Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: GM4siboMFZOmljlKMMFw/R0wgkZ30+pjtEsSzXJnX2c=
Subject key identifier: BA:FA:7C:39:F4:92:01:E2:1C:68:60:03:FB:FD:33:3F:B9:E8:8A:C6
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 0198D4732EB675B87F92A18440F625973A27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 1151
Signing time: Sat 23 Aug 2025 01:02:54 +0000
Manifest this update: Sat 23 Aug 2025 01:02:54 +0000
Manifest next update: Sun 24 Aug 2025 01:02:54 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: 8Il6AKKYiXSHVqTuhoBvHhLqg6EYts7bGXj8HpAJiz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:2e:b6:75:b8:7f:92:a1:84:40:f6:25:97:3a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Aug 23 01:02:54 2025 GMT
Not After : Aug 24 01:02:54 2025 GMT
Subject: CN=bafa7c39f49201e21c686003fbfd333fb9e88ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:48:4a:16:5a:e0:ca:00:e8:06:44:ed:c6:2a:
8a:40:15:81:5f:1b:07:93:ed:1f:4f:ef:be:45:41:
20:60:91:74:48:e5:76:f8:12:f2:2e:87:28:c4:95:
b1:fe:11:dc:30:f1:59:c2:7a:bd:4e:18:77:e7:b8:
dd:6d:1b:1c:a7:06:85:b0:a2:6a:18:e3:17:26:cf:
36:61:e2:8c:5d:f5:13:58:81:e1:bc:d1:c5:8b:e0:
c5:19:63:9e:bd:5b:0e:53:e8:4a:8e:9c:71:f4:c8:
a3:b2:38:53:d0:60:3e:f7:ba:27:b1:05:6c:a9:ab:
04:e9:75:65:bc:7d:d1:2c:ba:e8:4f:aa:e9:f7:2f:
de:5d:b7:89:b3:0c:f8:74:b7:b5:2d:03:a6:7d:a0:
ae:31:b6:73:d5:3a:d8:3c:95:28:c4:27:cf:e0:95:
bd:76:6b:dc:81:53:40:5e:27:94:90:a1:8b:33:d8:
e6:0b:33:50:f6:66:40:c0:5e:10:6f:02:a9:b3:06:
8d:c9:30:85:0a:54:38:7d:da:41:0d:d1:8c:74:da:
c5:30:1f:69:d8:2e:90:a6:82:e3:d4:3f:d3:f2:21:
e5:e2:48:3e:ac:0e:c7:d2:d3:14:fc:4c:e2:10:30:
f6:f5:3e:a7:b2:d7:d2:64:07:53:12:43:d0:fd:12:
2c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FA:7C:39:F4:92:01:E2:1C:68:60:03:FB:FD:33:3F:B9:E8:8A:C6
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:17:7b:d6:6e:93:e3:88:00:83:0a:54:eb:e5:73:0b:0c:bf:
21:cc:d9:4b:8d:12:c0:b8:ba:4d:de:95:fc:3b:1d:09:42:45:
09:3a:f3:fd:b7:64:69:c7:a1:16:c0:a6:03:ec:e3:8f:bb:28:
43:75:cb:72:a3:a8:bc:05:51:3f:92:29:85:85:a6:5f:a3:35:
1f:3f:1f:35:63:d6:ea:d6:a3:7b:8f:24:f5:a2:8e:78:0c:42:
b4:37:b7:0a:79:fa:0c:cd:38:c9:b2:05:3d:e7:bc:af:be:a7:
ea:ae:34:56:f6:2b:d6:d3:f1:0f:41:6d:46:32:6e:81:21:89:
f7:6e:90:51:9b:72:3f:90:ab:ac:f0:5e:8f:5a:da:66:f4:2a:
54:53:6c:a8:7b:a8:79:f8:81:c1:65:0b:b6:86:5a:36:a4:bb:
d4:d1:43:6c:6e:9b:9d:86:70:38:03:39:fc:70:07:0a:46:b3:
0e:85:e9:ac:35:29:53:44:fa:0b:45:93:39:7a:e8:44:a3:bb:
71:d3:cf:bc:8d:96:b7:73:8a:a9:b1:4f:0a:14:46:e5:a7:b6:
79:3d:61:20:07:9b:a3:40:f9:48:e2:70:68:0d:bc:65:68:a9:
84:04:ac:54:48:68:3d:6a:94:78:e6:20:05:5a:48:a9:0a:d4:
3f:ef:86:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcy62dbh/kqGEQPYllzonMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1YjYxMWEwYjdkNDMzNGI3YTIzOTVlOGNjZTdiMGUzYzli
ODM4ZTgwHhcNMjUwODIzMDEwMjU0WhcNMjUwODI0MDEwMjU0WjAzMTEwLwYDVQQD
EyhiYWZhN2MzOWY0OTIwMWUyMWM2ODYwMDNmYmZkMzMzZmI5ZTg4YWM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6UhKFlrgygDoBkTtxiqKQBWBXxsH
k+0fT+++RUEgYJF0SOV2+BLyLocoxJWx/hHcMPFZwnq9Thh357jdbRscpwaFsKJq
GOMXJs82YeKMXfUTWIHhvNHFi+DFGWOevVsOU+hKjpxx9MijsjhT0GA+97onsQVs
qasE6XVlvH3RLLroT6rp9y/eXbeJswz4dLe1LQOmfaCuMbZz1TrYPJUoxCfP4JW9
dmvcgVNAXieUkKGLM9jmCzNQ9mZAwF4QbwKpswaNyTCFClQ4fdpBDdGMdNrFMB9p
2C6QpoLj1D/T8iHl4kg+rA7H0tMU/EziEDD29T6nstfSZAdTEkPQ/RIsbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLr6fDn0kgHiHGhgA/v9Mz+56IrGMB8GA1UdIwQY
MBaAFIW2EaC31DNLeiOV6MznsOPJuDjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmIt
ODhjYjRlNzEwNmVhLzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmItODhjYjRlNzEwNmVh
LzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASxd71m6T
44gAgwpU6+VzCwy/IczZS40SwLi6Td6V/DsdCUJFCTrz/bdkacehFsCmA+zjj7so
Q3XLcqOovAVRP5IphYWmX6M1Hz8fNWPW6taje48k9aKOeAxCtDe3Cnn6DM04ybIF
Pee8r76n6q40VvYr1tPxD0FtRjJugSGJ926QUZtyP5CrrPBej1raZvQqVFNsqHuo
efiBwWULtoZaNqS71NFDbG6bnYZwOAM5/HAHCkazDoXprDUpU0T6C0WTOXroRKO7
cdPPvI2Wt3OKqbFPChRG5ae2eT1hIAebo0D5SOJwaA28ZWiphASsVEhoPWqUeOYg
BVpIqQrUP++Ggg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:22 2025 by rpki-client