2:27:dc:
ad:f6:26:3c:99:2b:01:13:a6:03:16:fa:a9:ab:89:
92:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4E:32:8C:BA:CC:C9:B4:7A:30:0F:C3:5A:20:58:9E:28:70:02:6B
X509v3 Authority Key Identifier:
keyid:1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:25:c6:39:3b:1b:4b:a6:e6:53:06:5d:04:8a:4a:a8:12:c8:
da:74:ed:0a:87:fc:5a:4e:5d:68:66:42:28:21:2f:fc:1d:22:
b4:af:8c:4a:68:11:df:38:b0:33:0d:b7:98:89:72:70:9d:ce:
0b:67:75:0c:07:e4:03:ad:b8:11:ef:34:ea:7f:09:05:4d:67:
fc:6a:7f:db:0d:81:57:96:78:60:19:17:e3:31:0a:47:af:eb:
ab:2c:ed:f4:bc:32:37:c0:8e:15:c2:6c:b2:cc:9c:c9:10:a6:
73:f4:c5:d9:5c:05:73:82:51:28:52:f2:07:e0:db:45:e2:70:
1e:fe:48:72:32:e7:1a:71:f4:c2:19:36:b5:38:3b:dd:fe:a7:
e7:10:0a:6f:5e:46:31:9a:db:15:54:64:cb:ea:ca:0f:33:69:
e7:c1:4e:31:da:ed:8a:5f:b7:c4:77:9e:22:f1:93:78:38:16:
bf:29:0e:97:b4:b4:09:25:d9:49:a1:d1:f9:07:78:f0:b8:b1:
e5:a7:8e:47:12:58:88:2b:3c:b3:e4:fd:89:ff:26:52:c6:7d:
0c:af:9f:81:fc:d8:c8:e4:eb:0f:7e:55:8a:ee:6b:18:2d:e2:
1f:23:4c:41:e1:92:de:e2:66:66:af:33:98:68:c0:19:7b:02:
03:c4:c7:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiUt1CYLYTs6p7EaVebu/0NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOTI4OWEwMTVhZjQ0NDFmOGY5ZGY0YzhjNTVlOThiMjky
ODgxY2YwHhcNMjUwODEwMTYwMTM4WhcNMjUwODExMTYwMTM4WjAzMTEwLwYDVQQD
Eyg3NjRlMzI4Y2JhY2NjOWI0N2EzMDBmYzM1YTIwNTg5ZTI4NzAwMjZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA682jkYAmj7DrhF/by4iDHxvxr8Xt
kDHFOtOUqh+28wNLOkd4aSOTVxO4pVlbufQmP8QU/XC9jQTd5p4T19bomJHaHvZv
FVSmemmA88J5wxjxwslUqegS5mj6SqOuUni7UFw/FGn4PgldlbPnWNTdtAQi3VMD
xGQGIgP4Nnlf0eiEOuJ9sQHG0fbCvK72KypSyU9QDshPIMddtpgSggK9e3FW6LV2
1eOV5JXTY+68ezeGiZq79l1/lhNrwa3Kg6L+Fe5CMSoc6eKt5QYZEiYIuWTMpWb8
IAf59E1MLcGTKZHcFKKp7ByyFbcp5L3yJ9yt9iY8mSsBE6YDFvqpq4mSpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZOMoy6zMm0ejAPw1ogWJ4ocAJrMB8GA1UdIwQY
MBaAFB6SiaAVr0RB+PnfTIxV6YspKIHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBLSm9CV3ZSRUg0LWQ5TWpGWHBpeWtvZ2M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yOTE0NjMtOTFjYy00NzA0LTk1Mjgt
Njk3OTRmMDUwMjc2LzEvSHBLSm9CV3ZSRUg0LWQ5TWpGWHBpeWtvZ2M4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC8yOTE0NjMtOTFjYy00NzA0LTk1MjgtNjk3OTRmMDUwMjc2
LzEvSHBLSm9CV3ZSRUg0LWQ5TWpGWHBpeWtvZ2M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtSXGOTsb
S6bmUwZdBIpKqBLI2nTtCof8Wk5daGZCKCEv/B0itK+MSmgR3ziwMw23mIlycJ3O
C2d1DAfkA624Ee806n8JBU1n/Gp/2w2BV5Z4YBkX4zEKR6/rqyzt9LwyN8COFcJs
ssycyRCmc/TF2VwFc4JRKFLyB+DbReJwHv5IcjLnGnH0whk2tTg73f6n5xAKb15G
MZrbFVRky+rKDzNp58FOMdrtil+3xHeeIvGTeDgWvykOl7S0CSXZSaHR+Qd48Lix
5aeORxJYiCs8s+T9if8mUsZ9DK+fgfzYyOTrD35Viu5rGC3iHyNMQeGS3uJmZq8z
mGjAGXsCA8THxg==
-----END CERTIFICATE-----
Generated at Sun Aug 10 19:00:11 2025 by rpki-client