Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
File: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft (raw, json)
Hash identifier: zA+U756M/GTJxe0fIAz2C5xSWx8Mk/YyXH2WZ4ov1xo=
Subject key identifier: FB:7B:FB:B8:87:12:6E:3F:B3:F7:6E:FB:35:B6:B4:93:66:75:71:2E
Authority key identifier: 86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
Certificate issuer: /CN=86c62c6962ea33029b480260989e1851c3252171
Certificate serial: 01974E8E1C26C238E1D8156B4FA1F7F9779B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
Manifest number: 010F
Signing time: Sun 08 Jun 2025 08:00:25 +0000
Manifest this update: Sun 08 Jun 2025 08:00:25 +0000
Manifest next update: Mon 09 Jun 2025 08:00:25 +0000
Files and hashes: 1: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl (hash: ERXcPOVPV9olWgBFfDRA1ldwU3Ljq+RNPAAON5EkEko=)
2: is7DkK81PMh7JZG7-MMXvu0KAJc.roa (hash: 5AryV0mRq30AxQOgSKEEzO83i7o3Dx9gPE05wVnrsnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:1c:26:c2:38:e1:d8:15:6b:4f:a1:f7:f9:77:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86c62c6962ea33029b480260989e1851c3252171
Validity
Not Before: Jun 8 08:00:25 2025 GMT
Not After : Jun 9 08:00:25 2025 GMT
Subject: CN=fb7bfbb887126e3fb3f76efb35b6b4936675712e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:83:e3:4b:fb:d0:f3:61:76:7b:95:97:3a:ff:
c2:f7:46:da:2e:3a:6b:9f:ed:cd:6e:1b:8f:55:46:
72:3d:93:9e:2a:01:9d:5d:81:84:88:33:73:4e:8d:
a6:3a:b8:7e:4f:be:d0:b9:a8:42:12:29:36:bf:b4:
cd:88:0b:4a:f5:21:c2:e1:81:ff:94:70:71:1d:e7:
ff:50:20:d3:58:bd:1e:1e:1e:cb:4e:92:38:fb:51:
7f:d9:01:6a:0b:81:35:52:83:3c:82:af:0c:e2:06:
ff:23:e0:70:2d:6a:7b:74:c8:ff:1b:ff:00:f8:22:
de:cf:ef:8d:bd:4b:a7:d6:4d:2b:86:69:de:7c:61:
4d:1e:1e:3c:d6:e2:9f:85:a6:40:fb:c2:17:a0:29:
24:cb:0c:8d:f8:de:67:7d:04:0c:8c:52:e7:f0:7b:
ba:34:7d:15:a1:d2:08:2f:74:c5:e5:8d:ff:03:f5:
a2:8a:ca:28:f3:db:b0:ee:4a:aa:00:b9:ce:e2:4d:
ea:d5:68:16:c7:07:17:ba:dd:ad:5a:59:b5:5f:19:
fb:49:2c:6a:d7:84:b2:cf:43:28:c1:b5:0d:85:e9:
3d:da:e9:3f:20:c3:0f:4c:e9:54:93:6e:16:44:4f:
8e:9c:9e:e8:4c:85:d7:ca:f7:f0:85:3a:d2:4f:4f:
7d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7B:FB:B8:87:12:6E:3F:B3:F7:6E:FB:35:B6:B4:93:66:75:71:2E
X509v3 Authority Key Identifier:
keyid:86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:48:a8:a5:f4:49:30:31:57:ea:a7:b1:d7:0c:c0:00:03:86:
2a:5c:3f:6b:bb:d1:f3:5f:26:08:f7:b7:99:fc:fe:07:2e:e3:
15:d4:60:89:a1:b4:d5:fd:f2:cf:fe:fb:9f:4f:f7:30:c3:7c:
6c:16:60:cb:46:03:5e:08:3c:6d:b9:34:4c:de:17:cf:0b:80:
9b:80:63:a3:f8:3e:be:cb:31:99:ab:cc:6c:3d:79:2c:31:3b:
f6:35:3c:48:1d:90:69:e2:0c:56:39:99:7a:45:42:7d:91:5a:
55:c8:9d:59:b9:ab:f2:b1:d6:9d:6e:51:d6:a3:fe:a2:d3:1b:
ed:92:56:76:62:67:a7:86:20:e5:58:ef:36:be:42:e3:65:30:
79:63:c6:39:85:aa:5f:ef:5f:59:1a:e4:76:14:77:de:6f:1c:
72:27:be:bc:43:dc:50:4b:d4:b7:c4:ae:3e:c7:20:7d:6b:d6:
59:41:3b:ff:45:2e:ec:dc:d9:ee:6d:3b:9c:2d:6c:6c:d4:a4:
10:c1:f4:45:43:26:3b:37:23:4c:d3:df:f1:3c:8e:51:28:97:
7f:c7:99:1c:68:4e:47:77:f1:46:f2:cd:b3:16:ef:f7:38:77:
42:28:23:84:76:ca:e7:03:35:e0:09:ae:79:8e:c4:af:98:68:
92:b6:89:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOjhwmwjjh2BVrT6H3+XebMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YzYyYzY5NjJlYTMzMDI5YjQ4MDI2MDk4OWUxODUxYzMy
NTIxNzEwHhcNMjUwNjA4MDgwMDI1WhcNMjUwNjA5MDgwMDI1WjAzMTEwLwYDVQQD
EyhmYjdiZmJiODg3MTI2ZTNmYjNmNzZlZmIzNWI2YjQ5MzY2NzU3MTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYPjS/vQ82F2e5WXOv/C90baLjpr
n+3NbhuPVUZyPZOeKgGdXYGEiDNzTo2mOrh+T77QuahCEik2v7TNiAtK9SHC4YH/
lHBxHef/UCDTWL0eHh7LTpI4+1F/2QFqC4E1UoM8gq8M4gb/I+BwLWp7dMj/G/8A
+CLez++NvUun1k0rhmnefGFNHh481uKfhaZA+8IXoCkkywyN+N5nfQQMjFLn8Hu6
NH0VodIIL3TF5Y3/A/Wiisoo89uw7kqqALnO4k3q1WgWxwcXut2tWlm1Xxn7SSxq
14Syz0MowbUNhek92uk/IMMPTOlUk24WRE+OnJ7oTIXXyvfwhTrST099cQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPt7+7iHEm4/s/du+zW2tJNmdXEuMB8GA1UdIwQY
MBaAFIbGLGli6jMCm0gCYJieGFHDJSFxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8zNzVmMDQtM2ViMi00ZDliLTkwZmQt
MjQ5YmI0NjFiYTViLzEvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS8zNzVmMDQtM2ViMi00ZDliLTkwZmQtMjQ5YmI0NjFiYTVi
LzEvaHNZc2FXTHFNd0tiU0FKZ21KNFlVY01sSVhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYkiopfRJ
MDFX6qex1wzAAAOGKlw/a7vR818mCPe3mfz+By7jFdRgiaG01f3yz/77n0/3MMN8
bBZgy0YDXgg8bbk0TN4XzwuAm4Bjo/g+vssxmavMbD15LDE79jU8SB2QaeIMVjmZ
ekVCfZFaVcidWbmr8rHWnW5R1qP+otMb7ZJWdmJnp4Yg5VjvNr5C42UweWPGOYWq
X+9fWRrkdhR33m8ccie+vEPcUEvUt8SuPscgfWvWWUE7/0Uu7NzZ7m07nC1sbNSk
EMH0RUMmOzcjTNPf8TyOUSiXf8eZHGhOR3fxRvLNsxbv9zh3QigjhHbK5wM14Amu
eY7Er5hokraJCQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 15:23:17 2025 by rpki-client