Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: 2fiA9EsHLqQAt9hvNV5gDtiFfGKCJH0I9qByb94XQQ8=
Subject key identifier: B8:4A:C3:6D:CA:1C:0F:3F:E5:F1:00:D5:96:25:BD:57:FF:B3:A1:92
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 0198D4A850BADB49E54A0B8FDE4C8B2A6EE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 13BC
Signing time: Sat 23 Aug 2025 02:00:57 +0000
Manifest this update: Sat 23 Aug 2025 02:00:57 +0000
Manifest next update: Sun 24 Aug 2025 02:00:57 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: zoUTPTlPf5xHMM3jSnf2InmBBobtChVbduSzTwsxC/4=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:50:ba:db:49:e5:4a:0b:8f:de:4c:8b:2a:6e:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Aug 23 02:00:57 2025 GMT
Not After : Aug 24 02:00:57 2025 GMT
Subject: CN=b84ac36dca1c0f3fe5f100d59625bd57ffb3a192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:80:1d:3e:28:e4:52:30:6b:30:0c:ec:51:b8:
de:79:6c:41:e2:89:48:5d:84:d1:51:0e:42:85:5f:
46:33:f0:94:b4:af:99:4a:6d:75:dd:83:a1:03:ac:
ce:4b:cc:45:85:e7:27:d6:58:8f:54:52:05:1a:7a:
fb:b4:1c:71:f1:eb:01:72:00:6a:5c:37:14:7c:89:
f2:b4:5c:91:b3:53:b3:74:13:3c:8c:c5:ad:13:9c:
b7:d3:a7:63:84:63:4f:ae:67:45:1d:06:0d:fc:4f:
1f:f7:99:37:53:35:13:ef:fd:f8:af:f5:b7:e5:a1:
09:86:f0:00:14:41:7f:a2:93:80:cb:18:cb:6a:76:
6f:b5:40:db:70:e7:0a:60:39:30:bf:eb:76:b2:d6:
63:b2:01:07:c4:c3:e4:5c:0e:2b:db:44:75:47:bd:
5d:ca:87:e9:0a:64:aa:75:e4:86:6d:95:cd:b1:a9:
10:bb:b1:72:37:2a:aa:4c:fe:c7:73:b1:09:26:b6:
3d:24:d0:d6:15:5b:86:01:fe:b8:82:1f:33:99:ad:
db:03:ae:fe:b4:f6:ea:84:0d:b9:b8:dc:54:bf:a0:
db:70:0e:66:33:51:ca:86:20:0b:e2:5f:76:67:09:
7f:2b:7e:52:06:be:e5:cf:57:d0:db:ae:94:1b:b0:
93:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4A:C3:6D:CA:1C:0F:3F:E5:F1:00:D5:96:25:BD:57:FF:B3:A1:92
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:95:e3:47:9f:6f:3e:4b:72:73:07:cb:c0:92:c8:7c:ad:32:
94:52:09:6e:0a:66:99:52:fc:3b:29:dc:1d:0c:b6:70:87:c5:
63:53:0b:97:37:3c:e9:fc:cf:6a:33:1a:80:b4:e1:b0:89:4d:
cf:5a:41:ee:2e:22:1e:20:29:94:3b:71:a4:2c:21:df:24:c5:
22:64:31:b1:f7:44:2c:9c:5a:f9:db:3f:dc:e2:55:84:70:b2:
90:68:37:71:2c:ae:96:70:42:62:1f:83:66:11:6c:c7:13:24:
fc:02:3b:5e:c5:b9:c2:98:46:1b:5b:ca:2e:0f:be:f0:62:b7:
bb:e5:1f:ef:12:ee:07:37:9d:4c:ba:b6:b6:8a:15:80:6a:30:
7c:b3:42:ca:4c:26:a5:c4:7a:c0:cf:5c:2b:de:6f:9e:bd:89:
13:04:9f:16:d9:fd:a9:4b:90:fc:ce:df:1d:32:04:aa:44:63:
bd:92:8b:3a:78:b9:4d:64:02:66:9d:a4:a6:5d:61:ec:b2:19:
11:23:37:62:8a:45:5a:17:1e:70:e1:58:7b:5e:53:a4:5e:f7:
61:f1:22:72:b7:dd:14:f6:5d:cb:eb:3c:a1:35:76:b8:64:cf:
44:f9:bc:0a:27:6a:f6:98:a6:26:0a:6a:e7:eb:46:f2:5e:38:
aa:fb:8d:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqFC620nlSguP3kyLKm7hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjN2RkM2M4MTZkODU5NjA4MDQ3MjA1NDM0ODA5NWVkMmI4
NTUxZTUwHhcNMjUwODIzMDIwMDU3WhcNMjUwODI0MDIwMDU3WjAzMTEwLwYDVQQD
EyhiODRhYzM2ZGNhMWMwZjNmZTVmMTAwZDU5NjI1YmQ1N2ZmYjNhMTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoAdPijkUjBrMAzsUbjeeWxB4olI
XYTRUQ5ChV9GM/CUtK+ZSm113YOhA6zOS8xFhecn1liPVFIFGnr7tBxx8esBcgBq
XDcUfInytFyRs1OzdBM8jMWtE5y306djhGNPrmdFHQYN/E8f95k3UzUT7/34r/W3
5aEJhvAAFEF/opOAyxjLanZvtUDbcOcKYDkwv+t2stZjsgEHxMPkXA4r20R1R71d
yofpCmSqdeSGbZXNsakQu7FyNyqqTP7Hc7EJJrY9JNDWFVuGAf64gh8zma3bA67+
tPbqhA25uNxUv6DbcA5mM1HKhiAL4l92Zwl/K35SBr7lz1fQ266UG7CTPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLhKw23KHA8/5fEA1ZYlvVf/s6GSMB8GA1UdIwQY
MBaAFBx908gW2FlggEcgVDSAle0rhVHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzkt
Y2MyY2Q3ZDMxYTI2LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzktY2MyY2Q3ZDMxYTI2
LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZXjR59v
PktycwfLwJLIfK0ylFIJbgpmmVL8OyncHQy2cIfFY1MLlzc86fzPajMagLThsIlN
z1pB7i4iHiAplDtxpCwh3yTFImQxsfdELJxa+ds/3OJVhHCykGg3cSyulnBCYh+D
ZhFsxxMk/AI7XsW5wphGG1vKLg++8GK3u+Uf7xLuBzedTLq2tooVgGowfLNCykwm
pcR6wM9cK95vnr2JEwSfFtn9qUuQ/M7fHTIEqkRjvZKLOni5TWQCZp2kpl1h7LIZ
ESM3YopFWhcecOFYe15TpF73YfEicrfdFPZdy+s8oTV2uGTPRPm8Cidq9pimJgpq
5+tG8l44qvuNNQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:06 2025 by rpki-client