Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
File: hw4qIH9pdyFKlXqOFI0fi1pc0II.mft (raw, json)
Hash identifier: s9u5+sa8nHkDr5OyCxrHx9Zo+fcS5+G9jr8LvrrqRYY=
Subject key identifier: 63:74:65:D3:1B:A3:D2:0E:26:20:91:1A:6E:BF:1D:6D:97:B5:84:D1
Authority key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
Certificate issuer: /CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Certificate serial: 01992FA2F3C3795AB33810DB428EEE1CD9CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
Manifest number: 0357
Signing time: Tue 09 Sep 2025 18:00:32 +0000
Manifest this update: Tue 09 Sep 2025 18:00:32 +0000
Manifest next update: Wed 10 Sep 2025 18:00:32 +0000
Files and hashes: 1: hw4qIH9pdyFKlXqOFI0fi1pc0II.crl (hash: P5JvNBSc/FFPdh6cJlb7VN/ItTEjvAiYOj3SHt9/YkU=)
2: nKTvZPJPqdCXiSwzyA9j5IjgzXg.roa (hash: IlnUSzXgTeo7Aecj19DyZcjG2TpAU9jXATfOU6kk97U=)
3: zNxBSM9LhOTwYtAP52MRH2hzZ_o.roa (hash: 51C5X4gm2WkYmwXfFe/uw6oyIL71jLkdgjDOyTD+5rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 18:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:a2:f3:c3:79:5a:b3:38:10:db:42:8e:ee:1c:d9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082
Validity
Not Before: Sep 9 18:00:32 2025 GMT
Not After : Sep 10 18:00:32 2025 GMT
Subject: CN=637465d31ba3d20e2620911a6ebf1d6d97b584d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:cf:09:25:5d:e7:2d:91:ac:aa:e5:60:bc:
a2:a1:7d:7c:8b:7b:c3:cf:bc:fc:93:21:c2:bd:ef:
e2:a4:ea:4e:af:96:ad:1d:ea:8f:79:85:1b:10:31:
df:48:15:3c:50:f2:8a:00:94:c3:0e:d6:8a:80:ad:
ac:0d:02:22:0e:14:e4:9e:2e:b7:e1:d4:f2:bc:49:
df:f8:8f:ad:aa:1b:f2:1e:7c:10:e5:3d:1c:91:31:
b7:a6:41:a8:2f:bf:c9:0c:23:fe:e7:17:4a:d2:ef:
5f:27:de:af:f4:6a:11:b2:15:0c:6c:07:0d:6a:90:
09:70:56:3b:04:8b:29:46:16:65:9a:39:d8:8d:f1:
2c:59:e6:d8:36:a8:a1:8d:0e:c2:95:e6:7d:cc:6d:
80:6c:4e:3d:b0:11:af:e9:ff:b5:21:5b:09:d1:1c:
96:b0:67:57:e9:0a:a6:f5:65:36:cf:8f:3d:58:58:
1b:32:11:2e:b3:e1:c2:a7:20:f3:4d:41:5b:d3:0d:
ad:61:e4:1b:d9:cd:b0:84:5c:2b:71:a4:4a:65:d3:
5a:33:ae:88:ae:78:4d:1d:9d:34:a5:e2:ae:5e:39:
ad:60:c8:4b:d3:ea:5c:83:0d:50:69:93:6f:b6:a5:
38:ad:9e:69:0d:cd:b7:ad:e3:17:32:17:d7:12:f6:
de:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:74:65:D3:1B:A3:D2:0E:26:20:91:1A:6E:BF:1D:6D:97:B5:84:D1
X509v3 Authority Key Identifier:
keyid:87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:d9:f9:98:d9:33:20:d2:3b:eb:49:6c:47:5c:2c:af:ef:07:
f8:6e:ea:84:67:b2:5a:97:b4:b3:87:99:c2:fb:31:92:7e:d6:
55:26:d7:ec:f0:06:11:d1:87:a0:56:cb:41:ff:11:b1:86:e4:
03:35:24:f2:fe:6d:61:6a:a8:a0:23:24:78:c4:e8:f1:d4:69:
c8:3d:a4:ec:5a:c7:24:c5:67:7e:a0:9b:ff:e6:2b:e3:bd:94:
99:60:85:47:1a:df:81:36:88:29:34:30:5f:80:3b:6a:50:2a:
d9:4e:c2:b8:32:cf:d2:94:81:93:e3:32:5b:b9:f2:d7:2d:69:
e4:34:f1:9b:1a:7d:a3:ad:20:95:b8:32:58:5c:96:2c:72:c2:
84:c0:93:ca:66:c7:17:95:ac:49:32:02:18:14:42:e5:60:52:
f9:71:c1:fb:f9:77:59:59:6e:46:f8:8b:d0:9e:10:5b:63:aa:
88:80:7c:31:f3:c0:a4:86:92:0e:ff:1b:d5:d7:9f:9a:66:82:
8a:0b:06:c6:10:a5:93:1c:6c:88:8d:5f:87:9d:68:41:45:30:
98:ff:95:e9:ce:4b:88:19:2b:3f:ea:d4:96:e3:4f:9d:e5:4d:
a1:76:dc:2b:7e:a5:20:3e:78:96:bc:16:27:d8:9a:bc:80:48:
19:45:65:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkvovPDeVqzOBDbQo7uHNnNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MGUyYTIwN2Y2OTc3MjE0YTk1N2E4ZTE0OGQxZjhiNWE1
Y2QwODIwHhcNMjUwOTA5MTgwMDMyWhcNMjUwOTEwMTgwMDMyWjAzMTEwLwYDVQQD
Eyg2Mzc0NjVkMzFiYTNkMjBlMjYyMDkxMWE2ZWJmMWQ2ZDk3YjU4NGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXDPCSVd5y2RrKrlYLyioX18i3vD
z7z8kyHCve/ipOpOr5atHeqPeYUbEDHfSBU8UPKKAJTDDtaKgK2sDQIiDhTkni63
4dTyvEnf+I+tqhvyHnwQ5T0ckTG3pkGoL7/JDCP+5xdK0u9fJ96v9GoRshUMbAcN
apAJcFY7BIspRhZlmjnYjfEsWebYNqihjQ7CleZ9zG2AbE49sBGv6f+1IVsJ0RyW
sGdX6Qqm9WU2z489WFgbMhEus+HCpyDzTUFb0w2tYeQb2c2whFwrcaRKZdNaM66I
rnhNHZ00peKuXjmtYMhL0+pcgw1QaZNvtqU4rZ5pDc23reMXMhfXEvbefQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGN0ZdMbo9IOJiCRGm6/HW2XtYTRMB8GA1UdIwQY
MBaAFIcOKiB/aXchSpV6jhSNH4taXNCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUt
OGE5NDY4N2RiYTZmLzEvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUtOGE5NDY4N2RiYTZm
LzEvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkNn5mNkz
INI760lsR1wsr+8H+G7qhGeyWpe0s4eZwvsxkn7WVSbX7PAGEdGHoFbLQf8RsYbk
AzUk8v5tYWqooCMkeMTo8dRpyD2k7FrHJMVnfqCb/+Yr472UmWCFRxrfgTaIKTQw
X4A7alAq2U7CuDLP0pSBk+MyW7ny1y1p5DTxmxp9o60glbgyWFyWLHLChMCTymbH
F5WsSTICGBRC5WBS+XHB+/l3WVluRviL0J4QW2OqiIB8MfPApIaSDv8b1defmmaC
igsGxhClkxxsiI1fh51oQUUwmP+V6c5LiBkrP+rUluNPneVNoXbcK36lID54lrwW
J9iavIBIGUVlpg==
-----END CERTIFICATE-----
Generated at Wed Sep 10 04:07:16 2025 by rpki-client