Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json)
Hash identifier: Hc+0+aggcoqVaEifhQIFZTpuSJQH2oOFuW1ksjdbjjU=
Subject key identifier: 2A:11:51:EB:97:E0:A6:A3:D2:3E:02:35:9B:18:C6:08:AE:6D:FB:D2
Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Certificate serial: 0198D6981252D72E17F42C4A27CD88ACA716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
Manifest number: AD
Signing time: Sat 23 Aug 2025 11:02:27 +0000
Manifest this update: Sat 23 Aug 2025 11:02:27 +0000
Manifest next update: Sun 24 Aug 2025 11:02:27 +0000
Files and hashes: 1: f9MGnlddFQ2IMf-Uoo2fTYxJ_co.roa (hash: kPIpbLqEj4dHSmVPx7WOIcV4CWQtCce8UvwQXn1AUT0=)
2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: Izpkh9uNefad0vgG+JEUY5+4Lgqm6noHI+lPilceiM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:12:52:d7:2e:17:f4:2c:4a:27:cd:88:ac:a7:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e
Validity
Not Before: Aug 23 11:02:27 2025 GMT
Not After : Aug 24 11:02:27 2025 GMT
Subject: CN=2a1151eb97e0a6a3d23e02359b18c608ae6dfbd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0c:53:e6:0e:80:fb:16:91:30:ba:65:f5:4c:
8f:e2:cc:b9:99:ea:f2:fe:96:74:75:de:fc:7d:18:
31:8c:da:90:d6:1b:1f:46:47:a6:d2:ca:9d:27:a4:
24:e3:8a:bf:1e:f4:de:1c:f6:d0:08:e3:85:b8:11:
f9:fb:f8:2e:45:1b:b1:12:20:dd:97:4c:b4:39:d6:
9b:0f:fa:81:66:a8:68:a4:93:f5:a6:61:21:f5:75:
cb:ab:4a:b6:67:0e:07:bd:aa:22:63:ae:7d:8a:b9:
4e:ae:e7:cc:86:d8:20:6d:9c:e2:6f:9a:2b:58:87:
3a:0f:72:48:63:3e:9b:d2:61:7a:fb:1d:00:ef:85:
bd:9e:1c:8f:f9:fc:68:15:41:1e:c2:ef:51:20:4f:
c0:3f:2d:6e:99:33:01:d9:aa:d7:36:9b:2c:24:52:
e9:d4:60:58:05:12:b6:5c:e3:be:91:f5:20:f4:49:
5a:e8:50:04:a5:1b:81:0b:a6:db:f6:83:cb:cb:12:
ae:10:53:33:fc:7f:b5:fd:1b:0e:d9:1d:cc:09:f9:
80:50:0b:0f:5e:c9:ae:d8:9c:63:ad:a9:c9:a9:d9:
ba:a6:0e:d7:c1:ae:7c:65:ec:64:a5:1f:7c:ec:2b:
c6:21:dd:b6:3d:5a:f5:50:1f:80:7b:6b:02:8e:d6:
9b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:11:51:EB:97:E0:A6:A3:D2:3E:02:35:9B:18:C6:08:AE:6D:FB:D2
X509v3 Authority Key Identifier:
keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:ae:bf:08:2f:a6:71:5b:54:63:5d:53:c3:f0:e1:cc:4c:3e:
02:0e:32:38:a7:e4:12:bc:d4:8a:c3:54:38:03:3b:42:06:22:
d8:c0:9c:53:29:c1:b9:ee:8b:37:a2:6f:5a:f7:c5:65:7c:e5:
f9:70:57:e6:a0:5b:96:93:c3:95:c6:5d:e6:6d:f0:19:b8:95:
ab:44:ba:61:c0:b9:34:a9:dc:7e:2c:a2:a7:fc:20:b5:21:48:
d4:b9:87:c4:b5:cc:cc:49:f1:cd:72:42:49:4d:ad:d6:1e:b4:
de:1e:f3:5c:15:e1:63:c9:8f:4a:0f:e2:f7:79:49:84:3c:5f:
a8:35:7c:ca:9d:d6:da:6a:86:7f:12:e8:a8:fc:64:8b:17:d0:
af:f2:71:79:a9:8c:dd:fc:1d:7c:f3:75:59:e8:cc:50:94:1d:
73:b9:71:70:c5:65:04:aa:7a:e2:bc:9a:08:0b:bf:54:e9:64:
7d:9d:65:d4:95:3a:0b:01:ca:5a:2f:23:e5:08:a5:d7:91:0b:
99:ee:88:5d:ab:fc:9a:62:14:7c:0c:7c:ed:4b:33:5f:d0:d4:
2e:ff:d0:67:37:0d:84:79:d1:d6:e5:13:11:8c:0c:80:38:ee:
4d:33:04:2d:a3:c6:06:b5:08:6b:6d:7d:0e:ad:45:d4:0c:a5:
79:34:23:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmBJS1y4X9CxKJ82IrKcWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OWMwZTczN2RmNDgyZTg5YWE2NzI2Y2RkOGE5OTU4YWE3
NDExMWUwHhcNMjUwODIzMTEwMjI3WhcNMjUwODI0MTEwMjI3WjAzMTEwLwYDVQQD
EygyYTExNTFlYjk3ZTBhNmEzZDIzZTAyMzU5YjE4YzYwOGFlNmRmYmQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4QxT5g6A+xaRMLpl9UyP4sy5mery
/pZ0dd78fRgxjNqQ1hsfRkem0sqdJ6Qk44q/HvTeHPbQCOOFuBH5+/guRRuxEiDd
l0y0OdabD/qBZqhopJP1pmEh9XXLq0q2Zw4HvaoiY659irlOrufMhtggbZzib5or
WIc6D3JIYz6b0mF6+x0A74W9nhyP+fxoFUEewu9RIE/APy1umTMB2arXNpssJFLp
1GBYBRK2XOO+kfUg9Ela6FAEpRuBC6bb9oPLyxKuEFMz/H+1/RsO2R3MCfmAUAsP
Xsmu2JxjranJqdm6pg7Xwa58ZexkpR987CvGId22PVr1UB+Ae2sCjtab5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCoRUeuX4Kaj0j4CNZsYxgiubfvSMB8GA1UdIwQY
MBaAFIacDnN99ILomqZybN2KmViqdBEeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEt
YzVlMGZhY2E0YTVlLzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEtYzVlMGZhY2E0YTVl
LzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY66/CC+m
cVtUY11Tw/DhzEw+Ag4yOKfkErzUisNUOAM7QgYi2MCcUynBue6LN6JvWvfFZXzl
+XBX5qBblpPDlcZd5m3wGbiVq0S6YcC5NKncfiyip/wgtSFI1LmHxLXMzEnxzXJC
SU2t1h603h7zXBXhY8mPSg/i93lJhDxfqDV8yp3W2mqGfxLoqPxkixfQr/JxeamM
3fwdfPN1WejMUJQdc7lxcMVlBKp64ryaCAu/VOlkfZ1l1JU6CwHKWi8j5Qil15EL
me6IXav8mmIUfAx87UszX9DULv/QZzcNhHnR1uUTEYwMgDjuTTMELaPGBrUIa219
Dq1F1AyleTQjIQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:10:51 2025 by rpki-client