Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
File: hlsHwonfa8nHYttDKboM48Up_ss.mft (raw, json)
Hash identifier: OlaHol5oBBxxgntoSQUCtlrjL5qOHoaws3FJ/hdz33k=
Subject key identifier: 35:16:20:EE:76:E9:31:1E:CC:3C:A3:B3:F5:3A:8C:08:74:DE:6A:7D
Authority key identifier: 86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
Certificate issuer: /CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Certificate serial: 01992367D4B0A6027CE8899C43E7F469BEF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
Manifest number: 64
Signing time: Sun 07 Sep 2025 09:00:31 +0000
Manifest this update: Sun 07 Sep 2025 09:00:31 +0000
Manifest next update: Mon 08 Sep 2025 09:00:31 +0000
Files and hashes: 1: EyJIl9GgE7NEizESEZnZ9ODAHzw.roa (hash: TDhr2Br5ELeOUc6goo8nbxisdzgPRnJxdfCh2qX9VlY=)
2: hlsHwonfa8nHYttDKboM48Up_ss.crl (hash: tUcGjqPzmWgMFXFnQtsegreM2pyMsYHdOTVNHUnYD1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:67:d4:b0:a6:02:7c:e8:89:9c:43:e7:f4:69:be:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865b07c289df6bc9c762db4329ba0ce3c529fecb
Validity
Not Before: Sep 7 09:00:31 2025 GMT
Not After : Sep 8 09:00:31 2025 GMT
Subject: CN=351620ee76e9311ecc3ca3b3f53a8c0874de6a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:a2:65:a1:4f:10:5b:18:08:04:6d:1d:10:
f4:dc:06:5e:c2:35:85:a3:4c:42:1a:9c:bc:b8:4a:
76:2c:9a:c4:8c:d6:58:2f:a2:ca:06:be:e1:bf:13:
88:b1:49:dc:be:32:e1:0e:fe:39:b0:88:94:a7:58:
8a:71:5c:b4:2e:03:6e:e8:45:3c:3d:4b:26:a3:99:
37:8a:99:a4:eb:40:b3:03:96:09:cd:bb:a7:07:e0:
fa:f4:a3:3f:cb:e6:04:e1:38:10:d6:5d:84:9a:db:
2a:75:87:dd:f1:1a:b4:89:29:ca:e7:34:e5:6b:19:
97:1d:ba:92:7a:e6:8f:f6:34:80:37:af:40:d5:83:
9d:a1:d8:c3:1f:9d:70:d6:1c:fb:4e:08:0f:0e:67:
79:02:ab:2b:ad:1d:f8:08:e5:4b:cd:28:2c:78:93:
93:bb:6f:f2:60:0a:4e:3e:61:b8:45:14:35:b3:e3:
23:7f:ef:80:76:2a:8f:ed:88:53:3d:bd:69:54:ed:
15:21:a1:ee:eb:1a:95:f9:b3:1e:a2:e4:25:54:fe:
a0:73:73:63:ab:7f:c2:68:37:65:46:8d:a0:f9:d1:
a5:7a:f4:6a:c9:ef:69:91:c5:88:9e:f8:28:39:e7:
5d:a3:03:82:ab:49:11:84:e6:3b:8a:fb:21:4a:6c:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:16:20:EE:76:E9:31:1E:CC:3C:A3:B3:F5:3A:8C:08:74:DE:6A:7D
X509v3 Authority Key Identifier:
keyid:86:5B:07:C2:89:DF:6B:C9:C7:62:DB:43:29:BA:0C:E3:C5:29:FE:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hlsHwonfa8nHYttDKboM48Up_ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/4d1ab6-465b-4276-bc4a-2afa303e495d/1/hlsHwonfa8nHYttDKboM48Up_ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:69:33:e7:67:d3:23:ad:d7:9c:1b:93:99:c3:4d:ba:9b:78:
49:c3:26:d3:61:10:fa:a6:b8:78:ce:aa:e8:db:7f:cf:e5:5b:
5d:e4:18:d6:62:9f:0f:6b:f6:15:48:1d:34:76:05:e2:3f:ba:
a1:89:39:28:e4:0d:f2:1e:6e:cc:47:6e:05:1a:08:47:2f:58:
31:93:60:b8:d8:fa:22:3e:c0:9a:0d:93:e8:40:3c:67:2b:3d:
a4:61:e9:8d:63:9c:6d:71:b3:52:ca:31:4f:37:f7:9a:a1:50:
d6:b1:4c:f1:96:0e:9d:44:24:6c:fb:e1:8e:ac:cb:08:1f:f3:
b6:39:67:9b:da:83:fa:cd:64:e0:a4:a0:cf:4a:24:43:a8:d4:
dc:4b:cf:c7:e9:28:e6:93:84:a5:16:7c:11:ed:a8:6f:3b:cf:
ed:c3:cc:73:d4:21:4e:40:a2:31:a1:e6:a2:8d:ea:a1:08:11:
d6:ed:32:53:9b:5c:60:6f:54:7a:b8:b0:aa:56:e9:8c:c3:8b:
a7:28:75:bf:7c:03:01:ca:b0:6d:fd:4a:53:a3:c8:f2:b8:92:
bb:8d:b0:f3:53:10:19:3c:48:07:de:2c:1d:2a:5e:dd:1c:55:
b6:04:70:7a:07:49:d7:8c:a4:13:17:6d:c6:db:5a:a4:8a:e8:
1a:8a:49:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjZ9SwpgJ86ImcQ+f0ab7zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NWIwN2MyODlkZjZiYzljNzYyZGI0MzI5YmEwY2UzYzUy
OWZlY2IwHhcNMjUwOTA3MDkwMDMxWhcNMjUwOTA4MDkwMDMxWjAzMTEwLwYDVQQD
EygzNTE2MjBlZTc2ZTkzMTFlY2MzY2EzYjNmNTNhOGMwODc0ZGU2YTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRuiZaFPEFsYCARtHRD03AZewjWF
o0xCGpy8uEp2LJrEjNZYL6LKBr7hvxOIsUncvjLhDv45sIiUp1iKcVy0LgNu6EU8
PUsmo5k3ipmk60CzA5YJzbunB+D69KM/y+YE4TgQ1l2EmtsqdYfd8Rq0iSnK5zTl
axmXHbqSeuaP9jSAN69A1YOdodjDH51w1hz7TggPDmd5AqsrrR34COVLzSgseJOT
u2/yYApOPmG4RRQ1s+Mjf++AdiqP7YhTPb1pVO0VIaHu6xqV+bMeouQlVP6gc3Nj
q3/CaDdlRo2g+dGlevRqye9pkcWInvgoOeddowOCq0kRhOY7ivshSmwd/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDUWIO526TEezDyjs/U6jAh03mp9MB8GA1UdIwQY
MBaAFIZbB8KJ32vJx2LbQym6DOPFKf7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEt
MmFmYTMwM2U0OTVkLzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80ZDFhYjYtNDY1Yi00Mjc2LWJjNGEtMmFmYTMwM2U0OTVk
LzEvaGxzSHdvbmZhOG5IWXR0REtib000OFVwX3NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD2kz52fT
I63XnBuTmcNNupt4ScMm02EQ+qa4eM6q6Nt/z+VbXeQY1mKfD2v2FUgdNHYF4j+6
oYk5KOQN8h5uzEduBRoIRy9YMZNguNj6Ij7Amg2T6EA8Zys9pGHpjWOcbXGzUsox
Tzf3mqFQ1rFM8ZYOnUQkbPvhjqzLCB/ztjlnm9qD+s1k4KSgz0okQ6jU3EvPx+ko
5pOEpRZ8Ee2obzvP7cPMc9QhTkCiMaHmoo3qoQgR1u0yU5tcYG9UeriwqlbpjMOL
pyh1v3wDAcqwbf1KU6PI8riSu42w81MQGTxIB94sHSpe3RxVtgRwegdJ14ykExdt
xttapIroGopJ3g==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:51 2025 by rpki-client