Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
File: HzPIww-60mD0qd98O1IGahp7TtU.mft (raw, json)
Hash identifier: YAv6RuJjI9G3ZoOuDPMwhj6Aw1m8cSXU0l1QDDaZQ3o=
Subject key identifier: 56:1E:20:E1:47:5C:A9:83:FE:41:9B:CE:A3:DA:76:AD:5D:8A:5C:86
Authority key identifier: 1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
Certificate issuer: /CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Certificate serial: 0199228C27156CE158568E347154D1CBC88F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
Manifest number: 30
Signing time: Sun 07 Sep 2025 05:00:33 +0000
Manifest this update: Sun 07 Sep 2025 05:00:33 +0000
Manifest next update: Mon 08 Sep 2025 05:00:33 +0000
Files and hashes: 1: HzPIww-60mD0qd98O1IGahp7TtU.crl (hash: mWhWtB7lWHSMN72nDsoOmyiYdbS/iLquKT1m+IjpeuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:27:15:6c:e1:58:56:8e:34:71:54:d1:cb:c8:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5
Validity
Not Before: Sep 7 05:00:33 2025 GMT
Not After : Sep 8 05:00:33 2025 GMT
Subject: CN=561e20e1475ca983fe419bcea3da76ad5d8a5c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3c:27:50:20:41:cb:4f:f6:4c:ef:c6:03:bf:
aa:a2:8d:2a:ee:b6:a4:44:d1:a2:03:33:20:95:35:
b9:e6:49:a6:02:bd:85:97:67:44:6c:50:4c:53:88:
99:c6:7c:a8:04:13:09:e0:6f:1b:72:a3:ba:df:b1:
c4:af:96:7a:18:30:ec:4e:0d:43:b6:dd:bb:48:21:
dc:b9:42:05:96:9b:df:5e:97:21:3e:dc:f9:01:e5:
5a:25:f1:53:77:69:37:bf:65:49:25:26:78:70:44:
b7:74:f1:e0:39:48:68:5d:11:f0:d9:07:b6:0a:7d:
ac:c8:26:d3:a7:8d:86:46:39:b7:f6:df:21:04:09:
f6:7d:07:e1:4b:d2:4f:09:d8:91:a5:d5:c0:d1:3e:
c9:ea:b2:b2:44:4a:d7:75:b6:bc:d0:86:38:e0:2e:
2a:21:2c:67:45:60:c6:24:b7:f1:80:0f:01:fd:15:
ff:36:70:87:8b:ad:6f:b2:bc:6f:51:4c:64:a8:4c:
c9:17:a0:b8:1e:ae:82:68:5f:81:9f:3a:ed:4a:af:
ca:ba:0a:ed:0b:84:a9:dd:b5:c4:85:d9:42:34:da:
e0:07:34:dc:04:1d:42:c5:ba:d3:be:45:7b:4d:92:
60:12:49:1e:68:d8:ac:d1:e8:96:39:82:47:19:71:
c6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1E:20:E1:47:5C:A9:83:FE:41:9B:CE:A3:DA:76:AD:5D:8A:5C:86
X509v3 Authority Key Identifier:
keyid:1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:3a:89:12:7e:5d:96:8a:b1:96:fb:f7:91:b9:6a:e2:76:11:
10:89:d2:82:6b:63:7b:53:cb:f3:89:8d:a4:ad:d8:3a:8c:c3:
f9:7b:83:d0:89:83:fa:4e:57:cd:c9:24:05:54:8e:b7:b6:20:
7c:5f:d2:3d:cf:3f:29:a9:76:c5:29:c9:31:f3:f5:2b:c8:3a:
c4:a5:3e:3b:51:46:b8:ba:24:ab:ae:07:76:60:5a:b0:e8:c6:
85:f1:59:22:80:ae:76:9c:7c:c5:3b:21:2c:be:2e:69:8c:d1:
c6:3d:f9:da:d6:0d:b2:24:34:34:d9:a6:30:ab:ee:f8:43:01:
66:f1:b0:51:11:80:46:96:44:50:9f:d1:2e:8c:84:d9:fc:2d:
d4:c8:ac:5c:e2:35:f7:fc:5b:09:99:eb:fa:96:bc:f6:04:e0:
61:07:a8:79:0b:2e:d1:54:fd:0b:e0:ad:5f:0f:be:8f:66:0e:
16:6d:d1:a3:fd:ad:a6:f3:1e:c4:62:c6:ca:b1:4e:84:8d:eb:
c1:77:d9:9d:9e:4a:85:d3:1a:e6:6d:c0:7a:c4:34:26:6e:fb:
e9:14:c4:ec:8e:50:36:f9:c1:b6:ac:62:bf:75:a6:20:3a:e1:
69:39:3a:66:14:73:17:41:fa:76:1c:91:a4:08:fe:e0:65:61:
7c:7b:9b:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijCcVbOFYVo40cVTRy8iPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMzNjOGMzMGZiYWQyNjBmNGE5ZGY3YzNiNTIwNjZhMWE3
YjRlZDUwHhcNMjUwOTA3MDUwMDMzWhcNMjUwOTA4MDUwMDMzWjAzMTEwLwYDVQQD
Eyg1NjFlMjBlMTQ3NWNhOTgzZmU0MTliY2VhM2RhNzZhZDVkOGE1Yzg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTwnUCBBy0/2TO/GA7+qoo0q7rak
RNGiAzMglTW55kmmAr2Fl2dEbFBMU4iZxnyoBBMJ4G8bcqO637HEr5Z6GDDsTg1D
tt27SCHcuUIFlpvfXpchPtz5AeVaJfFTd2k3v2VJJSZ4cES3dPHgOUhoXRHw2Qe2
Cn2syCbTp42GRjm39t8hBAn2fQfhS9JPCdiRpdXA0T7J6rKyRErXdba80IY44C4q
ISxnRWDGJLfxgA8B/RX/NnCHi61vsrxvUUxkqEzJF6C4Hq6CaF+BnzrtSq/Kugrt
C4Sp3bXEhdlCNNrgBzTcBB1CxbrTvkV7TZJgEkkeaNis0eiWOYJHGXHGHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFYeIOFHXKmD/kGbzqPadq1dilyGMB8GA1UdIwQY
MBaAFB8zyMMPutJg9KnffDtSBmoae07VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9lYWRlOTgtNGUxZC00Yzk4LTg1MDkt
MTM0NDE1ZmUxNWQwLzEvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS9lYWRlOTgtNGUxZC00Yzk4LTg1MDktMTM0NDE1ZmUxNWQw
LzEvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhzqJEn5d
loqxlvv3kblq4nYREInSgmtje1PL84mNpK3YOozD+XuD0ImD+k5XzckkBVSOt7Yg
fF/SPc8/Kal2xSnJMfP1K8g6xKU+O1FGuLokq64HdmBasOjGhfFZIoCudpx8xTsh
LL4uaYzRxj352tYNsiQ0NNmmMKvu+EMBZvGwURGARpZEUJ/RLoyE2fwt1MisXOI1
9/xbCZnr+pa89gTgYQeoeQsu0VT9C+CtXw++j2YOFm3Ro/2tpvMexGLGyrFOhI3r
wXfZnZ5KhdMa5m3AesQ0Jm776RTE7I5QNvnBtqxiv3WmIDrhaTk6ZhRzF0H6dhyR
pAj+4GVhfHubUQ==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:07 2025 by rpki-client