Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json)
Hash identifier: R80PATthig/WLwxBebjgCUj309qEf24DvFJu6GmeAbM=
Subject key identifier: 23:F5:81:D9:54:F9:8C:23:9B:A4:53:B0:50:85:C4:75:4A:10:E1:A8
Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Certificate serial: 0198D40488CAC83B61A30A368939EB86F433
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
Manifest number: 0F20
Signing time: Fri 22 Aug 2025 23:02:03 +0000
Manifest this update: Fri 22 Aug 2025 23:02:03 +0000
Manifest next update: Sat 23 Aug 2025 23:02:03 +0000
Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: QG/45omvRKVksoILYRkBFHnb2eh7hFEGPjyv+sfD7PM=)
2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:88:ca:c8:3b:61:a3:0a:36:89:39:eb:86:f4:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7
Validity
Not Before: Aug 22 23:02:03 2025 GMT
Not After : Aug 23 23:02:03 2025 GMT
Subject: CN=23f581d954f98c239ba453b05085c4754a10e1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b8:bb:58:0f:e7:3d:fc:e8:0d:71:22:87:a7:
69:83:c0:76:7f:07:97:b2:e5:e6:e6:b4:6f:71:7b:
c6:f6:a9:d6:e4:07:17:bc:f3:3e:89:63:c1:34:ab:
e1:d2:10:c3:bf:d5:1d:cb:d0:f1:16:a3:6d:a4:5f:
d7:9d:01:b1:be:6d:7f:7b:82:b2:e6:44:9f:4e:c5:
9f:d1:56:ee:9e:d5:16:8b:1e:68:41:49:b3:42:e5:
c7:18:2d:5f:ab:5e:43:14:6a:58:26:f3:e4:c2:01:
0c:e3:5b:d4:c7:a4:0e:bb:84:f9:0a:01:a9:46:9b:
a2:bb:c4:03:70:99:3c:f2:b0:b7:d1:e6:0a:f6:81:
b1:7f:85:f4:23:13:0c:7b:7a:64:3f:41:8e:3a:fc:
74:4f:ac:27:2d:d7:88:40:c1:ee:9b:78:d7:14:9d:
90:89:cd:93:ce:66:d2:de:a6:fd:e5:d1:d2:f7:aa:
3f:d3:bf:22:2d:41:d7:60:2d:c0:82:b4:da:5e:be:
96:77:0e:02:b8:27:31:e6:f0:97:c3:e0:f6:62:16:
5c:41:e8:8d:01:22:fd:7b:85:b3:19:a3:c5:0d:29:
3d:74:47:f5:a4:bb:a1:b0:f1:b6:6a:42:14:ad:47:
71:84:fe:27:3f:0c:19:e3:48:0a:e2:9b:2f:4a:f5:
12:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F5:81:D9:54:F9:8C:23:9B:A4:53:B0:50:85:C4:75:4A:10:E1:A8
X509v3 Authority Key Identifier:
keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:be:16:a2:6f:22:da:72:fb:f3:1e:70:2b:da:5e:4e:36:10:
78:e6:f9:5e:46:16:2b:b1:ba:65:34:50:fb:ef:52:f9:fe:33:
91:80:4c:40:b5:71:f4:fa:a3:20:ef:bd:33:ce:f0:7f:02:40:
4e:9b:d9:5e:2f:03:2f:81:0d:34:22:e2:dd:3e:7e:03:b6:e7:
23:e4:99:f3:08:f3:f4:06:c4:3b:40:a9:84:4c:34:ea:c6:96:
60:95:ec:b5:8b:97:76:07:dc:63:c5:ae:8a:dd:a6:4a:84:f9:
23:1a:7b:5b:53:38:fb:b2:7b:7d:7d:e1:0f:d2:48:66:a2:f5:
35:37:bd:05:15:b5:93:fa:9c:33:65:af:c6:ee:09:0f:fc:a0:
17:a1:aa:9d:39:34:8d:14:3d:88:d4:a9:c6:9f:de:3f:f6:15:
3b:cc:5e:3c:80:26:a0:53:8e:b2:f4:ea:ba:1b:0d:ed:96:27:
76:5f:f9:55:b4:4a:28:19:19:b7:54:1a:f9:2a:f7:a5:8b:3f:
7b:24:59:a4:a7:dc:ab:15:d1:bc:f6:61:58:e8:15:85:fd:87:
21:f3:d8:73:f8:b9:38:d1:a3:a1:c1:09:2e:0d:17:6e:1b:ba:
f7:56:2e:24:7f:d0:9c:84:09:92:68:99:fe:37:18:68:77:0c:
7c:a8:cb:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUBIjKyDthowo2iTnrhvQzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OTM2NTUzMjZiMDQ3MmM4NjZjNWM5OTMwMmUyYjJkNzhj
YmRkZjcwHhcNMjUwODIyMjMwMjAzWhcNMjUwODIzMjMwMjAzWjAzMTEwLwYDVQQD
EygyM2Y1ODFkOTU0Zjk4YzIzOWJhNDUzYjA1MDg1YzQ3NTRhMTBlMWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhLi7WA/nPfzoDXEih6dpg8B2fweX
suXm5rRvcXvG9qnW5AcXvPM+iWPBNKvh0hDDv9Udy9DxFqNtpF/XnQGxvm1/e4Ky
5kSfTsWf0VbuntUWix5oQUmzQuXHGC1fq15DFGpYJvPkwgEM41vUx6QOu4T5CgGp
Rpuiu8QDcJk88rC30eYK9oGxf4X0IxMMe3pkP0GOOvx0T6wnLdeIQMHum3jXFJ2Q
ic2TzmbS3qb95dHS96o/078iLUHXYC3AgrTaXr6Wdw4CuCcx5vCXw+D2YhZcQeiN
ASL9e4WzGaPFDSk9dEf1pLuhsPG2akIUrUdxhP4nPwwZ40gK4psvSvUS8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCP1gdlU+Ywjm6RTsFCFxHVKEOGoMB8GA1UdIwQY
MBaAFIaTZVMmsEcshmxcmTAuKy14y933MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEt
OWU2NzcyZWQzOWE2LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEtOWU2NzcyZWQzOWE2
LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN74Wom8i
2nL78x5wK9peTjYQeOb5XkYWK7G6ZTRQ++9S+f4zkYBMQLVx9PqjIO+9M87wfwJA
TpvZXi8DL4ENNCLi3T5+A7bnI+SZ8wjz9AbEO0CphEw06saWYJXstYuXdgfcY8Wu
it2mSoT5Ixp7W1M4+7J7fX3hD9JIZqL1NTe9BRW1k/qcM2Wvxu4JD/ygF6GqnTk0
jRQ9iNSpxp/eP/YVO8xePIAmoFOOsvTquhsN7ZYndl/5VbRKKBkZt1Qa+Sr3pYs/
eyRZpKfcqxXRvPZhWOgVhf2HIfPYc/i5ONGjocEJLg0Xbhu691YuJH/QnIQJkmiZ
/jcYaHcMfKjLdw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:07 2025 by rpki-client