Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: HAMwsJlcly9mpf5MXIJA5w6lRWOqidnRCW/AX4oHrFY=
Subject key identifier: 42:0E:3D:E1:25:24:EB:29:F3:A3:6A:13:E4:B8:1A:A0:B9:27:89:6E
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 0199FBEAD43483BADBD74B3A4016A8CF6CF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 16E6
Signing time: Sun 19 Oct 2025 10:01:34 +0000
Manifest this update: Sun 19 Oct 2025 10:01:34 +0000
Manifest next update: Mon 20 Oct 2025 10:01:34 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: qZVCkR91UkVOHDUY42E6i47wYybHbqxwifrWI20sl64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:d4:34:83:ba:db:d7:4b:3a:40:16:a8:cf:6c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Oct 19 10:01:34 2025 GMT
Not After : Oct 20 10:01:34 2025 GMT
Subject: CN=420e3de12524eb29f3a36a13e4b81aa0b927896e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:03:27:6b:b6:eb:6c:36:c7:a8:33:aa:17:17:
f0:45:fe:b3:20:b3:a7:54:2d:2b:59:10:51:49:ae:
0d:cc:55:38:33:4c:41:a2:47:7b:24:90:d1:5c:52:
36:9f:3a:54:39:cb:56:1a:09:7a:7e:e2:cc:e0:6a:
4d:c6:85:91:ba:70:ec:c6:71:86:3c:85:b6:64:08:
35:0b:e8:b2:c7:80:05:f3:0b:87:70:e8:19:b7:e0:
c8:9b:0c:b4:78:bb:02:7d:ea:5a:33:ed:78:78:b8:
54:a2:fe:a7:18:0a:6f:a3:25:15:3e:94:aa:09:32:
cb:7a:bd:ed:b8:9e:e9:4c:3a:73:92:b4:a0:d6:84:
93:c2:33:ab:d8:fb:c9:65:3a:3f:f8:37:27:a3:cf:
85:44:02:cc:f3:c8:4c:7d:e6:3a:45:74:61:f8:f2:
01:b7:5c:90:71:21:f8:2f:bb:dd:0b:cd:59:39:72:
86:d7:2c:17:9a:c3:fb:2b:99:d4:5c:1b:9d:e8:3a:
6d:ac:57:4e:84:c3:68:b0:81:5b:1c:f2:41:f0:1a:
f8:7c:0b:c0:3b:b6:62:f6:13:25:08:18:57:e8:7b:
5a:23:e1:75:4e:4e:11:6f:52:0b:fc:f9:44:c2:f1:
8f:1a:5c:93:41:3b:b7:ae:5e:3b:fd:48:6b:d1:82:
de:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0E:3D:E1:25:24:EB:29:F3:A3:6A:13:E4:B8:1A:A0:B9:27:89:6E
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:e6:bc:18:53:11:49:43:72:52:c3:17:e3:5a:1b:20:fb:21:
f0:34:c7:57:ff:c6:2e:34:12:3a:66:91:ca:83:f2:73:19:f9:
62:03:55:37:c0:ea:9f:d8:a3:f9:4e:42:67:b7:2d:c4:9d:fc:
ec:86:1c:ff:e2:a3:e5:b6:78:f1:a6:7a:cb:c7:5a:1b:db:fc:
24:72:63:e4:96:5f:c2:3f:e9:26:84:e0:b9:7a:ea:8d:c7:f6:
1a:9e:32:d5:7a:76:96:ce:7a:c3:cf:29:80:4f:d5:8d:e5:58:
f5:b4:5f:27:a5:f6:06:7f:86:f1:1f:76:d0:7e:1b:16:3f:3f:
11:0b:a1:a3:53:70:d2:10:fb:45:ae:c1:83:a0:35:e1:0f:36:
98:4d:0b:62:87:16:4f:98:48:6f:f9:69:0b:b3:ff:19:3a:22:
3b:27:01:a6:92:d2:8f:d0:1e:44:ef:2b:c0:32:7d:b3:4c:26:
5f:44:02:d6:19:2e:16:a7:13:a0:78:e0:59:8e:de:ef:f0:7d:
6b:71:71:5a:4d:d9:b7:07:76:c9:88:90:2e:2c:15:99:3b:d4:
13:dd:82:49:3e:e8:44:df:7d:1b:3a:97:e6:c0:9e:f2:eb:9c:
75:bb:0d:fa:0c:0f:18:dd:b3:37:8e:b4:24:b3:8a:0f:9d:cf:
9f:9d:8c:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn76tQ0g7rb10s6QBaoz2z5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1OWQ1MTc3MDc3YjkwODE4YzZmOTBhZTRlNDQzMzJkOGNh
Y2JiNzQwHhcNMjUxMDE5MTAwMTM0WhcNMjUxMDIwMTAwMTM0WjAzMTEwLwYDVQQD
Eyg0MjBlM2RlMTI1MjRlYjI5ZjNhMzZhMTNlNGI4MWFhMGI5Mjc4OTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAMna7brbDbHqDOqFxfwRf6zILOn
VC0rWRBRSa4NzFU4M0xBokd7JJDRXFI2nzpUOctWGgl6fuLM4GpNxoWRunDsxnGG
PIW2ZAg1C+iyx4AF8wuHcOgZt+DImwy0eLsCfepaM+14eLhUov6nGApvoyUVPpSq
CTLLer3tuJ7pTDpzkrSg1oSTwjOr2PvJZTo/+Dcno8+FRALM88hMfeY6RXRh+PIB
t1yQcSH4L7vdC81ZOXKG1ywXmsP7K5nUXBud6DptrFdOhMNosIFbHPJB8Br4fAvA
O7Zi9hMlCBhX6HtaI+F1Tk4Rb1IL/PlEwvGPGlyTQTu3rl47/Uhr0YLeVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIOPeElJOsp86NqE+S4GqC5J4luMB8GA1UdIwQY
MBaAFIWdUXcHe5CBjG+Qrk5EMy2MrLt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9mYWVhNDMtZjMzMy00NTA5LWE2ZGIt
M2FjOTZiZTI4NWUwLzEvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9mYWVhNDMtZjMzMy00NTA5LWE2ZGItM2FjOTZiZTI4NWUw
LzEvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW+a8GFMR
SUNyUsMX41obIPsh8DTHV//GLjQSOmaRyoPycxn5YgNVN8Dqn9ij+U5CZ7ctxJ38
7IYc/+Kj5bZ48aZ6y8daG9v8JHJj5JZfwj/pJoTguXrqjcf2Gp4y1Xp2ls56w88p
gE/VjeVY9bRfJ6X2Bn+G8R920H4bFj8/EQuho1Nw0hD7Ra7Bg6A14Q82mE0LYocW
T5hIb/lpC7P/GToiOycBppLSj9AeRO8rwDJ9s0wmX0QC1hkuFqcToHjgWY7e7/B9
a3FxWk3Ztwd2yYiQLiwVmTvUE92CST7oRN99GzqX5sCe8uucdbsN+gwPGN2zN460
JLOKD53Pn52MPg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:45 2025 by rpki-client