Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: vM+lbQ2O8laObb5eI+ywafcZG7Gu/8NMlevzQvfMUEU=
Subject key identifier: 13:79:2B:04:B4:48:5C:75:6A:6F:7F:27:8E:03:F0:BF:11:60:91:94
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 019922FA3BCC9CED509AA17030BFB544ADFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 1436
Signing time: Sun 07 Sep 2025 07:00:48 +0000
Manifest this update: Sun 07 Sep 2025 07:00:48 +0000
Manifest next update: Mon 08 Sep 2025 07:00:48 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: Ikl+GxoBZhTEmkf/4Fjx0wa9iW/weqRm9c3l8qX+lik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:3b:cc:9c:ed:50:9a:a1:70:30:bf:b5:44:ad:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Sep 7 07:00:48 2025 GMT
Not After : Sep 8 07:00:48 2025 GMT
Subject: CN=13792b04b4485c756a6f7f278e03f0bf11609194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:e0:d2:17:f8:1a:8c:90:fe:e1:03:70:b8:
f5:3a:67:4c:cd:39:60:17:b1:86:64:8a:9f:59:49:
1c:5c:cb:7b:db:28:33:eb:2b:4b:40:01:43:c7:fd:
0d:dd:44:9e:ba:d9:5b:dd:0f:09:ef:ee:c2:ba:30:
af:4b:a6:0f:01:5d:cb:af:1f:bb:6a:7a:53:29:18:
c7:1f:20:78:99:9f:09:3f:a6:eb:2f:84:78:86:b6:
9a:5d:b8:34:99:79:01:dc:66:39:c6:95:15:b8:88:
53:c3:a3:d6:c6:0f:61:cb:78:bd:41:aa:ad:02:70:
a8:27:0b:e7:2c:67:76:54:c0:0d:2c:76:25:7d:d4:
2b:fd:28:ef:6a:81:86:d8:76:c0:9d:59:bb:85:e6:
aa:31:96:cd:56:cd:bc:09:53:30:dd:ce:65:5c:32:
10:6f:99:13:4e:68:20:78:aa:0e:8e:69:c1:15:a7:
7c:86:e3:a8:76:2a:ca:b4:be:3a:f8:2d:46:e4:a3:
b2:20:f1:3b:ce:f0:5b:cc:7a:b3:dd:a2:32:3c:e9:
7d:b5:2d:5a:43:97:fb:af:80:b2:59:e7:aa:83:0a:
46:5d:69:98:9f:71:14:eb:1f:3a:58:8c:63:5c:72:
87:54:d9:06:85:d1:57:eb:30:4a:0e:73:27:2d:18:
6d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:79:2B:04:B4:48:5C:75:6A:6F:7F:27:8E:03:F0:BF:11:60:91:94
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:69:0b:02:47:74:72:92:70:a4:71:71:d9:9c:5c:2b:88:b5:
16:ed:e2:af:e7:5d:e2:63:0b:12:a6:d5:a5:52:00:ce:c5:46:
81:27:6f:8f:d7:1f:f2:67:51:b5:af:02:5d:cc:64:39:cb:8a:
6f:f8:94:2d:23:06:ef:5e:c6:38:37:a8:89:1f:1a:56:65:4d:
45:bd:6c:cf:83:e4:ad:ba:8d:b6:2e:69:5b:3f:d6:1b:20:d5:
b9:85:95:c9:ac:63:00:8f:a1:58:c3:93:5e:ba:b0:ee:0a:52:
62:5a:96:9c:cf:5b:2f:42:63:b8:1d:34:01:2f:7f:95:cd:76:
21:a7:42:00:2f:63:9b:12:a3:9d:4f:20:09:67:33:11:2e:96:
ab:5f:32:f0:e4:46:01:b6:7d:d9:bd:0a:92:7b:f2:96:f1:67:
f0:78:be:e6:3b:06:27:e7:8c:79:98:83:18:8c:fb:c0:7c:25:
00:43:10:16:59:1f:e1:cc:68:44:1f:9c:bc:1c:d9:6e:d9:71:
19:e0:37:58:91:7f:32:ee:e1:a2:e1:53:90:d2:fe:c7:36:45:
1a:e7:fc:b3:35:c7:0d:b6:a8:f7:06:5a:70:e9:0a:81:44:ac:
0d:c6:ec:35:60:40:23:3f:5f:13:00:d5:71:5f:a6:60:4c:cd:
b8:8e:75:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+jvMnO1QmqFwML+1RK36MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkODkzM2MxOTNmMDRlMzI0NDFlMzcxNjJkYzRkZWZhOTc0
NGI4NGYwHhcNMjUwOTA3MDcwMDQ4WhcNMjUwOTA4MDcwMDQ4WjAzMTEwLwYDVQQD
EygxMzc5MmIwNGI0NDg1Yzc1NmE2ZjdmMjc4ZTAzZjBiZjExNjA5MTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA237g0hf4GoyQ/uEDcLj1OmdMzTlg
F7GGZIqfWUkcXMt72ygz6ytLQAFDx/0N3USeutlb3Q8J7+7CujCvS6YPAV3Lrx+7
anpTKRjHHyB4mZ8JP6brL4R4hraaXbg0mXkB3GY5xpUVuIhTw6PWxg9hy3i9Qaqt
AnCoJwvnLGd2VMANLHYlfdQr/SjvaoGG2HbAnVm7heaqMZbNVs28CVMw3c5lXDIQ
b5kTTmggeKoOjmnBFad8huOodirKtL46+C1G5KOyIPE7zvBbzHqz3aIyPOl9tS1a
Q5f7r4CyWeeqgwpGXWmYn3EU6x86WIxjXHKHVNkGhdFX6zBKDnMnLRht5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBN5KwS0SFx1am9/J44D8L8RYJGUMB8GA1UdIwQY
MBaAFB2JM8GT8E4yRB43Fi3E3vqXRLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEt
MzQyZDFiMzgxZDg3LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEtMzQyZDFiMzgxZDg3
LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhGkLAkd0
cpJwpHFx2ZxcK4i1Fu3ir+dd4mMLEqbVpVIAzsVGgSdvj9cf8mdRta8CXcxkOcuK
b/iULSMG717GODeoiR8aVmVNRb1sz4PkrbqNti5pWz/WGyDVuYWVyaxjAI+hWMOT
Xrqw7gpSYlqWnM9bL0JjuB00AS9/lc12IadCAC9jmxKjnU8gCWczES6Wq18y8ORG
AbZ92b0KknvylvFn8Hi+5jsGJ+eMeZiDGIz7wHwlAEMQFlkf4cxoRB+cvBzZbtlx
GeA3WJF/Mu7houFTkNL+xzZFGuf8szXHDbao9wZacOkKgUSsDcbsNWBAIz9fEwDV
cV+mYEzNuI51cw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:27 2025 by rpki-client