Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json)
Hash identifier: lFhdDJDyBOZ1lbQkYpTRfthE/8k7aZ4rPb62lxcpWCQ=
Subject key identifier: EB:81:3A:70:CE:E3:19:E5:4A:F3:C3:0D:17:6B:60:5E:55:EC:70:F1
Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b
Certificate serial: 0199183F6803E308ADEAC8AFB5F183E68F4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
Manifest number: 0B8B
Signing time: Fri 05 Sep 2025 05:00:32 +0000
Manifest this update: Fri 05 Sep 2025 05:00:32 +0000
Manifest next update: Sat 06 Sep 2025 05:00:32 +0000
Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: X2BV7mGII8az2E7tFHzRmX19XktvMAFUd5LWhtV3PhM=)
2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 01:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:68:03:e3:08:ad:ea:c8:af:b5:f1:83:e6:8f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b
Validity
Not Before: Sep 5 05:00:32 2025 GMT
Not After : Sep 6 05:00:32 2025 GMT
Subject: CN=eb813a70cee319e54af3c30d176b605e55ec70f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:43:f6:26:a1:7a:0e:8d:d9:60:75:cd:96:0c:
08:96:83:d7:69:7c:4b:a1:5f:40:a8:bb:ce:b8:19:
c5:83:ac:0c:eb:c0:7e:dc:02:53:5a:3a:96:a7:9d:
00:33:21:08:e5:b6:be:65:ef:ac:3e:72:a6:f1:30:
cf:ca:1e:a4:43:07:9d:f6:b1:b8:43:6a:f0:40:3a:
05:4b:77:fc:02:4e:28:e1:2e:ab:a6:08:7a:13:a0:
8d:3b:8e:8b:17:49:c8:66:40:0e:04:d4:82:72:77:
f5:de:e1:4a:24:8a:04:ba:bc:dc:b6:bf:b3:fe:65:
2d:69:08:29:02:7c:0e:26:10:94:58:30:35:99:47:
c8:2b:46:46:02:4e:a5:df:c7:bc:a3:74:a7:61:c6:
6e:ac:ef:4e:e0:7a:67:7a:37:d4:21:49:53:cf:31:
09:70:0c:9b:f8:30:07:b4:81:f4:ef:c1:f1:9a:83:
b1:b3:68:e6:fa:70:7c:46:8c:9f:1e:97:72:6e:1b:
f8:cd:cd:ad:4c:ca:4d:34:3f:1c:fa:8b:5d:11:27:
ee:1c:8e:21:28:b0:ac:12:f6:93:73:83:99:99:c9:
27:cd:e9:0a:fc:25:18:94:2c:f8:38:53:5d:7a:10:
1e:d9:9b:2d:6a:91:10:29:8d:08:29:1a:6b:5d:1d:
89:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:81:3A:70:CE:E3:19:E5:4A:F3:C3:0D:17:6B:60:5E:55:EC:70:F1
X509v3 Authority Key Identifier:
keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:00:3b:e3:1a:92:b0:5c:6d:68:4e:31:14:2d:88:99:2b:da:
fc:7e:63:ac:79:1d:11:fe:ec:d7:21:b8:28:49:23:ff:1e:3a:
60:9a:a7:f5:0e:e7:35:a6:89:a8:f3:ce:8c:5a:8a:1b:72:9c:
a1:64:fb:02:45:e2:fb:e2:c7:54:8b:10:dd:d3:91:8e:38:cf:
b1:7f:6f:e7:34:73:78:c0:53:56:b1:1a:76:6a:00:da:1f:38:
93:ad:00:f2:5c:3e:68:73:dd:17:e6:6d:17:2f:5c:ab:14:ae:
83:7e:00:b8:dc:87:de:13:93:92:1d:28:75:1e:81:16:93:7f:
cd:02:aa:ad:ba:69:98:8d:57:42:6f:91:1c:99:3c:76:0b:7e:
20:85:bd:d8:53:12:b8:91:ea:71:36:7f:db:41:3a:56:2d:4b:
b2:f9:95:71:4d:36:a1:f6:a3:f2:86:84:0f:39:08:03:78:92:
55:4d:bf:9a:07:57:a2:92:1e:f0:40:c0:b6:71:ef:cb:03:ad:
17:c3:99:be:68:84:14:26:70:79:0a:9e:ed:32:f1:71:62:dc:
13:42:40:42:f3:48:7c:a6:13:05:23:14:72:89:6f:de:e0:d0:
7e:a1:a6:68:83:9c:4a:14:dc:ca:1e:50:53:c1:22:13:ba:12:
2d:84:b9:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYP2gD4wit6sivtfGD5o9OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ODYwMjczZWIyNzE5MjJiOWY3ZWM4ZjRhNTkxMDE2MzU2
ZDczMmIwHhcNMjUwOTA1MDUwMDMyWhcNMjUwOTA2MDUwMDMyWjAzMTEwLwYDVQQD
EyhlYjgxM2E3MGNlZTMxOWU1NGFmM2MzMGQxNzZiNjA1ZTU1ZWM3MGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArkP2JqF6Do3ZYHXNlgwIloPXaXxL
oV9AqLvOuBnFg6wM68B+3AJTWjqWp50AMyEI5ba+Ze+sPnKm8TDPyh6kQwed9rG4
Q2rwQDoFS3f8Ak4o4S6rpgh6E6CNO46LF0nIZkAOBNSCcnf13uFKJIoEurzctr+z
/mUtaQgpAnwOJhCUWDA1mUfIK0ZGAk6l38e8o3SnYcZurO9O4HpnejfUIUlTzzEJ
cAyb+DAHtIH078HxmoOxs2jm+nB8RoyfHpdybhv4zc2tTMpNND8c+otdESfuHI4h
KLCsEvaTc4OZmcknzekK/CUYlCz4OFNdehAe2ZstapEQKY0IKRprXR2J7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOuBOnDO4xnlSvPDDRdrYF5V7HDxMB8GA1UdIwQY
MBaAFIWGAnPrJxkiuffsj0pZEBY1bXMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYt
OTkwOWVlMmYzM2IyLzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYtOTkwOWVlMmYzM2Iy
LzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWgA74xqS
sFxtaE4xFC2ImSva/H5jrHkdEf7s1yG4KEkj/x46YJqn9Q7nNaaJqPPOjFqKG3Kc
oWT7AkXi++LHVIsQ3dORjjjPsX9v5zRzeMBTVrEadmoA2h84k60A8lw+aHPdF+Zt
Fy9cqxSug34AuNyH3hOTkh0odR6BFpN/zQKqrbppmI1XQm+RHJk8dgt+IIW92FMS
uJHqcTZ/20E6Vi1LsvmVcU02ofaj8oaEDzkIA3iSVU2/mgdXopIe8EDAtnHvywOt
F8OZvmiEFCZweQqe7TLxcWLcE0JAQvNIfKYTBSMUcolv3uDQfqGmaIOcShTcyh5Q
U8EiE7oSLYS5ow==
-----END CERTIFICATE-----
Generated at Fri Sep 5 09:50:41 2025 by rpki-client