Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: YyOc33hOYyHgW6BH7cYgWs9a4+xwdBMKf14vSs3FfMU=
Subject key identifier: 94:3E:68:61:CD:98:91:A4:EB:98:9F:5E:49:F2:90:7E:5B:E1:33:B7
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 0198D6297FEF2F6A37B99E7245CF2CC018CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 3C
Signing time: Sat 23 Aug 2025 09:01:40 +0000
Manifest this update: Sat 23 Aug 2025 09:01:40 +0000
Manifest next update: Sun 24 Aug 2025 09:01:40 +0000
Files and hashes: 1: EyJIl9GgE7NEizESEZnZ9ODAHzw.roa (hash: TDhr2Br5ELeOUc6goo8nbxisdzgPRnJxdfCh2qX9VlY=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: YTu2NyND8WtKy9bNF1/QLpk1fQnth4DlHQFpT4X++Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:7f:ef:2f:6a:37:b9:9e:72:45:cf:2c:c0:18:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Aug 23 09:01:40 2025 GMT
Not After : Aug 24 09:01:40 2025 GMT
Subject: CN=943e6861cd9891a4eb989f5e49f2907e5be133b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b5:32:46:50:7e:7d:81:4f:f6:02:0d:44:f0:
75:a2:2f:f6:db:aa:d1:28:1a:a5:1c:af:8e:17:b1:
26:81:9c:e6:a6:76:91:3b:8d:22:25:d8:b6:0b:99:
c0:03:f4:28:66:f7:27:1e:66:54:64:2e:f4:b7:16:
9f:0a:7a:e3:52:e6:d9:2b:39:40:2e:4d:62:14:c2:
58:24:02:0d:13:97:7e:55:7f:fe:64:3a:0b:6f:61:
0a:2d:e5:c6:f6:17:fc:ed:ef:5a:7a:08:79:b0:87:
f6:4a:c0:40:79:5b:6a:1a:35:46:cf:85:f9:30:87:
fa:96:15:7f:6e:8c:54:0b:46:cd:20:46:2e:0f:10:
24:67:98:7a:a4:a7:89:6b:a4:bf:eb:53:9c:0d:bf:
bd:1b:1a:fc:2b:2b:6e:2d:2e:1b:7a:c3:21:fa:3b:
49:6a:22:36:05:ef:e9:13:ec:59:9f:b7:87:ca:e0:
56:5d:ba:31:57:a8:4a:28:27:db:d0:9e:6f:19:40:
63:30:02:1c:49:14:77:a6:b5:38:b8:5b:9e:6a:c9:
09:24:96:fd:7b:63:d2:f8:97:96:ce:cd:57:aa:36:
11:a7:41:c4:da:cc:5c:ef:ef:8e:fd:88:eb:5a:ca:
95:bb:0c:93:e4:11:43:08:4f:15:41:36:b7:e6:5f:
79:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3E:68:61:CD:98:91:A4:EB:98:9F:5E:49:F2:90:7E:5B:E1:33:B7
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:90:4f:6f:a8:b6:db:7b:d8:51:2e:52:b4:7e:68:d6:0b:1f:
27:a8:9e:f8:e7:f4:0a:67:bb:f6:87:73:58:2e:4b:4e:c7:93:
dc:45:f4:da:fd:e0:28:88:50:a1:b8:85:fa:fb:66:58:9d:ae:
ae:6e:2b:40:db:fc:d4:0d:e6:be:6f:f6:73:c6:cb:30:71:67:
92:c3:e1:6e:60:00:03:4f:df:43:e5:e3:7d:4c:d9:51:54:ff:
32:81:4a:40:33:05:b3:5b:01:24:f3:fa:9a:39:39:d4:10:39:
2a:0a:f4:9d:8a:ca:e0:4f:35:44:6e:a2:5d:d3:9f:ca:61:d4:
2d:bb:93:b8:30:2e:0a:f6:2c:de:a4:0b:a5:63:6a:b1:ad:a5:
03:f3:56:00:0f:50:df:34:2f:78:30:96:6b:c3:3c:07:ef:c3:
fb:8d:4b:f1:5d:b3:62:f3:b8:8a:98:ea:9a:cc:28:5f:96:1b:
18:fe:92:a7:4a:48:e2:de:24:92:38:92:e9:9e:c7:2f:d1:f1:
ee:a7:3b:7b:6a:3a:d0:19:dc:c2:6a:c3:32:13:d1:d9:1f:37:
f3:17:03:82:fe:e2:9d:5b:a5:16:c6:e9:e5:14:a6:38:16:5e:
aa:48:0b:d3:52:70:70:ca:85:3c:87:72:d7:53:a9:63:d3:f9:
3b:05:ab:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWKX/vL2o3uZ5yRc8swBjOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NWIwN2MyODlkZjZiYzljNzYyZGI0MzI5YmEwY2UzYzUy
OWZlY2IwHhcNMjUwODIzMDkwMTQwWhcNMjUwODI0MDkwMTQwWjAzMTEwLwYDVQQD
Eyg5NDNlNjg2MWNkOTg5MWE0ZWI5ODlmNWU0OWYyOTA3ZTViZTEzM2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLUyRlB+fYFP9gINRPB1oi/226rR
KBqlHK+OF7EmgZzmpnaRO40iJdi2C5nAA/QoZvcnHmZUZC70txafCnrjUubZKzlA
Lk1iFMJYJAINE5d+VX/+ZDoLb2EKLeXG9hf87e9aegh5sIf2SsBAeVtqGjVGz4X5
MIf6lhV/boxUC0bNIEYuDxAkZ5h6pKeJa6S/61OcDb+9Gxr8KytuLS4besMh+jtJ
aiI2Be/pE+xZn7eHyuBWXboxV6hKKCfb0J5vGUBjMAIcSRR3prU4uFueaskJJJb9
e2PS+JeWzs1XqjYRp0HE2sxc7++O/YjrWsqVuwyT5BFDCE8VQTa35l95EQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQ+aGHNmJGk65ifXknykH5b4TO3MB8GA1UdIwQY
MBaAFIZbB8KJ32vJx2LbQym6DOPFKf7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEt
MmFmYTMwM2U0OTVkLzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEtMmFmYTMwM2U0OTVk
LzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWZBPb6i2
23vYUS5StH5o1gsfJ6ie+Of0Cme79odzWC5LTseT3EX02v3gKIhQobiF+vtmWJ2u
rm4rQNv81A3mvm/2c8bLMHFnksPhbmAAA0/fQ+XjfUzZUVT/MoFKQDMFs1sBJPP6
mjk51BA5Kgr0nYrK4E81RG6iXdOfymHULbuTuDAuCvYs3qQLpWNqsa2lA/NWAA9Q
3zQveDCWa8M8B+/D+41L8V2zYvO4ipjqmswoX5YbGP6Sp0pI4t4kkjiS6Z7HL9Hx
7qc7e2o60BncwmrDMhPR2R838xcDgv7inVulFsbp5RSmOBZeqkgL01JwcMqFPIdy
11OpY9P5OwWrbw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:34:52 2025 by rpki-client