Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json)
Hash identifier: 3kYsfT8S40+YlKFF8E8BYJZwqKvW2D6R8eLOPPTesiA=
Subject key identifier: 93:A5:74:12:96:B9:44:FD:CC:57:D3:8C:24:EC:79:2B:97:FB:78:BA
Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Certificate serial: 019873E229FECFF4F2FC26667D4113E221ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
Manifest number: 13C4
Signing time: Mon 04 Aug 2025 07:00:58 +0000
Manifest this update: Mon 04 Aug 2025 07:00:58 +0000
Manifest next update: Tue 05 Aug 2025 07:00:58 +0000
Files and hashes: 1: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: 0HyadE2Q7Ww6UBLgx9I8J8c5jvQrp1x/E/qwzJa81T0=)
2: jHj1kA03qC8i8hguuEC8ASnj4XQ.roa (hash: 6J5ezyoc/LI46xWXhW/cUUltYyOZg4CBJG0jaVAl1nQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:29:fe:cf:f4:f2:fc:26:66:7d:41:13:e2:21:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060
Validity
Not Before: Aug 4 07:00:58 2025 GMT
Not After : Aug 5 07:00:58 2025 GMT
Subject: CN=93a5741296b944fdcc57d38c24ec792b97fb78ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1b:18:e8:28:df:43:08:b8:e5:87:90:34:c7:
9d:9f:1e:c1:d2:26:98:5a:15:c2:ee:b6:96:cc:8e:
26:bf:0e:db:1c:09:47:9d:ee:3d:b4:e2:48:9b:11:
21:1a:12:61:fc:9b:48:cb:47:73:4c:3b:6d:25:f5:
1f:be:60:1d:0b:83:c9:98:48:92:c5:15:37:5a:d0:
0c:a5:2f:b6:8e:db:a9:df:96:36:78:e3:81:0c:28:
f5:64:24:4e:74:78:89:42:3a:d8:2f:57:46:be:6d:
6b:7f:b6:f1:4a:68:69:14:3e:25:e3:be:2f:49:bd:
d8:55:14:7c:0f:c3:27:47:7f:db:68:ec:2e:ed:1a:
17:ed:41:94:b7:8d:d8:b5:fb:86:e8:86:e9:47:a1:
66:50:dd:d0:ee:3c:60:49:1d:51:14:e2:b0:7b:d5:
df:ef:e5:79:d2:a5:7b:22:68:7b:bf:70:2f:75:57:
ca:fa:f5:e5:b6:a8:6a:60:b6:96:0a:a3:51:73:a5:
2c:53:36:be:00:aa:87:46:a1:68:37:bb:40:e5:b5:
df:0e:90:01:e8:63:79:94:3b:87:8d:33:31:28:49:
2e:16:c3:86:a5:ad:84:4f:09:e6:36:85:9b:82:b0:
74:fc:23:4c:ba:c2:43:b1:a3:cb:1a:72:0d:77:b8:
45:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A5:74:12:96:B9:44:FD:CC:57:D3:8C:24:EC:79:2B:97:FB:78:BA
X509v3 Authority Key Identifier:
keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:84:c3:33:12:fc:09:f8:f2:2f:d1:fd:26:20:37:39:8b:f6:
8f:33:1e:7d:5d:79:ba:d8:57:83:4c:9c:1b:a1:b0:c7:bb:85:
d2:ea:6e:70:8a:a6:4a:a6:b7:dc:27:e2:d7:99:71:2f:36:7f:
11:73:24:cc:53:c4:4d:84:aa:e3:b8:b1:e1:0c:e6:ae:b2:a9:
1e:23:3d:d7:35:44:5f:46:19:94:ff:4e:ff:2f:5c:2a:06:1e:
22:a6:9d:e9:aa:f1:e5:ed:67:e2:c7:ef:0d:0e:71:e3:ec:69:
03:3d:22:9a:40:2f:d4:36:b6:8d:76:5b:d8:6d:da:48:d3:aa:
4e:3e:a7:b0:00:cc:33:50:5d:19:26:2d:7c:7e:52:5f:0c:66:
e9:c9:ac:67:ad:71:1f:b4:e5:de:51:7a:49:8a:16:65:c7:3c:
d9:18:51:b5:2d:7b:ce:4a:69:00:01:6c:b7:42:ec:9b:51:6f:
35:e7:e0:ae:84:c0:f4:d2:af:20:01:df:a8:40:95:e3:ac:ea:
2f:c5:49:bd:4e:64:87:cd:b1:27:b9:d0:92:e1:f6:cb:54:16:
8f:f1:3c:54:d5:87:41:43:26:d6:b5:11:a9:f1:45:fb:e1:ad:
2c:7a:5a:39:73:df:39:72:a5:00:13:a5:cd:b0:53:77:ed:47:
e3:6b:4b:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4in+z/Ty/CZmfUET4iHtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMzNmYjNiNzI1MjBiODE2OWEyOTI4ZDUzODJlNDlkNjc1
YWQwNjAwHhcNMjUwODA0MDcwMDU4WhcNMjUwODA1MDcwMDU4WjAzMTEwLwYDVQQD
Eyg5M2E1NzQxMjk2Yjk0NGZkY2M1N2QzOGMyNGVjNzkyYjk3ZmI3OGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthsY6CjfQwi45YeQNMednx7B0iaY
WhXC7raWzI4mvw7bHAlHne49tOJImxEhGhJh/JtIy0dzTDttJfUfvmAdC4PJmEiS
xRU3WtAMpS+2jtup35Y2eOOBDCj1ZCROdHiJQjrYL1dGvm1rf7bxSmhpFD4l474v
Sb3YVRR8D8MnR3/baOwu7RoX7UGUt43YtfuG6IbpR6FmUN3Q7jxgSR1RFOKwe9Xf
7+V50qV7Imh7v3AvdVfK+vXltqhqYLaWCqNRc6UsUza+AKqHRqFoN7tA5bXfDpAB
6GN5lDuHjTMxKEkuFsOGpa2ETwnmNoWbgrB0/CNMusJDsaPLGnINd7hFcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJOldBKWuUT9zFfTjCTseSuX+3i6MB8GA1UdIwQY
MBaAFBwz+ztyUguBaaKSjVOC5J1nWtBgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MjFlOWUtNTI0My00ZDIwLWI0NDct
OTUwNDU1ODY4MDJlLzEvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS80MjFlOWUtNTI0My00ZDIwLWI0NDctOTUwNDU1ODY4MDJl
LzEvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh4TDMxL8
CfjyL9H9JiA3OYv2jzMefV15uthXg0ycG6Gwx7uF0upucIqmSqa33Cfi15lxLzZ/
EXMkzFPETYSq47ix4QzmrrKpHiM91zVEX0YZlP9O/y9cKgYeIqad6arx5e1n4sfv
DQ5x4+xpAz0imkAv1Da2jXZb2G3aSNOqTj6nsADMM1BdGSYtfH5SXwxm6cmsZ61x
H7Tl3lF6SYoWZcc82RhRtS17zkppAAFst0Lsm1FvNefgroTA9NKvIAHfqECV46zq
L8VJvU5kh82xJ7nQkuH2y1QWj/E8VNWHQUMm1rURqfFF++GtLHpaOXPfOXKlABOl
zbBTd+1H42tL2g==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:08 2025 by rpki-client