Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json)
Hash identifier: 1VQj+KwWlK3bjI2UQT4I83+LLI9lf6PU14famrIqAso=
Subject key identifier: 2F:02:66:C5:56:B4:0F:41:A1:FC:C3:4E:1F:B1:15:CB:E6:5B:46:CA
Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Certificate serial: 0199FB45CD8146ACED86A683B5442CFA74F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
Manifest number: 02F7
Signing time: Sun 19 Oct 2025 07:01:19 +0000
Manifest this update: Sun 19 Oct 2025 07:01:19 +0000
Manifest next update: Mon 20 Oct 2025 07:01:19 +0000
Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: cIIhFJYbirjdp/1gA7XKl/RcBcMmxaj6PaE4FgLpggQ=)
2: aMYTDoy-atROFcdvcAZ3DJlPN5M.roa (hash: xs/811bK0GOCRDo/JHIlphnjgoQcSZGktyUSLqywPok=)
3: hc_WEE647lzFURB_xuAQSI93cMk.roa (hash: dEd68WTNgomGf/knb8KdzL0EdhKoQSwJyVCrqzwbNzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:cd:81:46:ac:ed:86:a6:83:b5:44:2c:fa:74:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Validity
Not Before: Oct 19 07:01:19 2025 GMT
Not After : Oct 20 07:01:19 2025 GMT
Subject: CN=2f0266c556b40f41a1fcc34e1fb115cbe65b46ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1c:40:d2:e1:16:c1:96:ee:af:64:20:0f:9a:
94:32:a5:5e:b4:94:d7:91:64:88:6c:94:01:bc:97:
17:ce:0f:80:54:52:52:f6:ff:45:75:ec:fc:a3:93:
9a:8e:91:df:ae:5d:6f:00:6d:50:c7:8a:57:47:49:
cb:8d:6c:f3:09:e8:45:d0:0f:2c:6b:95:1a:f2:de:
73:de:60:b1:97:9e:e2:8a:ad:a4:5e:d7:6b:72:7f:
e9:e3:92:1b:14:5f:3f:68:8e:5e:55:22:18:6c:33:
c7:03:2d:34:dd:0d:4d:dc:c6:95:b8:f7:74:e3:65:
90:2a:d2:5f:ef:d6:5a:6d:00:57:b8:48:79:9e:07:
d4:ce:de:18:13:db:9f:92:51:05:c0:10:d3:c3:82:
45:46:8d:1c:e0:a5:17:0e:49:38:2e:0a:b5:58:0b:
2e:98:f2:6e:6a:0b:df:46:04:33:7b:28:1d:79:8c:
a7:fc:3d:ff:6d:3f:09:e6:17:90:dd:0f:1a:b3:d0:
26:39:60:59:35:43:b6:39:fd:47:6d:5b:91:fb:4a:
d3:49:b0:72:c7:1f:c1:c9:fe:48:77:0a:8a:b5:34:
93:26:65:ea:8f:28:80:09:6e:7f:87:04:08:71:f9:
22:d2:95:53:8a:18:d3:d1:ef:00:a9:03:11:ef:6b:
a2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:02:66:C5:56:B4:0F:41:A1:FC:C3:4E:1F:B1:15:CB:E6:5B:46:CA
X509v3 Authority Key Identifier:
keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:77:bb:9e:06:8b:be:4c:fe:18:0f:c6:a2:a8:01:35:68:12:
d9:fd:82:02:59:25:6e:a3:ed:1b:ad:e8:d7:2c:f3:c7:29:44:
c4:fa:96:d3:91:92:69:7a:0f:f7:27:30:b0:09:8d:db:2f:70:
7b:ea:a6:02:99:40:59:a6:5f:6f:25:f9:2e:2b:d5:15:1e:84:
d7:2a:59:f6:f5:78:e1:e3:f6:c2:3e:57:76:96:4f:bc:b9:ed:
0c:f6:bc:d5:94:9f:d8:8b:5c:3c:5b:0e:48:51:f3:a9:b2:3f:
1c:24:eb:59:09:2e:d7:d8:c0:fb:fb:85:b4:6f:f3:81:fa:da:
36:c3:7a:5b:17:0c:c4:d7:7b:a8:10:f8:ce:ed:4e:52:2f:c1:
61:7e:1f:0e:92:d2:65:4f:d5:4d:b6:55:02:f3:2e:28:19:80:
90:b4:cc:fa:54:04:29:7f:bc:4b:95:49:6a:a7:92:3f:56:d4:
5f:d1:35:b0:50:14:b9:f6:3e:51:f5:62:e4:8b:e7:bb:be:2e:
ee:6f:f5:83:b7:10:a2:48:53:56:6e:16:fa:a4:ef:8e:88:72:
b9:1c:c9:10:57:02:d4:ac:2b:4d:3c:5e:5a:5d:16:91:24:3f:
8e:8c:bd:b4:b4:9a:f5:83:3b:82:01:2c:b7:f7:0b:00:c5:40:
63:12:27:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7Rc2BRqzthqaDtUQs+nT5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkOGU4ZGY1YzAzMTEwNzExOGRhNjFmMjlhYjRmNDE5ZDI5
ZDVhOGEwHhcNMjUxMDE5MDcwMTE5WhcNMjUxMDIwMDcwMTE5WjAzMTEwLwYDVQQD
EygyZjAyNjZjNTU2YjQwZjQxYTFmY2MzNGUxZmIxMTVjYmU2NWI0NmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxxA0uEWwZbur2QgD5qUMqVetJTX
kWSIbJQBvJcXzg+AVFJS9v9Fdez8o5OajpHfrl1vAG1Qx4pXR0nLjWzzCehF0A8s
a5Ua8t5z3mCxl57iiq2kXtdrcn/p45IbFF8/aI5eVSIYbDPHAy003Q1N3MaVuPd0
42WQKtJf79ZabQBXuEh5ngfUzt4YE9ufklEFwBDTw4JFRo0c4KUXDkk4Lgq1WAsu
mPJuagvfRgQzeygdeYyn/D3/bT8J5heQ3Q8as9AmOWBZNUO2Of1HbVuR+0rTSbBy
xx/Byf5IdwqKtTSTJmXqjyiACW5/hwQIcfki0pVTihjT0e8AqQMR72ui9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC8CZsVWtA9BofzDTh+xFcvmW0bKMB8GA1UdIwQY
MBaAFB2OjfXAMRBxGNph8pq09BnSnVqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUt
YjFkMzhiMTNmZGE5LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUtYjFkMzhiMTNmZGE5
LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOHe7ngaL
vkz+GA/GoqgBNWgS2f2CAlklbqPtG63o1yzzxylExPqW05GSaXoP9ycwsAmN2y9w
e+qmAplAWaZfbyX5LivVFR6E1ypZ9vV44eP2wj5XdpZPvLntDPa81ZSf2ItcPFsO
SFHzqbI/HCTrWQku19jA+/uFtG/zgfraNsN6WxcMxNd7qBD4zu1OUi/BYX4fDpLS
ZU/VTbZVAvMuKBmAkLTM+lQEKX+8S5VJaqeSP1bUX9E1sFAUufY+UfVi5Ivnu74u
7m/1g7cQokhTVm4W+qTvjohyuRzJEFcC1KwrTTxeWl0WkSQ/joy9tLSa9YM7ggEs
t/cLAMVAYxIncg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 12:53:12 2025 by rpki-client