Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
File: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft (raw, json)
Hash identifier: mxiRHfOtTF74ZEBQtaweNpI/ai0o6AWgMreiMcGRkT4=
Subject key identifier: 9E:62:2C:79:FF:FC:66:C0:CC:A2:0C:38:0A:C5:1D:2C:14:B1:B8:62
Authority key identifier: 86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
Certificate issuer: /CN=86c62c6962ea33029b480260989e1851c3252171
Certificate serial: 019921E79D23682EAB7ACA73D12DB2BB6B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
Manifest number: 0201
Signing time: Sun 07 Sep 2025 02:00:51 +0000
Manifest this update: Sun 07 Sep 2025 02:00:51 +0000
Manifest next update: Mon 08 Sep 2025 02:00:51 +0000
Files and hashes: 1: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl (hash: TUFXrXilPDXqD9Cp4sRd837Ve4DlHj4+GOKJjNMfP10=)
2: is7DkK81PMh7JZG7-MMXvu0KAJc.roa (hash: 5AryV0mRq30AxQOgSKEEzO83i7o3Dx9gPE05wVnrsnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:9d:23:68:2e:ab:7a:ca:73:d1:2d:b2:bb:6b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86c62c6962ea33029b480260989e1851c3252171
Validity
Not Before: Sep 7 02:00:51 2025 GMT
Not After : Sep 8 02:00:51 2025 GMT
Subject: CN=9e622c79fffc66c0cca20c380ac51d2c14b1b862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c5:9d:7e:9e:db:15:b7:1d:6d:a9:bf:80:f7:
4b:d2:41:67:92:f0:fa:b7:9b:66:d6:d9:80:0c:15:
2e:90:c9:83:7a:3a:42:98:66:f2:27:40:b7:64:6d:
39:68:ef:e3:b7:4d:8d:79:c4:b8:be:6e:94:fc:fc:
11:39:a9:4d:25:af:1e:2c:63:75:ca:1b:22:ec:85:
24:6b:89:98:a6:9e:23:a1:26:d2:3d:2c:15:d4:55:
27:0d:4a:45:71:cf:16:96:d9:76:86:38:14:e4:d0:
a9:57:e8:0b:4c:8f:ae:63:23:a0:b8:49:da:2b:b3:
56:ba:61:eb:60:9d:81:c4:f6:a1:c6:1b:aa:53:3a:
2d:0f:2a:4d:49:cc:41:0f:6e:79:55:70:ae:8c:c6:
a1:9b:12:59:47:f8:13:f4:06:56:aa:51:9d:b4:32:
51:2a:ba:95:9b:65:a8:cc:30:6d:80:ad:d6:0d:4c:
51:95:de:77:9a:ff:60:99:a1:12:bb:9f:3b:96:e6:
8a:8b:f1:55:4a:6f:9c:43:87:5c:53:71:d5:20:03:
bb:16:10:5f:b7:16:13:ff:15:23:09:55:72:1a:26:
58:82:14:40:20:75:3e:93:9e:71:5b:2d:ba:8b:cd:
c3:e5:92:4d:32:4e:68:74:c0:f2:be:fb:14:fb:7c:
aa:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:62:2C:79:FF:FC:66:C0:CC:A2:0C:38:0A:C5:1D:2C:14:B1:B8:62
X509v3 Authority Key Identifier:
keyid:86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:22:05:12:e5:86:dc:44:c9:04:d8:e5:1f:f5:c8:47:e5:e1:
69:19:dd:88:71:2b:95:50:b5:2a:9d:b0:bb:bf:83:7e:45:39:
b1:ba:14:f8:8a:4b:ba:f0:0a:88:eb:bd:07:9e:02:b9:61:ad:
d2:94:05:c5:1a:a0:ce:f7:ce:a1:e3:c7:d4:9d:c4:6e:d0:83:
54:6b:cd:b6:f0:cf:50:d2:a8:8d:17:45:dd:74:95:16:b1:5c:
c8:ae:21:a9:0b:9d:e1:41:a0:21:d6:92:66:1d:bf:0a:47:84:
e8:74:b1:42:f9:60:14:f8:ab:7f:e2:0e:ca:39:d3:7c:76:63:
44:51:2f:ca:dd:97:a3:42:70:4b:0c:74:0c:1f:58:bd:4c:58:
f5:58:a5:24:17:e9:f6:ce:3c:9c:47:fd:f2:3b:6e:84:12:ce:
d8:d8:80:22:c2:09:8d:8a:53:b8:77:ac:a8:cb:50:eb:d2:28:
69:d9:35:dc:44:3f:91:fe:62:70:6d:75:b8:5a:db:9f:6c:72:
61:62:a2:85:df:37:c3:08:cb:83:27:5c:5e:9c:3c:8f:51:b2:
f0:0e:ec:cf:71:1d:3d:62:4b:24:86:80:f0:da:27:b4:9d:d8:
13:ad:01:cc:f3:53:62:03:07:25:3c:fe:18:85:05:4e:60:5a:
d1:50:8a:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh550jaC6respz0S2yu2ucMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YzYyYzY5NjJlYTMzMDI5YjQ4MDI2MDk4OWUxODUxYzMy
NTIxNzEwHhcNMjUwOTA3MDIwMDUxWhcNMjUwOTA4MDIwMDUxWjAzMTEwLwYDVQQD
Eyg5ZTYyMmM3OWZmZmM2NmMwY2NhMjBjMzgwYWM1MWQyYzE0YjFiODYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8Wdfp7bFbcdbam/gPdL0kFnkvD6
t5tm1tmADBUukMmDejpCmGbyJ0C3ZG05aO/jt02NecS4vm6U/PwROalNJa8eLGN1
yhsi7IUka4mYpp4joSbSPSwV1FUnDUpFcc8Wltl2hjgU5NCpV+gLTI+uYyOguEna
K7NWumHrYJ2BxPahxhuqUzotDypNScxBD255VXCujMahmxJZR/gT9AZWqlGdtDJR
KrqVm2WozDBtgK3WDUxRld53mv9gmaESu587luaKi/FVSm+cQ4dcU3HVIAO7FhBf
txYT/xUjCVVyGiZYghRAIHU+k55xWy26i83D5ZJNMk5odMDyvvsU+3yqzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ5iLHn//GbAzKIMOArFHSwUsbhiMB8GA1UdIwQY
MBaAFIbGLGli6jMCm0gCYJieGFHDJSFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8zNzVmMDQtM2ViMi00ZDliLTkwZmQt
MjQ5YmI0NjFiYTViLzEvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8zNzVmMDQtM2ViMi00ZDliLTkwZmQtMjQ5YmI0NjFiYTVi
LzEvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASyIFEuWG
3ETJBNjlH/XIR+XhaRndiHErlVC1Kp2wu7+DfkU5sboU+IpLuvAKiOu9B54CuWGt
0pQFxRqgzvfOoePH1J3EbtCDVGvNtvDPUNKojRdF3XSVFrFcyK4hqQud4UGgIdaS
Zh2/CkeE6HSxQvlgFPirf+IOyjnTfHZjRFEvyt2Xo0JwSwx0DB9YvUxY9VilJBfp
9s48nEf98jtuhBLO2NiAIsIJjYpTuHesqMtQ69Ioadk13EQ/kf5icG11uFrbn2xy
YWKihd83wwjLgydcXpw8j1Gy8A7sz3EdPWJLJIaA8NontJ3YE60BzPNTYgMHJTz+
GIUFTmBa0VCK5A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:08:24 2025 by rpki-client