Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
File: hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft (raw, json)
Hash identifier: N+ATN2g08dbx9tTq/GNpXTsM6MsGXV7xK3/cccaX0iI=
Subject key identifier: 52:4C:66:CE:04:A9:38:03:A1:9F:19:96:F3:D1:2B:5E:B4:5E:DC:E1
Authority key identifier: 85:21:D1:03:FC:73:E9:07:5D:CF:1E:22:BC:82:42:B7:0F:98:C8:84
Certificate issuer: /CN=8521d103fc73e9075dcf1e22bc8242b70f98c884
Certificate serial: 0199FCC68A442778BF44399BFD3F5EFE9034
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
Manifest number: 070E
Signing time: Sun 19 Oct 2025 14:01:33 +0000
Manifest this update: Sun 19 Oct 2025 14:01:33 +0000
Manifest next update: Mon 20 Oct 2025 14:01:33 +0000
Files and hashes: 1: 5RI4SZ7klYwbXOltWz9mLe7dxD8.roa (hash: GWR45JMOb96igm8o2PgndioWHr8iBdYB9L2Wx8rR7YM=)
2: hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl (hash: pAJOhr1YEA1R5IYXnoEG+0tUVtDOex2GhAgvS2U+8jU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:8a:44:27:78:bf:44:39:9b:fd:3f:5e:fe:90:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8521d103fc73e9075dcf1e22bc8242b70f98c884
Validity
Not Before: Oct 19 14:01:33 2025 GMT
Not After : Oct 20 14:01:33 2025 GMT
Subject: CN=524c66ce04a93803a19f1996f3d12b5eb45edce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:06:54:2c:80:b8:92:26:d4:e0:6d:d5:28:8d:
59:ac:6f:be:d6:42:ce:d3:27:1a:86:f5:10:45:cd:
3e:52:85:8c:c2:39:13:9d:a7:b3:a8:2b:82:2b:0c:
6a:f4:1f:32:08:d0:96:eb:57:48:6e:17:7b:c6:54:
d5:04:74:2f:08:6b:df:35:cb:1a:92:6a:75:69:46:
88:a6:ff:41:e0:10:6b:60:4d:2d:6d:6d:80:64:d2:
27:d5:40:7a:80:a4:2d:69:59:ff:40:4d:3f:ac:d7:
18:e1:b6:4a:e9:f6:5d:06:c1:d5:45:cd:99:39:7d:
c9:4d:e9:b6:95:21:9f:d1:7e:95:76:e6:d9:70:5d:
21:21:e1:98:1c:38:80:79:a5:d0:c8:52:f0:39:02:
09:cf:64:99:01:7d:eb:dc:90:fc:01:99:82:5c:ad:
15:d8:02:97:41:44:30:28:2b:43:ee:93:42:2b:8f:
d3:84:fc:84:ed:b8:21:5d:9d:a6:b4:06:db:68:77:
d3:72:80:1e:ad:fd:20:47:a5:d3:9b:6d:8f:73:2e:
82:a0:38:9b:fd:db:b5:f6:d8:03:14:60:27:05:86:
1b:5c:14:19:c9:37:4d:37:17:68:19:ac:1d:93:90:
b1:07:49:65:bc:0f:4b:10:20:a1:8b:f6:bb:d3:aa:
92:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4C:66:CE:04:A9:38:03:A1:9F:19:96:F3:D1:2B:5E:B4:5E:DC:E1
X509v3 Authority Key Identifier:
keyid:85:21:D1:03:FC:73:E9:07:5D:CF:1E:22:BC:82:42:B7:0F:98:C8:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b351ea-7e09-45af-a0ee-e40de08413fa/1/hSHRA_xz6Qddzx4ivIJCtw-YyIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:bf:cc:a1:e8:6f:17:b7:38:81:86:1c:9e:e1:4f:e7:a6:d5:
28:78:b3:c5:56:30:d8:a1:35:f3:5f:c8:f2:e2:7a:4f:8c:bc:
d3:d3:e3:eb:4f:5d:c0:b7:d9:61:45:e9:55:2e:db:2c:35:6f:
25:c6:fb:4d:08:83:d8:dd:91:a9:52:0a:07:1f:80:9b:0c:cd:
0d:d6:a4:05:f5:3d:f1:88:64:24:de:2a:59:05:2c:86:9c:58:
37:c4:73:f3:5a:b2:90:ba:eb:24:e9:ca:ee:07:a8:cf:b4:cd:
9a:8b:19:9b:f2:9e:f6:c4:e9:46:d7:70:58:3c:c0:60:74:98:
50:e5:6b:70:fe:ca:cc:f6:bf:2b:10:f4:df:98:97:7b:ae:de:
25:ca:73:d2:4b:17:59:be:cd:78:bf:6b:4c:83:6f:93:ec:ee:
c2:e6:07:17:60:1e:92:74:05:55:c7:c4:2a:64:15:49:ec:14:
99:38:1e:2e:a8:7b:f4:60:52:25:4a:de:9f:47:4e:68:e1:c8:
a1:72:f4:e7:47:08:46:09:0e:a5:d3:67:8d:10:86:28:86:10:
f0:37:b6:62:4e:3c:ac:92:3a:32:9a:89:f2:65:46:a8:e7:d2:
fc:ea:06:49:a7:44:b9:1e:a8:2b:f4:d8:97:df:0b:5e:5b:39:
06:2e:2c:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xopEJ3i/RDmb/T9e/pA0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MjFkMTAzZmM3M2U5MDc1ZGNmMWUyMmJjODI0MmI3MGY5
OGM4ODQwHhcNMjUxMDE5MTQwMTMzWhcNMjUxMDIwMTQwMTMzWjAzMTEwLwYDVQQD
Eyg1MjRjNjZjZTA0YTkzODAzYTE5ZjE5OTZmM2QxMmI1ZWI0NWVkY2UxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2QZULIC4kibU4G3VKI1ZrG++1kLO
0ycahvUQRc0+UoWMwjkTnaezqCuCKwxq9B8yCNCW61dIbhd7xlTVBHQvCGvfNcsa
kmp1aUaIpv9B4BBrYE0tbW2AZNIn1UB6gKQtaVn/QE0/rNcY4bZK6fZdBsHVRc2Z
OX3JTem2lSGf0X6VdubZcF0hIeGYHDiAeaXQyFLwOQIJz2SZAX3r3JD8AZmCXK0V
2AKXQUQwKCtD7pNCK4/ThPyE7bghXZ2mtAbbaHfTcoAerf0gR6XTm22Pcy6CoDib
/du19tgDFGAnBYYbXBQZyTdNNxdoGawdk5CxB0llvA9LECChi/a706qSMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFJMZs4EqTgDoZ8ZlvPRK160XtzhMB8GA1UdIwQY
MBaAFIUh0QP8c+kHXc8eIryCQrcPmMiEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9iMzUxZWEtN2UwOS00NWFmLWEwZWUt
ZTQwZGUwODQxM2ZhLzEvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9iMzUxZWEtN2UwOS00NWFmLWEwZWUtZTQwZGUwODQxM2Zh
LzEvaFNIUkFfeHo2UWRkeng0aXZJSkN0dy1ZeUlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvr/Moehv
F7c4gYYcnuFP56bVKHizxVYw2KE181/I8uJ6T4y809Pj609dwLfZYUXpVS7bLDVv
Jcb7TQiD2N2RqVIKBx+AmwzNDdakBfU98YhkJN4qWQUshpxYN8Rz81qykLrrJOnK
7geoz7TNmosZm/Ke9sTpRtdwWDzAYHSYUOVrcP7KzPa/KxD035iXe67eJcpz0ksX
Wb7NeL9rTINvk+zuwuYHF2AeknQFVcfEKmQVSewUmTgeLqh79GBSJUren0dOaOHI
oXL050cIRgkOpdNnjRCGKIYQ8De2Yk48rJI6MpqJ8mVGqOfS/OoGSadEuR6oK/TY
l98LXls5Bi4sdQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:19:19 2025 by rpki-client