Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
File: hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft (raw, json)
Hash identifier: qBrsS9qSZyqNzjhCHoPYGFm0vQl06EpfmZrWx2Exktc=
Subject key identifier: 5A:A0:02:B6:6C:20:8B:02:C1:D4:E5:AB:A8:CF:8A:2D:67:04:EC:C8
Authority key identifier: 85:21:D1:03:FC:73:E9:07:5D:CF:1E:22:BC:82:42:B7:0F:98:C8:84
Certificate issuer: /CN=8521d103fc73e9075dcf1e22bc8242b70f98c884
Certificate serial: 0198D73BB79BD54B567F6669262F7204E809
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
Manifest number: 0676
Signing time: Sat 23 Aug 2025 14:01:11 +0000
Manifest this update: Sat 23 Aug 2025 14:01:11 +0000
Manifest next update: Sun 24 Aug 2025 14:01:11 +0000
Files and hashes: 1: 5RI4SZ7klYwbXOltWz9mLe7dxD8.roa (hash: GWR45JMOb96igm8o2PgndioWHr8iBdYB9L2Wx8rR7YM=)
2: hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl (hash: UYJCxLkU4Khx2IHDyaUX5exJueVDkhkQp8SR0uWo4f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:b7:9b:d5:4b:56:7f:66:69:26:2f:72:04:e8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8521d103fc73e9075dcf1e22bc8242b70f98c884
Validity
Not Before: Aug 23 14:01:11 2025 GMT
Not After : Aug 24 14:01:11 2025 GMT
Subject: CN=5aa002b66c208b02c1d4e5aba8cf8a2d6704ecc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:54:80:34:5b:d9:0c:f5:a4:a2:af:54:60:f3:
42:ba:1d:04:4e:67:03:60:96:ac:c5:72:30:8e:c9:
32:02:16:ba:48:2d:6a:f7:dd:d6:e1:5c:ef:d6:b4:
c6:49:f3:e0:a4:bc:58:7c:bf:f7:49:21:a3:22:76:
60:65:21:c4:9e:01:ad:fc:04:55:ad:02:b1:60:40:
4c:62:07:c0:80:91:89:98:1d:c7:ba:71:60:b2:0c:
93:ac:f0:a7:99:bf:38:ec:b2:c0:6d:bb:e9:0d:a3:
3e:bc:3c:be:0e:5d:91:54:c8:26:72:34:9c:16:31:
53:6b:ca:e3:a4:59:97:b4:d6:84:57:b9:c5:d6:d7:
7d:e1:30:d2:b6:8c:81:1b:44:fb:e1:fd:c8:1c:e9:
b4:b8:30:98:b1:39:ca:f8:27:28:17:c7:10:c1:41:
74:a0:d8:d6:c2:f5:30:53:fa:e7:7d:46:58:45:66:
8d:88:f9:f7:3b:6d:8c:3b:06:da:e1:5a:7f:e7:11:
ed:97:8f:1b:d3:a7:14:f4:02:b1:f9:47:9b:bb:5f:
60:e7:f5:a7:46:86:7a:24:b1:67:02:14:74:13:db:
00:e9:9f:9d:60:13:2d:c5:96:cb:d7:e7:b3:93:e8:
fb:e3:99:87:ae:5c:fe:bb:c3:82:86:60:3a:dd:88:
a0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A0:02:B6:6C:20:8B:02:C1:D4:E5:AB:A8:CF:8A:2D:67:04:EC:C8
X509v3 Authority Key Identifier:
keyid:85:21:D1:03:FC:73:E9:07:5D:CF:1E:22:BC:82:42:B7:0F:98:C8:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:c3:0c:69:22:82:97:8e:d5:67:90:a9:6a:45:03:ca:98:f9:
a2:98:2d:34:7a:8b:95:e4:b4:9f:fb:07:eb:8e:08:c5:da:d2:
74:4e:3a:ae:1e:85:50:a3:34:08:95:62:ea:55:1d:05:4f:29:
86:6a:d2:91:e3:f0:55:5d:0c:6f:85:84:e7:9d:27:d1:ee:02:
70:89:ad:73:04:0c:16:52:67:4e:df:a2:49:76:96:62:d1:74:
74:29:91:52:a6:18:de:21:fc:22:f6:4b:15:f7:d5:da:8c:24:
eb:0e:59:9e:f1:15:0d:93:37:23:d2:9f:b4:8d:cb:3a:da:00:
35:ed:14:ab:57:f0:ce:b0:75:60:c1:16:de:45:23:24:c2:6e:
e6:1e:89:1d:71:0c:e8:f1:f7:ae:4e:74:77:5c:62:c7:51:df:
57:84:4a:ad:f2:fb:ea:b0:9c:7a:f0:6d:89:5d:fc:49:d4:25:
ce:18:65:1e:c1:fe:f2:f1:45:56:4a:0b:c5:bf:08:72:19:f6:
30:39:87:95:ad:77:14:c2:42:79:4b:b3:e4:5f:3a:1d:b2:b2:
78:a3:05:18:a2:35:1a:e8:be:c0:99:38:79:25:6c:9f:0c:dd:
8a:8b:a2:ef:da:53:95:f4:a4:2b:8f:59:12:82:ea:06:57:e7:
2f:dc:a3:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXO7eb1UtWf2ZpJi9yBOgJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MjFkMTAzZmM3M2U5MDc1ZGNmMWUyMmJjODI0MmI3MGY5
OGM4ODQwHhcNMjUwODIzMTQwMTExWhcNMjUwODI0MTQwMTExWjAzMTEwLwYDVQQD
Eyg1YWEwMDJiNjZjMjA4YjAyYzFkNGU1YWJhOGNmOGEyZDY3MDRlY2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1SANFvZDPWkoq9UYPNCuh0ETmcD
YJasxXIwjskyAha6SC1q993W4Vzv1rTGSfPgpLxYfL/3SSGjInZgZSHEngGt/ARV
rQKxYEBMYgfAgJGJmB3HunFgsgyTrPCnmb847LLAbbvpDaM+vDy+Dl2RVMgmcjSc
FjFTa8rjpFmXtNaEV7nF1td94TDStoyBG0T74f3IHOm0uDCYsTnK+CcoF8cQwUF0
oNjWwvUwU/rnfUZYRWaNiPn3O22MOwba4Vp/5xHtl48b06cU9AKx+Uebu19g5/Wn
RoZ6JLFnAhR0E9sA6Z+dYBMtxZbL1+ezk+j745mHrlz+u8OChmA63YigGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqgArZsIIsCwdTlq6jPii1nBOzIMB8GA1UdIwQY
MBaAFIUh0QP8c+kHXc8eIryCQrcPmMiEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iMzUxZWEtN2UwOS00NWFmLWEwZWUt
ZTQwZGUwODQxM2ZhLzEvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9iMzUxZWEtN2UwOS00NWFmLWEwZWUtZTQwZGUwODQxM2Zh
LzEvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXcMMaSKC
l47VZ5CpakUDypj5opgtNHqLleS0n/sH644IxdrSdE46rh6FUKM0CJVi6lUdBU8p
hmrSkePwVV0Mb4WE550n0e4CcImtcwQMFlJnTt+iSXaWYtF0dCmRUqYY3iH8IvZL
FffV2owk6w5ZnvEVDZM3I9KftI3LOtoANe0Uq1fwzrB1YMEW3kUjJMJu5h6JHXEM
6PH3rk50d1xix1HfV4RKrfL76rCcevBtiV38SdQlzhhlHsH+8vFFVkoLxb8Ichn2
MDmHla13FMJCeUuz5F86HbKyeKMFGKI1Gui+wJk4eSVsnwzdioui79pTlfSkK49Z
EoLqBlfnL9yjvg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:13:25 2025 by rpki-client