Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
File: HKy3fiC3gUfUf4OUKU8Re1yE714.mft (raw, json)
Hash identifier: xpilR5SuB1aozXN3kyP5WVAubFQsLGcqTEysOousWzU=
Subject key identifier: 96:21:0D:F7:08:5D:82:BC:BC:25:A5:FC:51:8D:5D:CA:E4:AA:2C:3E
Authority key identifier: 1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
Certificate issuer: /CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Certificate serial: 0199FDD958801E51263F5290016EEC1FB6AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
Manifest number: 1195
Signing time: Sun 19 Oct 2025 19:01:43 +0000
Manifest this update: Sun 19 Oct 2025 19:01:43 +0000
Manifest next update: Mon 20 Oct 2025 19:01:43 +0000
Files and hashes: 1: HKy3fiC3gUfUf4OUKU8Re1yE714.crl (hash: OA9Le+YvQ4vKmUfhFa5bStt4Y2ss3FxwRAjKTKA9CLU=)
2: OoGFPfomo3cQZiCz4qsidreDjCc.roa (hash: nmvopa2kUZd9MIXgbeUNiD86irOgkmmL30is65pmYug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:58:80:1e:51:26:3f:52:90:01:6e:ec:1f:b6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cacb77e20b78147d47f8394294f117b5c84ef5e
Validity
Not Before: Oct 19 19:01:43 2025 GMT
Not After : Oct 20 19:01:43 2025 GMT
Subject: CN=96210df7085d82bcbc25a5fc518d5dcae4aa2c3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f1:24:ce:01:00:a4:1f:3a:83:54:00:e0:18:
71:5a:36:17:77:d2:34:a0:54:9d:48:a0:8a:4b:9d:
06:f7:7c:e5:7f:c1:47:ee:80:64:42:a1:bc:0c:6e:
64:f5:3a:3a:2e:30:df:74:c9:d9:8c:59:ee:24:19:
b8:a4:e2:e4:f8:40:ac:d7:2b:ed:bf:20:e0:f2:8f:
fc:00:ac:64:b6:21:82:df:a1:15:b4:40:ed:b4:03:
67:92:ed:b7:33:06:2b:4f:74:bf:9e:ec:ae:87:fc:
db:d6:6e:dd:75:f3:1f:5c:24:7e:af:93:5f:b5:01:
8f:4e:28:58:ea:c7:dd:b2:f7:15:4d:77:c9:1c:56:
cf:91:e9:b7:3a:64:08:0f:73:11:0b:c1:8e:46:63:
18:a7:01:60:aa:ae:30:8e:d1:8a:a2:e7:a7:f4:80:
3a:3c:eb:dd:33:85:13:05:64:dd:d3:2d:8f:79:14:
89:fa:2c:c5:da:0c:0e:da:b8:1f:56:eb:99:80:bf:
58:d5:ec:fa:b7:83:44:1f:ea:a2:97:34:36:90:00:
2e:79:7e:87:d6:bc:3c:98:14:6e:f4:cf:76:19:bf:
71:02:a8:b9:6a:51:61:6d:49:49:35:e6:49:33:2f:
49:31:cb:e5:7a:fd:1d:9a:7a:83:72:a0:24:c7:96:
c8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:21:0D:F7:08:5D:82:BC:BC:25:A5:FC:51:8D:5D:CA:E4:AA:2C:3E
X509v3 Authority Key Identifier:
keyid:1C:AC:B7:7E:20:B7:81:47:D4:7F:83:94:29:4F:11:7B:5C:84:EF:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKy3fiC3gUfUf4OUKU8Re1yE714.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/417ab2-fcb3-405d-a0c8-5325a5200ba9/1/HKy3fiC3gUfUf4OUKU8Re1yE714.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:32:04:06:06:34:2d:33:51:9b:85:7f:b1:94:44:93:94:c9:
45:4f:88:29:c0:bb:e7:d4:3e:c3:cb:ab:38:7e:c7:b6:5c:46:
17:82:eb:8e:59:9b:c9:32:c8:1e:0a:12:e4:d0:b2:6c:1b:2d:
eb:2a:9a:1a:21:70:b0:4e:13:22:52:86:28:f3:8e:e9:d3:60:
0a:82:10:c4:d8:a7:2c:c4:e6:71:6f:30:d8:60:e5:59:e4:ae:
44:5f:9f:db:1f:78:73:27:e0:b1:d4:3c:ea:a6:a3:c0:0e:82:
e9:c3:69:b3:26:4c:4c:b5:9a:32:c3:df:e3:43:66:7d:f0:09:
c9:9c:d9:56:64:5a:1d:47:cd:17:69:44:98:34:35:85:69:f2:
85:ac:bc:10:2d:29:63:cc:45:a3:67:11:77:df:b5:63:91:6d:
49:a7:53:ff:8c:7a:0d:f4:4a:d4:db:8d:04:47:16:95:33:d1:
96:38:8a:19:73:71:6c:3d:b5:48:f1:bf:0b:21:c7:25:fd:e3:
64:69:f2:e5:50:fd:2c:d3:f8:d0:3e:06:10:65:99:3a:62:e6:
8c:25:27:15:7c:92:0d:68:fd:56:c2:8c:d9:1a:db:ac:41:91:
0e:29:57:74:1a:33:79:aa:4a:68:02:0e:b9:a6:a7:a3:90:1d:
a6:fb:2d:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92ViAHlEmP1KQAW7sH7avMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYWNiNzdlMjBiNzgxNDdkNDdmODM5NDI5NGYxMTdiNWM4
NGVmNWUwHhcNMjUxMDE5MTkwMTQzWhcNMjUxMDIwMTkwMTQzWjAzMTEwLwYDVQQD
Eyg5NjIxMGRmNzA4NWQ4MmJjYmMyNWE1ZmM1MThkNWRjYWU0YWEyYzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4PEkzgEApB86g1QA4BhxWjYXd9I0
oFSdSKCKS50G93zlf8FH7oBkQqG8DG5k9To6LjDfdMnZjFnuJBm4pOLk+ECs1yvt
vyDg8o/8AKxktiGC36EVtEDttANnku23MwYrT3S/nuyuh/zb1m7ddfMfXCR+r5Nf
tQGPTihY6sfdsvcVTXfJHFbPkem3OmQID3MRC8GORmMYpwFgqq4wjtGKouen9IA6
POvdM4UTBWTd0y2PeRSJ+izF2gwO2rgfVuuZgL9Y1ez6t4NEH+qilzQ2kAAueX6H
1rw8mBRu9M92Gb9xAqi5alFhbUlJNeZJMy9JMcvlev0dmnqDcqAkx5bI0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJYhDfcIXYK8vCWl/FGNXcrkqiw+MB8GA1UdIwQY
MBaAFByst34gt4FH1H+DlClPEXtchO9eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEt5M2ZpQzNnVWZVZjRPVUtVOFJlMXlFNzE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80MTdhYjItZmNiMy00MDVkLWEwYzgt
NTMyNWE1MjAwYmE5LzEvSEt5M2ZpQzNnVWZVZjRPVUtVOFJlMXlFNzE0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy80MTdhYjItZmNiMy00MDVkLWEwYzgtNTMyNWE1MjAwYmE5
LzEvSEt5M2ZpQzNnVWZVZjRPVUtVOFJlMXlFNzE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsjIEBgY0
LTNRm4V/sZREk5TJRU+IKcC759Q+w8urOH7HtlxGF4LrjlmbyTLIHgoS5NCybBst
6yqaGiFwsE4TIlKGKPOO6dNgCoIQxNinLMTmcW8w2GDlWeSuRF+f2x94cyfgsdQ8
6qajwA6C6cNpsyZMTLWaMsPf40NmffAJyZzZVmRaHUfNF2lEmDQ1hWnyhay8EC0p
Y8xFo2cRd9+1Y5FtSadT/4x6DfRK1NuNBEcWlTPRljiKGXNxbD21SPG/CyHHJf3j
ZGny5VD9LNP40D4GEGWZOmLmjCUnFXySDWj9VsKM2RrbrEGRDilXdBozeapKaAIO
uaano5AdpvstEw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 23:39:31 2025 by rpki-client