Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
File: HdXNKgJh4eYGndd1iU2CbuiDbB4.mft (raw, json)
Hash identifier: S/Mz9pCtaNc2izAQS1YmTcuMdUebxMO1F40JCmonKWI=
Subject key identifier: 02:AD:62:78:DA:66:4D:C3:AF:2E:D6:AE:F4:A3:1D:B0:74:9D:C3:31
Authority key identifier: 1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
Certificate issuer: /CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Certificate serial: 0198D583C30767665C917A21ECDAE968A5F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 06:00:38 +0000
Manifest this update: Sat 23 Aug 2025 06:00:38 +0000
Manifest next update: Sun 24 Aug 2025 06:00:38 +0000
Files and hashes: 1: HdXNKgJh4eYGndd1iU2CbuiDbB4.crl (hash: U804OMIOG3YWnwafW1Ks544UwUYXreT4ysAL4HnZiCU=)
2: Z-7u2MA1CjZD5hYP8TfU-VSZNR8.roa (hash: /80xhWNAq5Vxx5IxhDuQbH3UW7oLWMSaFXrTwbB6FYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:c3:07:67:66:5c:91:7a:21:ec:da:e9:68:a5:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Validity
Not Before: Aug 23 06:00:38 2025 GMT
Not After : Aug 24 06:00:38 2025 GMT
Subject: CN=02ad6278da664dc3af2ed6aef4a31db0749dc331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:16:62:55:2b:e4:44:42:6c:f6:c7:2d:78:2b:
5a:04:82:06:76:98:36:45:af:38:cc:04:55:08:57:
49:c7:01:f2:f6:d7:f0:1a:72:1a:3e:9b:f9:66:57:
f6:e8:c8:a8:7f:0a:61:8e:35:81:08:9e:dc:fe:d2:
60:d7:4b:4f:11:27:31:4f:e1:91:95:02:f2:2a:f1:
20:65:2a:d2:3d:b1:8b:df:25:25:8e:c4:55:03:04:
2e:1e:73:4b:19:22:73:01:ed:0a:28:fb:98:15:d1:
2b:96:68:3a:e6:d5:95:18:dd:5d:04:0e:bd:32:91:
00:00:17:1d:3b:e8:3a:7a:99:3d:4a:a6:d6:90:3d:
3d:84:98:f3:d5:71:cb:c4:a7:3b:db:29:c2:a0:7f:
c1:db:c8:3f:44:e8:3a:4a:44:9c:b3:e2:4a:77:b3:
19:df:0d:ab:c7:76:75:43:5c:88:7d:20:d2:84:9f:
bb:4e:1f:82:eb:cd:9a:2a:02:47:71:77:40:21:8b:
e5:87:e4:2f:99:2e:58:ca:fc:2e:b9:55:88:a4:3a:
d0:11:89:e0:30:c5:7b:0f:b9:ba:3b:dc:6d:60:7a:
6a:5c:bf:35:35:fa:7a:61:21:60:41:ee:e0:1d:1e:
9a:b1:dd:25:4c:bf:8d:48:c9:cc:18:0c:83:c2:08:
ef:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AD:62:78:DA:66:4D:C3:AF:2E:D6:AE:F4:A3:1D:B0:74:9D:C3:31
X509v3 Authority Key Identifier:
keyid:1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:10:57:3a:99:26:73:b3:df:b4:29:94:83:48:cc:60:62:d4:
45:98:00:93:17:1d:0b:7c:c8:9f:5b:97:74:39:70:c3:0c:b4:
e6:1c:8b:46:ac:8b:f0:2f:e6:19:1d:22:53:3a:cc:8b:74:71:
86:e4:80:aa:b7:57:72:b2:a3:03:e2:a0:b9:b5:42:fa:94:1a:
f0:85:ed:ea:d1:18:c3:4a:12:52:dc:40:47:32:1a:c9:95:82:
7e:60:7d:ee:9d:11:4c:01:69:02:01:ba:e0:d1:57:a1:5c:15:
c4:27:82:b1:cb:d0:18:1e:ac:98:9c:49:32:d2:bf:5e:6a:05:
24:11:78:9e:fe:f6:01:ff:27:c4:ef:17:88:b7:fc:84:12:d4:
5a:9c:f3:24:e0:51:5c:31:1f:86:50:0d:4a:e5:de:fb:47:f4:
91:b1:28:bc:96:7f:ce:45:48:40:e7:76:d4:05:16:9a:30:aa:
7d:4a:ca:92:c1:ec:79:52:ac:1f:d5:2e:67:34:49:24:7f:a5:
d9:96:e9:9a:35:a9:96:36:d8:b4:ca:89:b9:df:f9:0f:b7:68:
32:00:eb:f2:22:58:5c:cd:9c:73:cd:b6:85:56:53:cc:69:7b:
ba:43:e6:17:fe:80:32:0c:56:04:ea:1d:4b:ee:4f:8f:56:ed:
9a:63:d1:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg8MHZ2ZckXoh7NrpaKXzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZDVjZDJhMDI2MWUxZTYwNjlkZDc3NTg5NGQ4MjZlZTg4
MzZjMWUwHhcNMjUwODIzMDYwMDM4WhcNMjUwODI0MDYwMDM4WjAzMTEwLwYDVQQD
EygwMmFkNjI3OGRhNjY0ZGMzYWYyZWQ2YWVmNGEzMWRiMDc0OWRjMzMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBZiVSvkREJs9scteCtaBIIGdpg2
Ra84zARVCFdJxwHy9tfwGnIaPpv5Zlf26MiofwphjjWBCJ7c/tJg10tPEScxT+GR
lQLyKvEgZSrSPbGL3yUljsRVAwQuHnNLGSJzAe0KKPuYFdErlmg65tWVGN1dBA69
MpEAABcdO+g6epk9SqbWkD09hJjz1XHLxKc72ynCoH/B28g/ROg6SkScs+JKd7MZ
3w2rx3Z1Q1yIfSDShJ+7Th+C682aKgJHcXdAIYvlh+QvmS5YyvwuuVWIpDrQEYng
MMV7D7m6O9xtYHpqXL81Nfp6YSFgQe7gHR6asd0lTL+NSMnMGAyDwgjvewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAKtYnjaZk3Dry7WrvSjHbB0ncMxMB8GA1UdIwQY
MBaAFB3VzSoCYeHmBp3XdYlNgm7og2weMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGRYTktnSmg0ZVlHbmRkMWlVMkNidWlEYkI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80ZmU5ODMtNzE1Mi00OTMzLTlmMzYt
ZDg2Y2FkZDYxMGI4LzEvSGRYTktnSmg0ZVlHbmRkMWlVMkNidWlEYkI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi80ZmU5ODMtNzE1Mi00OTMzLTlmMzYtZDg2Y2FkZDYxMGI4
LzEvSGRYTktnSmg0ZVlHbmRkMWlVMkNidWlEYkI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqhBXOpkm
c7PftCmUg0jMYGLURZgAkxcdC3zIn1uXdDlwwwy05hyLRqyL8C/mGR0iUzrMi3Rx
huSAqrdXcrKjA+KgubVC+pQa8IXt6tEYw0oSUtxARzIayZWCfmB97p0RTAFpAgG6
4NFXoVwVxCeCscvQGB6smJxJMtK/XmoFJBF4nv72Af8nxO8XiLf8hBLUWpzzJOBR
XDEfhlANSuXe+0f0kbEovJZ/zkVIQOd21AUWmjCqfUrKksHseVKsH9UuZzRJJH+l
2ZbpmjWpljbYtMqJud/5D7doMgDr8iJYXM2cc822hVZTzGl7ukPmF/6AMgxWBOod
S+5Pj1btmmPRdQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:02:47 2025 by rpki-client