Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
File: hugNGBwlPRTaHgupwdVmb1Ym1YE.mft (raw, json)
Hash identifier: zGk4MDYH/tzFarddCeanzAcCQE3uG8662Loo09khSQ0=
Subject key identifier: 60:2F:D9:46:95:31:0A:DB:D9:4D:A4:6D:AC:AC:12:3C:30:3A:FB:44
Authority key identifier: 86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81
Certificate issuer: /CN=86e80d181c253d14da1e0ba9c1d5666f5626d581
Certificate serial: 01992255AAED862036228435B2363D74721E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
Manifest number: 96
Signing time: Sun 07 Sep 2025 04:01:03 +0000
Manifest this update: Sun 07 Sep 2025 04:01:03 +0000
Manifest next update: Mon 08 Sep 2025 04:01:03 +0000
Files and hashes: 1: GduTVoXL90rcY5IbBMohmd6Di4U.roa (hash: FpxhDiPtRQpdrB9mwbp5ACWnV465MFksntDsy9t3DCM=)
2: hugNGBwlPRTaHgupwdVmb1Ym1YE.crl (hash: QgsXkLmrnKaThgtQlNte/8BNO/Xq64mp51O/54PHb5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:aa:ed:86:20:36:22:84:35:b2:36:3d:74:72:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e80d181c253d14da1e0ba9c1d5666f5626d581
Validity
Not Before: Sep 7 04:01:03 2025 GMT
Not After : Sep 8 04:01:03 2025 GMT
Subject: CN=602fd94695310adbd94da46dacac123c303afb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:f1:b9:96:4b:00:4f:ca:62:bc:4d:bb:b9:e5:
13:1e:4d:bb:bf:78:15:38:cf:ff:47:d5:b1:14:96:
39:e0:16:36:6a:f9:54:16:ca:31:3a:e2:17:e6:e7:
87:3b:f3:bc:80:80:ca:35:50:ea:04:3f:f1:57:16:
22:13:0f:76:b7:49:d1:4e:a9:9c:ab:03:4c:51:57:
ff:2c:70:c6:60:79:ec:b9:78:2d:78:1b:86:58:d9:
7f:c3:5f:48:34:94:2d:54:ff:b7:68:ce:5a:3c:46:
2f:b9:8e:53:ee:22:7b:9c:6d:05:f9:c1:96:78:7a:
99:ce:54:9f:fb:3f:e1:ca:ad:18:c6:9c:fb:25:34:
c7:55:2b:a6:12:e8:db:1f:fa:f8:57:57:73:20:fd:
f5:aa:dd:bd:77:2c:4c:c3:43:40:a6:62:2c:f1:c3:
c0:fe:a7:d6:61:aa:db:96:cb:c1:e0:ba:6d:81:8a:
05:6b:a8:b5:64:d7:39:d4:ef:06:ff:1a:bf:7f:fe:
61:cf:77:c7:19:61:4f:48:91:01:44:80:da:16:d8:
b2:e9:c9:99:1e:2b:1e:68:9c:53:7c:2f:9d:36:67:
6c:a6:c0:75:94:93:e3:78:08:e1:43:33:1f:83:43:
ea:a3:8d:bd:79:f0:66:c0:a4:0b:2b:df:cf:d0:ef:
5a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2F:D9:46:95:31:0A:DB:D9:4D:A4:6D:AC:AC:12:3C:30:3A:FB:44
X509v3 Authority Key Identifier:
keyid:86:E8:0D:18:1C:25:3D:14:DA:1E:0B:A9:C1:D5:66:6F:56:26:D5:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hugNGBwlPRTaHgupwdVmb1Ym1YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ea609e-6538-4723-8259-73f54348823c/1/hugNGBwlPRTaHgupwdVmb1Ym1YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:6d:52:d6:fa:3c:80:a4:67:07:f0:0a:23:f4:77:54:05:71:
3a:da:85:ff:f1:86:7e:9c:fc:18:26:94:c5:7c:e0:77:44:5b:
0f:08:6a:c2:14:f3:a5:5c:cc:7c:11:54:b2:3e:80:cb:97:ea:
cf:54:27:08:c2:8f:02:e4:2e:e5:36:e4:1d:b5:f4:eb:7e:c6:
a9:8c:30:8e:98:52:64:ea:f7:92:01:48:a0:32:42:7f:82:df:
93:90:96:c4:e3:6d:1c:63:4b:f2:97:b5:38:0d:1a:40:f0:6d:
b4:3d:dc:04:ce:0e:55:b2:6c:6f:97:5e:84:1b:78:74:77:b6:
f5:70:89:78:e1:30:c6:a5:16:90:dd:ed:7d:35:bc:94:8c:2e:
5f:87:b8:1d:f1:6d:fe:42:b4:7a:5e:1d:33:66:5e:79:b8:0f:
a2:00:b6:ee:26:2f:15:48:2a:c9:fe:9e:06:06:ae:16:00:12:
7d:f6:f2:df:69:1f:29:39:be:37:49:8f:5b:af:60:48:f5:26:
ac:3a:6f:56:9a:51:82:eb:29:44:5a:3a:13:67:39:b6:81:79:
73:ac:58:5e:de:20:54:52:33:32:a5:31:48:0a:ad:c3:aa:d1:
18:4f:21:20:20:c1:06:c7:dc:82:26:99:60:78:a2:9b:50:f2:
2a:db:87:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVarthiA2IoQ1sjY9dHIeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZTgwZDE4MWMyNTNkMTRkYTFlMGJhOWMxZDU2NjZmNTYy
NmQ1ODEwHhcNMjUwOTA3MDQwMTAzWhcNMjUwOTA4MDQwMTAzWjAzMTEwLwYDVQQD
Eyg2MDJmZDk0Njk1MzEwYWRiZDk0ZGE0NmRhY2FjMTIzYzMwM2FmYjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+/G5lksAT8pivE27ueUTHk27v3gV
OM//R9WxFJY54BY2avlUFsoxOuIX5ueHO/O8gIDKNVDqBD/xVxYiEw92t0nRTqmc
qwNMUVf/LHDGYHnsuXgteBuGWNl/w19INJQtVP+3aM5aPEYvuY5T7iJ7nG0F+cGW
eHqZzlSf+z/hyq0Yxpz7JTTHVSumEujbH/r4V1dzIP31qt29dyxMw0NApmIs8cPA
/qfWYarblsvB4LptgYoFa6i1ZNc51O8G/xq/f/5hz3fHGWFPSJEBRIDaFtiy6cmZ
HiseaJxTfC+dNmdspsB1lJPjeAjhQzMfg0Pqo429efBmwKQLK9/P0O9a0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAv2UaVMQrb2U2kbaysEjwwOvtEMB8GA1UdIwQY
MBaAFIboDRgcJT0U2h4LqcHVZm9WJtWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHVnTkdCd2xQUlRhSGd1cHdkVm1iMVltMVlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9lYTYwOWUtNjUzOC00NzIzLTgyNTkt
NzNmNTQzNDg4MjNjLzEvaHVnTkdCd2xQUlRhSGd1cHdkVm1iMVltMVlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9lYTYwOWUtNjUzOC00NzIzLTgyNTktNzNmNTQzNDg4MjNj
LzEvaHVnTkdCd2xQUlRhSGd1cHdkVm1iMVltMVlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZW1S1vo8
gKRnB/AKI/R3VAVxOtqF//GGfpz8GCaUxXzgd0RbDwhqwhTzpVzMfBFUsj6Ay5fq
z1QnCMKPAuQu5TbkHbX0637GqYwwjphSZOr3kgFIoDJCf4Lfk5CWxONtHGNL8pe1
OA0aQPBttD3cBM4OVbJsb5dehBt4dHe29XCJeOEwxqUWkN3tfTW8lIwuX4e4HfFt
/kK0el4dM2ZeebgPogC27iYvFUgqyf6eBgauFgASffby32kfKTm+N0mPW69gSPUm
rDpvVppRguspRFo6E2c5toF5c6xYXt4gVFIzMqUxSAqtw6rRGE8hICDBBsfcgiaZ
YHiim1DyKtuHvg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:53 2025 by rpki-client