Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: mV8Vmd1cRVEzF+i1CzXb5qROTHpSBKCsiV6ihk/DVfs=
Subject key identifier: 9C:82:EA:C1:0B:BD:22:47:96:04:01:9E:1F:67:78:D3:E8:F0:EB:B5
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 019A711331D0EE159BE283FA2FFBDD12564E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 172D
Signing time: Tue 11 Nov 2025 04:01:14 +0000
Manifest this update: Tue 11 Nov 2025 04:01:14 +0000
Manifest next update: Wed 12 Nov 2025 04:01:14 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: G8o1IHsEWIyqJaH8KN25yY3lvb+F+c5XB/z0BHy63bU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:31:d0:ee:15:9b:e2:83:fa:2f:fb:dd:12:56:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Nov 11 04:01:14 2025 GMT
Not After : Nov 12 04:01:14 2025 GMT
Subject: CN=9c82eac10bbd22479604019e1f6778d3e8f0ebb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:af:39:62:6d:42:1e:d0:92:b8:0c:c1:27:f8:
e5:f4:71:e7:e2:be:0c:21:ce:ce:6d:dd:fa:1c:3d:
5c:5a:d3:08:b8:03:c8:b5:3f:86:5a:86:17:46:87:
07:a3:44:4a:a4:c9:75:17:1e:05:27:06:3a:dc:2f:
c6:d4:ae:17:a5:86:cd:76:83:47:7b:9d:8f:97:23:
cd:a2:2f:51:82:e7:9c:dd:26:55:89:54:c9:74:ab:
19:15:c9:c2:8d:dc:33:69:94:a6:fb:42:1f:4e:24:
5a:4d:af:2a:a0:78:94:b2:70:91:f4:c6:b7:1a:80:
32:c7:aa:1c:2d:ac:7f:5a:b2:8d:67:00:02:49:fb:
9c:b6:dd:55:d7:d6:d7:19:ea:02:ff:99:f1:14:ce:
22:f8:78:9d:1d:1b:ef:af:19:18:e2:df:82:ab:03:
80:e8:9b:07:29:0e:8a:fd:7e:f9:f5:13:8b:19:cc:
52:50:54:6e:0d:6a:45:82:be:5a:23:1a:ee:8c:63:
5f:39:38:0d:dd:2f:6a:6c:0a:f7:12:99:e9:bc:2d:
96:ac:1b:fd:b2:a4:dc:b9:b1:a0:f6:eb:a0:ab:6e:
b9:fe:a2:35:ee:77:9f:e7:99:61:12:74:5e:a5:1a:
73:50:d2:af:7a:02:aa:10:d4:2d:e4:c0:af:f1:06:
9f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:82:EA:C1:0B:BD:22:47:96:04:01:9E:1F:67:78:D3:E8:F0:EB:B5
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:be:55:2f:d1:28:71:bf:c7:49:e6:54:79:4e:c9:04:2c:b9:
c5:32:c7:32:c2:bc:00:1e:ff:3e:4d:98:a0:52:dc:5d:bd:42:
53:fe:1a:a7:eb:72:de:12:35:32:58:29:50:30:23:93:07:83:
51:d6:33:6b:b1:07:f5:95:50:f1:49:07:10:e5:a5:02:28:f0:
c5:fc:15:45:50:6d:f3:0b:68:5f:7f:d5:bf:d4:20:79:42:82:
d4:c0:88:a8:7f:2a:89:5f:ea:2f:05:d2:38:23:f4:ec:c4:f6:
8f:1c:6e:26:b6:86:dd:1e:47:9f:fb:d1:dc:b8:a9:dd:19:34:
7c:30:df:b2:ed:50:07:02:47:bc:51:81:43:c7:59:77:25:1d:
70:1d:b6:48:66:de:a4:c2:5f:b2:6d:94:8d:d3:2d:66:bf:a9:
4d:8c:bd:d7:fa:4b:c5:dd:f3:4a:a2:6f:e2:01:d3:e4:62:89:
0e:23:98:c0:23:d2:d9:89:ac:d8:00:17:8a:80:c2:bc:7e:00:
a5:8b:a0:b3:82:5e:a3:50:c6:92:3f:36:e1:f0:b9:f4:0e:f4:
e2:3e:a0:32:40:72:e0:54:24:13:da:3d:64:62:17:e3:3d:f5:
ab:52:58:af:67:e5:51:fa:b8:42:16:70:bb:75:54:89:1a:05:
12:99:0e:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxEzHQ7hWb4oP6L/vdElZOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjFjNTQzODQ0YzQxN2Y2MWFkNzkzOTI0NGQzYjc1OWMy
YTQzZWQwHhcNMjUxMTExMDQwMTE0WhcNMjUxMTEyMDQwMTE0WjAzMTEwLwYDVQQD
Eyg5YzgyZWFjMTBiYmQyMjQ3OTYwNDAxOWUxZjY3NzhkM2U4ZjBlYmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoK85Ym1CHtCSuAzBJ/jl9HHn4r4M
Ic7Obd36HD1cWtMIuAPItT+GWoYXRocHo0RKpMl1Fx4FJwY63C/G1K4XpYbNdoNH
e52PlyPNoi9Rguec3SZViVTJdKsZFcnCjdwzaZSm+0IfTiRaTa8qoHiUsnCR9Ma3
GoAyx6ocLax/WrKNZwACSfuctt1V19bXGeoC/5nxFM4i+HidHRvvrxkY4t+CqwOA
6JsHKQ6K/X759ROLGcxSUFRuDWpFgr5aIxrujGNfOTgN3S9qbAr3EpnpvC2WrBv9
sqTcubGg9uugq265/qI17nef55lhEnRepRpzUNKvegKqENQt5MCv8QafqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJyC6sELvSJHlgQBnh9neNPo8Ou1MB8GA1UdIwQY
MBaAFB8hxUOETEF/Ya15OSRNO3WcKkPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2Qt
YjhjNDg1M2U0MmJjLzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2QtYjhjNDg1M2U0MmJj
LzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANr5VL9Eo
cb/HSeZUeU7JBCy5xTLHMsK8AB7/Pk2YoFLcXb1CU/4ap+ty3hI1MlgpUDAjkweD
UdYza7EH9ZVQ8UkHEOWlAijwxfwVRVBt8wtoX3/Vv9QgeUKC1MCIqH8qiV/qLwXS
OCP07MT2jxxuJraG3R5Hn/vR3Lip3Rk0fDDfsu1QBwJHvFGBQ8dZdyUdcB22SGbe
pMJfsm2UjdMtZr+pTYy91/pLxd3zSqJv4gHT5GKJDiOYwCPS2Yms2AAXioDCvH4A
pYugs4Jeo1DGkj824fC59A704j6gMkBy4FQkE9o9ZGIX4z31q1JYr2flUfq4QhZw
u3VUiRoFEpkORQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:57 2025 by rpki-client