Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
File: hP-lQvPYybB7926uioaYWj17Tcc.mft (raw, json)
Hash identifier: DoLH+0sSa3YUmXyS4PigoNEsEGDjMQpqs8QGOvb0jww=
Subject key identifier: 74:2E:08:51:1E:3B:4B:A6:18:55:52:54:C0:D1:DE:D8:BE:DD:FE:A3
Authority key identifier: 84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
Certificate issuer: /CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Certificate serial: 0198D65F39770E3100B47F3ED5828032DF8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
Manifest number: 1013
Signing time: Sat 23 Aug 2025 10:00:21 +0000
Manifest this update: Sat 23 Aug 2025 10:00:21 +0000
Manifest next update: Sun 24 Aug 2025 10:00:21 +0000
Files and hashes: 1: hP-lQvPYybB7926uioaYWj17Tcc.crl (hash: 1QHvig8PttltK7Xg+aiemfjf5CEYRoFs07HSm1fqSgg=)
2: uVc-YEHIfoCC97dYSAB-pvf1GkY.roa (hash: xpxJQ9Mtn3be8wfSELsmv9qWpA192efhc4xx/FDBoxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:39:77:0e:31:00:b4:7f:3e:d5:82:80:32:df:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7
Validity
Not Before: Aug 23 10:00:21 2025 GMT
Not After : Aug 24 10:00:21 2025 GMT
Subject: CN=742e08511e3b4ba618555254c0d1ded8beddfea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:01:00:db:80:39:b4:42:cb:c1:f8:b9:4a:65:
2e:c9:c2:e3:57:92:62:71:c0:40:0e:82:19:ea:19:
af:39:96:4e:ad:62:fe:00:88:c2:5f:5f:c3:10:d2:
3f:9c:31:bb:b8:5d:45:51:30:a9:09:8a:0a:6d:3a:
8f:3f:1b:50:6e:02:b2:98:9f:1d:51:a9:a7:75:a6:
2e:e2:ee:58:c9:52:55:5f:e3:c2:52:9a:50:8d:17:
19:a1:8c:a8:82:1a:03:67:7f:31:73:4d:02:aa:51:
66:87:b2:39:d8:bd:c5:93:f6:98:b3:e8:21:af:ad:
b0:42:88:4f:74:5c:88:f2:68:3f:9d:ba:cf:99:d9:
6a:49:8c:95:19:c3:53:d6:ee:20:6e:86:89:89:87:
dc:ca:9e:58:6c:36:67:76:ed:13:e6:8b:8d:aa:44:
93:10:ff:9d:ae:3f:b6:80:11:c5:07:3f:35:f4:89:
f7:02:e8:3e:8a:64:b7:01:31:59:85:1a:37:2e:5e:
9d:da:a6:4d:2e:6a:70:ea:47:dc:db:7d:1a:c0:3d:
dc:21:32:a4:9c:9f:a2:62:64:68:cc:4b:2c:1f:3a:
2d:3b:f2:0c:f8:fd:77:4a:c2:ee:30:ca:9e:29:2c:
e1:55:32:fb:10:e7:3e:95:1e:3c:c9:31:d7:fa:f5:
34:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:2E:08:51:1E:3B:4B:A6:18:55:52:54:C0:D1:DE:D8:BE:DD:FE:A3
X509v3 Authority Key Identifier:
keyid:84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:53:3d:83:87:43:ab:47:a9:15:4e:18:b2:cb:ce:f8:bd:14:
6d:dd:79:9e:e9:12:fd:d2:eb:a3:f3:ca:c7:31:a7:c3:31:94:
ab:f2:43:90:6a:e4:d8:3e:34:6e:90:90:83:8e:ca:2a:d6:3a:
dd:c6:84:50:76:a4:3b:ef:6f:56:a1:2b:a4:2b:f4:82:c2:f4:
f6:fd:cc:59:f1:a5:af:33:24:cc:16:64:bc:50:61:16:41:23:
32:70:bc:b0:cf:a9:06:01:8c:c0:0f:66:03:a5:60:1b:70:07:
ce:7d:97:66:8c:44:df:f6:e0:48:9f:f1:46:bf:72:01:75:33:
02:97:12:fb:06:8e:43:cc:33:95:95:a5:9e:c6:51:da:66:16:
ad:d3:e9:62:d8:56:42:53:bb:ee:48:5b:91:8b:89:e0:38:d9:
67:63:d6:fe:27:d1:e5:6e:fc:fd:13:85:80:a9:08:97:27:9b:
4c:7a:ec:9e:8a:f5:99:83:30:8b:fd:67:0d:f6:51:30:b1:4f:
91:a9:19:3c:87:28:33:c7:c5:fa:85:86:8b:7e:94:97:12:7c:
d5:91:95:b2:5f:10:42:ad:e4:f7:ef:60:51:05:f2:2a:2a:f6:
66:d5:9a:98:17:de:ab:ca:b2:d9:83:a3:4d:59:03:3c:d7:93:
13:4a:36:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWXzl3DjEAtH8+1YKAMt+KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZmZhNTQyZjNkOGM5YjA3YmY3NmVhZThhODY5ODVhM2Q3
YjRkYzcwHhcNMjUwODIzMTAwMDIxWhcNMjUwODI0MTAwMDIxWjAzMTEwLwYDVQQD
Eyg3NDJlMDg1MTFlM2I0YmE2MTg1NTUyNTRjMGQxZGVkOGJlZGRmZWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQEA24A5tELLwfi5SmUuycLjV5Ji
ccBADoIZ6hmvOZZOrWL+AIjCX1/DENI/nDG7uF1FUTCpCYoKbTqPPxtQbgKymJ8d
UamndaYu4u5YyVJVX+PCUppQjRcZoYyoghoDZ38xc00CqlFmh7I52L3Fk/aYs+gh
r62wQohPdFyI8mg/nbrPmdlqSYyVGcNT1u4gboaJiYfcyp5YbDZndu0T5ouNqkST
EP+drj+2gBHFBz819In3Aug+imS3ATFZhRo3Ll6d2qZNLmpw6kfc230awD3cITKk
nJ+iYmRozEssHzotO/IM+P13SsLuMMqeKSzhVTL7EOc+lR48yTHX+vU0nQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHQuCFEeO0umGFVSVMDR3ti+3f6jMB8GA1UdIwQY
MBaAFIT/pULz2Mmwe/duroqGmFo9e03HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFAtbFF2UFl5YkI3OTI2dWlvYVlXajE3VGNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC83MWZmZjktMzQzZC00ZjA3LWE0OTEt
N2MwZmQyOWNmM2U5LzEvaFAtbFF2UFl5YkI3OTI2dWlvYVlXajE3VGNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC83MWZmZjktMzQzZC00ZjA3LWE0OTEtN2MwZmQyOWNmM2U5
LzEvaFAtbFF2UFl5YkI3OTI2dWlvYVlXajE3VGNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACFM9g4dD
q0epFU4YssvO+L0Ubd15nukS/dLro/PKxzGnwzGUq/JDkGrk2D40bpCQg47KKtY6
3caEUHakO+9vVqErpCv0gsL09v3MWfGlrzMkzBZkvFBhFkEjMnC8sM+pBgGMwA9m
A6VgG3AHzn2XZoxE3/bgSJ/xRr9yAXUzApcS+waOQ8wzlZWlnsZR2mYWrdPpYthW
QlO77khbkYuJ4DjZZ2PW/ifR5W78/ROFgKkIlyebTHrsnor1mYMwi/1nDfZRMLFP
kakZPIcoM8fF+oWGi36UlxJ81ZGVsl8QQq3k9+9gUQXyKir2ZtWamBfeq8qy2YOj
TVkDPNeTE0o2AA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:13:48 2025 by rpki-client