Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: K0h9S5Zxr7tk7/I8qyPNZ1OgVHR1ySQ1H08dPNbLRAg=
Subject key identifier: 9A:CD:81:99:BA:24:B0:F6:2E:EC:D5:62:54:D9:12:56:09:D0:A8:13
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 0198D47432EBC3FD67A2ABCCAE668D3CC601
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 1085
Signing time: Sat 23 Aug 2025 01:04:01 +0000
Manifest this update: Sat 23 Aug 2025 01:04:01 +0000
Manifest next update: Sun 24 Aug 2025 01:04:01 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: 6eLAjHSugtvnfnBaXNmcVJh4xzyWs9MDJmFmukNzD9s=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:32:eb:c3:fd:67:a2:ab:cc:ae:66:8d:3c:c6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Aug 23 01:04:01 2025 GMT
Not After : Aug 24 01:04:01 2025 GMT
Subject: CN=9acd8199ba24b0f62eecd56254d9125609d0a813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:58:4d:84:00:85:f5:90:be:ce:47:30:13:97:
1a:ff:a3:ef:d9:21:24:2f:67:ea:66:1e:d9:4a:e2:
37:21:f6:04:4d:f8:34:2c:d8:dc:ae:1a:83:3f:0d:
2a:d1:d7:a9:5b:30:44:46:14:3f:82:d4:c8:61:4e:
4a:41:4e:3c:72:46:14:16:5b:7b:3a:1d:5b:83:7b:
d2:86:00:46:6a:fd:a5:9d:2d:79:20:a5:17:41:75:
84:0f:b3:62:aa:ed:14:63:b2:bb:09:6a:87:b7:83:
1b:0e:fa:ad:81:98:d8:40:50:d9:33:92:91:b9:3f:
1d:38:ee:22:57:64:76:6d:72:5a:17:f1:c3:a0:0c:
30:bd:af:8a:5d:b6:25:a7:b9:a5:82:f5:fd:56:cb:
d9:f3:6a:08:eb:e7:ca:72:da:da:ab:93:9e:11:11:
8a:ae:37:89:da:5a:41:0b:70:79:a3:ab:e6:ce:16:
ed:83:e0:e3:2a:ae:c1:00:a3:3e:46:4f:0c:f2:cb:
d6:9b:e0:59:6f:37:81:d9:51:38:41:b2:1a:ef:bf:
35:6e:d4:95:12:b5:3e:81:0d:11:09:af:dc:bd:f0:
f5:b6:8b:ac:53:39:98:4d:67:e0:a1:5f:84:16:7b:
60:78:4a:9c:c5:d7:0a:1b:5f:64:56:18:40:2c:b8:
9b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:CD:81:99:BA:24:B0:F6:2E:EC:D5:62:54:D9:12:56:09:D0:A8:13
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:02:ee:a4:09:b6:c3:35:5c:67:d5:f9:15:74:fa:fe:c0:dc:
1c:2d:84:92:06:e5:9c:4c:8c:b2:3c:b6:7e:55:99:09:5e:fa:
74:e3:21:2c:cc:4e:ba:6c:c1:51:34:8e:d0:b6:75:e0:76:55:
65:e9:21:05:4b:19:ed:9e:1f:51:28:ea:5c:fa:35:31:a3:3a:
1f:a8:71:43:90:fa:a5:51:b1:58:94:43:0c:de:a9:96:13:3b:
a3:9a:78:29:64:36:10:b5:ac:17:e4:ef:f8:d0:88:75:34:fb:
32:58:f4:89:83:e0:ee:b4:e4:87:46:76:07:5e:c9:ea:24:ea:
41:95:9a:7f:0f:68:76:82:9d:f6:fc:fd:38:4e:1b:0a:19:2d:
7a:d5:e0:7d:b6:86:f4:fc:27:25:68:1e:a3:19:c7:c8:32:83:
8c:14:2b:52:74:43:0f:2f:81:6c:85:0f:e7:80:41:8b:dd:41:
21:60:13:8e:cd:92:a0:6a:6a:79:a3:e5:a7:53:db:fb:bd:8c:
94:7b:37:c1:4c:bc:32:0c:e8:fe:60:b0:5a:fe:f8:03:41:c8:
81:11:51:c9:4a:9f:0f:e0:6c:0d:9e:8d:5f:4b:77:b9:39:f2:
13:b0:d5:69:04:89:dd:13:0e:9b:51:fa:77:21:6e:3f:97:ba:
3e:df:ac:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUdDLrw/1noqvMrmaNPMYBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0Mjg0ZDY3YzlhYmFmNmZhOGZlYTYxNDJhNWIyNTU4Yzlj
YmNmNzQwHhcNMjUwODIzMDEwNDAxWhcNMjUwODI0MDEwNDAxWjAzMTEwLwYDVQQD
Eyg5YWNkODE5OWJhMjRiMGY2MmVlY2Q1NjI1NGQ5MTI1NjA5ZDBhODEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1hNhACF9ZC+zkcwE5ca/6Pv2SEk
L2fqZh7ZSuI3IfYETfg0LNjcrhqDPw0q0depWzBERhQ/gtTIYU5KQU48ckYUFlt7
Oh1bg3vShgBGav2lnS15IKUXQXWED7Niqu0UY7K7CWqHt4MbDvqtgZjYQFDZM5KR
uT8dOO4iV2R2bXJaF/HDoAwwva+KXbYlp7mlgvX9VsvZ82oI6+fKctraq5OeERGK
rjeJ2lpBC3B5o6vmzhbtg+DjKq7BAKM+Rk8M8svWm+BZbzeB2VE4QbIa7781btSV
ErU+gQ0RCa/cvfD1tousUzmYTWfgoV+EFntgeEqcxdcKG19kVhhALLibIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJrNgZm6JLD2LuzVYlTZElYJ0KgTMB8GA1UdIwQY
MBaAFIQoTWfJq69vqP6mFCpbJVjJy890MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaENoTlo4bXJyMi1vX3FZVUtsc2xXTW5MejNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zMGFmNDYtMjdlZC00NDgyLTg0MGUt
NjVmODU2ZjEyNDllLzEvaENoTlo4bXJyMi1vX3FZVUtsc2xXTW5MejNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8zMGFmNDYtMjdlZC00NDgyLTg0MGUtNjVmODU2ZjEyNDll
LzEvaENoTlo4bXJyMi1vX3FZVUtsc2xXTW5MejNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJwLupAm2
wzVcZ9X5FXT6/sDcHC2EkgblnEyMsjy2flWZCV76dOMhLMxOumzBUTSO0LZ14HZV
ZekhBUsZ7Z4fUSjqXPo1MaM6H6hxQ5D6pVGxWJRDDN6plhM7o5p4KWQ2ELWsF+Tv
+NCIdTT7Mlj0iYPg7rTkh0Z2B17J6iTqQZWafw9odoKd9vz9OE4bChktetXgfbaG
9PwnJWgeoxnHyDKDjBQrUnRDDy+BbIUP54BBi91BIWATjs2SoGpqeaPlp1Pb+72M
lHs3wUy8Mgzo/mCwWv74A0HIgRFRyUqfD+BsDZ6NX0t3uTnyE7DVaQSJ3RMOm1H6
dyFuP5e6Pt+sTQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:40 2025 by rpki-client