Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: cUz09K3eWMhz5QPJPOmJKtPQuTxW1hkx4798CtYzc1Y=
Subject key identifier: 60:E4:16:48:61:EA:9E:2D:C8:F2:70:ED:FF:34:DA:A7:CF:9C:D7:25
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 0198D8F2EEF385DD5D240E52CBC2CE6B81DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 1398
Signing time: Sat 23 Aug 2025 22:00:56 +0000
Manifest this update: Sat 23 Aug 2025 22:00:56 +0000
Manifest next update: Sun 24 Aug 2025 22:00:56 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: kZqeCsbwK97moiEYIOCEvyZyJopxu4Nim+1n8vvrBcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:f2:ee:f3:85:dd:5d:24:0e:52:cb:c2:ce:6b:81:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: Aug 23 22:00:56 2025 GMT
Not After : Aug 24 22:00:56 2025 GMT
Subject: CN=60e4164861ea9e2dc8f270edff34daa7cf9cd725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f4:42:84:fc:d8:13:46:00:8a:24:da:77:13:
19:da:50:82:75:9f:a1:73:67:60:44:7a:6f:28:07:
44:2f:67:77:1d:af:f3:0c:de:e8:53:b7:4d:7a:a9:
b0:1b:d9:46:b2:33:4a:c9:3d:4c:36:32:8a:75:c1:
37:a1:64:0d:dd:85:27:c8:75:12:09:9c:c6:e4:12:
a2:d7:6d:e1:f7:5a:3e:3d:61:89:55:60:43:5a:3c:
17:8d:60:57:3a:9b:2f:de:2f:67:80:63:94:cb:78:
56:27:8b:51:70:15:79:55:eb:1a:f3:80:f2:b0:02:
16:f7:f9:43:0e:39:dc:87:2d:4e:2e:1e:87:3c:f9:
d2:62:bd:4f:2f:9e:02:30:73:fd:95:02:a3:1f:21:
b1:2c:28:96:c1:55:39:66:5f:91:b4:aa:e8:8c:f3:
70:91:3a:bd:41:27:c9:54:1f:00:bc:98:6e:db:d4:
62:8f:e4:d5:fa:8a:d1:cc:08:bd:13:2a:3b:db:96:
cb:49:ad:67:d7:91:8a:7d:ba:ba:c4:a0:fd:78:36:
5e:e1:a0:77:94:71:d7:90:43:3e:67:2f:0c:fb:32:
f7:4c:4b:4e:d0:98:86:fe:ad:e0:23:ac:d4:22:7b:
5a:1e:bb:ac:00:34:ac:dc:a2:24:d5:ca:8e:2e:92:
e4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E4:16:48:61:EA:9E:2D:C8:F2:70:ED:FF:34:DA:A7:CF:9C:D7:25
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:3e:3c:92:69:c1:86:53:7f:c1:9e:e5:e5:cc:f8:6d:a1:fe:
ef:cc:07:a1:b8:bf:38:71:f4:1e:a3:47:08:74:51:b0:26:a0:
4d:71:db:34:7f:cd:1b:9f:6e:f4:c4:41:20:43:23:f3:cc:27:
cf:93:ec:33:4e:ff:28:31:da:8f:37:30:35:83:b9:16:f0:6c:
5f:e3:46:09:36:ba:4e:cf:c3:f4:c6:f4:ea:a1:8e:07:12:5f:
d2:0a:36:23:6e:e7:7c:e7:77:bf:86:9d:d4:00:4c:5d:2d:0e:
ff:23:d0:79:2e:e0:10:2c:c0:95:75:3b:79:1a:44:ed:2e:73:
b8:e9:fe:f7:37:f8:21:d8:f8:1c:d4:c5:10:b5:f9:0c:19:32:
81:ee:c7:66:72:3b:00:a2:4e:92:de:c4:58:87:78:74:67:f9:
b6:86:d2:cb:c2:f3:50:96:09:84:ad:36:a7:61:d3:21:59:40:
6d:18:82:93:1b:05:b2:7e:d7:c5:00:82:2c:74:3e:7a:22:97:
61:b2:e3:26:8d:5b:e3:b2:57:52:a9:d9:09:e6:7f:a5:d0:57:
51:30:c7:f7:f4:11:c7:1c:16:fb:e9:d9:62:24:29:6b:fc:b7:
84:ca:b3:90:d8:24:b1:0a:03:41:14:40:bb:ac:41:26:15:ed:
5e:90:9a:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjY8u7zhd1dJA5Sy8LOa4HfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMGMzOTFlZGQ1Y2JlZTFhMTRlMGFiM2Y5M2Q4MzRmYWU1
MTFlNGQwHhcNMjUwODIzMjIwMDU2WhcNMjUwODI0MjIwMDU2WjAzMTEwLwYDVQQD
Eyg2MGU0MTY0ODYxZWE5ZTJkYzhmMjcwZWRmZjM0ZGFhN2NmOWNkNzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvRChPzYE0YAiiTadxMZ2lCCdZ+h
c2dgRHpvKAdEL2d3Ha/zDN7oU7dNeqmwG9lGsjNKyT1MNjKKdcE3oWQN3YUnyHUS
CZzG5BKi123h91o+PWGJVWBDWjwXjWBXOpsv3i9ngGOUy3hWJ4tRcBV5Vesa84Dy
sAIW9/lDDjnchy1OLh6HPPnSYr1PL54CMHP9lQKjHyGxLCiWwVU5Zl+RtKrojPNw
kTq9QSfJVB8AvJhu29Rij+TV+orRzAi9Eyo725bLSa1n15GKfbq6xKD9eDZe4aB3
lHHXkEM+Zy8M+zL3TEtO0JiG/q3gI6zUIntaHrusADSs3KIk1cqOLpLkywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGDkFkhh6p4tyPJw7f802qfPnNclMB8GA1UdIwQY
MBaAFB0MOR7dXL7hoU4Ks/k9g0+uUR5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQt
MGY4OTllMGMyMGNkLzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQtMGY4OTllMGMyMGNk
LzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnz48kmnB
hlN/wZ7l5cz4baH+78wHobi/OHH0HqNHCHRRsCagTXHbNH/NG59u9MRBIEMj88wn
z5PsM07/KDHajzcwNYO5FvBsX+NGCTa6Ts/D9Mb06qGOBxJf0go2I27nfOd3v4ad
1ABMXS0O/yPQeS7gECzAlXU7eRpE7S5zuOn+9zf4Idj4HNTFELX5DBkyge7HZnI7
AKJOkt7EWId4dGf5tobSy8LzUJYJhK02p2HTIVlAbRiCkxsFsn7XxQCCLHQ+eiKX
YbLjJo1b47JXUqnZCeZ/pdBXUTDH9/QRxxwW++nZYiQpa/y3hMqzkNgksQoDQRRA
u6xBJhXtXpCaeA==
-----END CERTIFICATE-----
Generated at Sun Aug 24 01:33:09 2025 by rpki-client