Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: uVxjXhXmhxcIkAL2QHV+hNKEP1ra2/CdnFqwsRc0GUw=
Subject key identifier: 22:0C:A0:22:C6:97:7C:A1:EA:48:1D:88:D7:FA:07:77:E9:F6:9B:C4
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 01993EA87661C1F36D8CD251F082A69F427C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0448
Signing time: Fri 12 Sep 2025 16:00:51 +0000
Manifest this update: Fri 12 Sep 2025 16:00:51 +0000
Manifest next update: Sat 13 Sep 2025 16:00:51 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: HuAdAExHjdG2m/GS94aT1/CK8y8b0lHozbk1OhXOTb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Sep 2025 15:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:3e:a8:76:61:c1:f3:6d:8c:d2:51:f0:82:a6:9f:42:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Sep 12 16:00:51 2025 GMT
Not After : Sep 13 16:00:51 2025 GMT
Subject: CN=220ca022c6977ca1ea481d88d7fa0777e9f69bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:b2:18:65:db:07:42:05:22:82:19:77:46:67:
8d:57:f2:d7:a6:1f:5d:2f:7a:cb:88:ad:28:0d:14:
a2:29:84:b5:13:56:f9:59:dc:b6:d6:f9:02:3a:9c:
9b:97:31:9f:a2:c8:05:12:00:e3:68:75:55:10:74:
c0:7b:6e:2a:5c:c9:48:4b:14:d3:d4:d8:47:75:06:
e4:04:51:d2:ff:34:7d:00:51:6f:04:ed:7e:73:5e:
4f:8b:ed:0a:17:e7:e3:5f:ca:45:fa:32:a1:ab:6f:
64:bd:c8:74:03:3c:d0:e2:b9:fa:e2:33:1d:4a:ef:
08:b2:36:5f:23:26:0c:ca:3d:0e:92:ac:82:d7:44:
fc:ad:38:f2:50:49:79:f7:10:02:41:65:e5:27:99:
17:94:f5:a5:93:0c:07:38:8d:f3:3c:15:2a:0b:ce:
ef:a9:26:fa:96:40:e8:a5:3f:8e:c9:41:17:5a:9e:
b0:47:98:66:5a:0e:c4:22:30:82:36:2b:2f:8e:07:
fa:ad:90:74:3d:11:78:af:53:9a:4f:d7:85:60:9c:
f0:96:7f:48:f9:fa:c8:ba:99:fd:3f:35:52:bf:e8:
48:b2:12:22:0d:b1:ae:4e:bd:79:23:07:69:2c:ed:
ca:1b:05:cb:8c:fd:47:4e:86:88:02:b2:1f:bd:cf:
da:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:0C:A0:22:C6:97:7C:A1:EA:48:1D:88:D7:FA:07:77:E9:F6:9B:C4
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:c6:fb:5d:9d:ab:c9:2d:52:02:eb:42:65:8c:49:85:7c:c8:
87:57:9a:fd:1a:de:85:1c:17:80:07:6c:90:d8:9a:68:96:d7:
03:c0:bd:a6:88:1c:30:66:d4:47:53:57:82:7f:5e:a3:40:1e:
07:05:78:ac:dc:83:27:a7:d8:17:2f:d8:44:3d:82:98:97:3d:
94:ad:f4:a4:5e:e5:88:39:2e:66:a6:8c:11:42:26:c3:46:7f:
22:34:ed:70:4e:e8:75:87:8f:a6:9c:65:db:99:41:37:b1:aa:
54:70:40:20:6b:66:57:3c:e1:c4:a4:b5:6a:ef:6e:6d:23:15:
97:6c:bb:3e:db:3a:fb:78:10:2b:b9:cf:b7:64:41:f2:1a:4b:
1d:b8:d6:79:24:fc:50:b7:46:46:cf:d0:f8:d2:a3:05:f7:5e:
05:0e:55:bb:70:7b:a1:c1:27:22:53:ec:0d:e3:8b:71:1d:5e:
37:e3:3f:6d:31:b3:f3:33:fd:51:d9:61:08:78:e5:49:8b:25:
10:f6:11:e8:ff:18:7f:f0:28:ab:1d:95:f7:9c:43:70:31:cb:
68:e2:e8:0b:88:fd:b0:44:9b:e1:e4:ca:e1:c1:de:b6:af:ce:
27:7d:4d:1d:23:1c:a0:e1:67:b6:c2:ee:34:b2:6a:9c:db:75:
af:49:7d:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk+qHZhwfNtjNJR8IKmn0J8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx
ZjA1NDEwHhcNMjUwOTEyMTYwMDUxWhcNMjUwOTEzMTYwMDUxWjAzMTEwLwYDVQQD
EygyMjBjYTAyMmM2OTc3Y2ExZWE0ODFkODhkN2ZhMDc3N2U5ZjY5YmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9bIYZdsHQgUighl3RmeNV/LXph9d
L3rLiK0oDRSiKYS1E1b5Wdy21vkCOpyblzGfosgFEgDjaHVVEHTAe24qXMlISxTT
1NhHdQbkBFHS/zR9AFFvBO1+c15Pi+0KF+fjX8pF+jKhq29kvch0AzzQ4rn64jMd
Su8IsjZfIyYMyj0OkqyC10T8rTjyUEl59xACQWXlJ5kXlPWlkwwHOI3zPBUqC87v
qSb6lkDopT+OyUEXWp6wR5hmWg7EIjCCNisvjgf6rZB0PRF4r1OaT9eFYJzwln9I
+frIupn9PzVSv+hIshIiDbGuTr15IwdpLO3KGwXLjP1HToaIArIfvc/alwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCIMoCLGl3yh6kgdiNf6B3fp9pvEMB8GA1UdIwQY
MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt
M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm
LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ8b7XZ2r
yS1SAutCZYxJhXzIh1ea/RrehRwXgAdskNiaaJbXA8C9pogcMGbUR1NXgn9eo0Ae
BwV4rNyDJ6fYFy/YRD2CmJc9lK30pF7liDkuZqaMEUImw0Z/IjTtcE7odYePppxl
25lBN7GqVHBAIGtmVzzhxKS1au9ubSMVl2y7Pts6+3gQK7nPt2RB8hpLHbjWeST8
ULdGRs/Q+NKjBfdeBQ5Vu3B7ocEnIlPsDeOLcR1eN+M/bTGz8zP9UdlhCHjlSYsl
EPYR6P8Yf/Aoqx2V95xDcDHLaOLoC4j9sESb4eTK4cHetq/OJ31NHSMcoOFntsLu
NLJqnNt1r0l9hg==
-----END CERTIFICATE-----
Generated at Fri Sep 12 22:12:36 2025 by rpki-client