Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
File: huGrpgDN5ewxgxmxVZS2irlslWw.mft (raw, json)
Hash identifier: n+K8idm2p+TrqMyjkGtlw3+lOW5HhtPuLPzCsv/H8PA=
Subject key identifier: 32:1F:CA:5A:C5:D6:DF:CB:40:57:C5:17:1C:63:02:07:6C:A9:67:D2
Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c
Certificate serial: 0198D7A9378FB95945C5662937A66CAAD10A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
Manifest number: 0F4D
Signing time: Sat 23 Aug 2025 16:00:47 +0000
Manifest this update: Sat 23 Aug 2025 16:00:47 +0000
Manifest next update: Sun 24 Aug 2025 16:00:47 +0000
Files and hashes: 1: Q7vNAscnF-4OhkgVonOsxeJBDjA.roa (hash: 0ioDa0FuPDgR/Y4yLPplBITqL6YDwLS4b5dcomdJX+s=)
2: huGrpgDN5ewxgxmxVZS2irlslWw.crl (hash: tydz4nVUZEjB5zaVEU5KMk3bRCmoTi0xYwtg0FrtZRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:37:8f:b9:59:45:c5:66:29:37:a6:6c:aa:d1:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c
Validity
Not Before: Aug 23 16:00:47 2025 GMT
Not After : Aug 24 16:00:47 2025 GMT
Subject: CN=321fca5ac5d6dfcb4057c5171c6302076ca967d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:06:a3:d8:b3:30:b1:ef:b9:20:f2:f5:0d:a9:
cd:f7:63:40:c8:02:08:dd:e1:6f:2c:34:bc:d8:19:
34:ab:e4:f4:b3:be:14:af:d4:c0:d0:27:c4:07:41:
e3:0d:da:d4:62:47:f4:38:99:71:65:02:0b:af:19:
76:85:ef:75:32:b4:0f:69:bf:bf:bc:e7:22:66:a0:
a2:53:4b:d6:25:0a:ef:5f:44:6f:73:87:54:0c:46:
91:8d:6e:97:89:0f:c6:a2:8e:7e:36:b1:eb:bd:b1:
da:28:e0:04:ec:fc:45:26:99:6a:fd:45:99:aa:75:
d9:60:b6:1c:35:34:57:c9:47:d1:4f:28:f9:87:58:
97:e6:09:c8:d3:20:93:f8:90:17:23:18:ed:af:8a:
17:81:3f:9a:09:07:03:8d:c2:ec:a2:4b:94:46:eb:
9c:b9:f6:97:05:2d:fa:78:60:b5:51:70:c9:66:ba:
70:46:b9:63:32:ee:eb:3c:3f:f8:03:b6:87:cd:b7:
2f:2f:7c:bf:bd:35:90:30:16:c8:18:88:3e:ef:e6:
5b:90:78:1f:f6:ca:31:fc:8f:26:7a:6f:3d:c4:85:
38:8b:49:0f:f9:f7:f0:dd:eb:65:5f:04:14:b8:2d:
4f:6a:80:ba:bb:27:90:d0:2f:1e:82:70:1f:e0:71:
bb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1F:CA:5A:C5:D6:DF:CB:40:57:C5:17:1C:63:02:07:6C:A9:67:D2
X509v3 Authority Key Identifier:
keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:85:47:cb:48:ed:db:fb:a3:9d:cb:55:f9:f9:35:f6:28:ea:
a1:3e:26:23:37:5a:3f:b6:8b:1f:63:c0:bc:85:4d:1c:fa:8f:
fd:84:e7:c4:07:e9:3f:ca:e5:e0:7f:39:65:80:15:ce:dd:d4:
e6:aa:1d:d3:9c:3c:8f:b7:27:26:41:fb:e8:53:07:31:6a:b2:
c1:a1:38:7f:59:5b:96:ca:e2:cc:04:6e:93:e2:77:d3:e1:b3:
54:59:a1:7a:3b:bb:3c:e7:de:df:b3:1f:ab:c3:c8:96:04:54:
ba:57:11:8a:90:77:33:69:5e:5e:54:f6:43:71:ff:67:f0:64:
69:84:1f:b3:9b:0e:08:8d:d5:9f:8e:f3:7a:0c:b9:0c:77:a2:
88:fe:15:ae:e5:56:fa:ca:bc:04:c9:aa:73:1d:9b:93:e0:6d:
c5:50:dc:8c:28:29:76:f8:92:5b:48:ed:d8:ac:d0:d1:28:b0:
bf:f3:92:28:fe:0a:ef:19:69:9a:21:2c:25:2f:b0:f0:e3:95:
56:5d:54:6c:0a:b1:11:94:8b:7e:45:0c:1f:dc:fa:fc:87:95:
1b:e0:b3:9a:6d:c4:7c:8f:29:98:ad:6f:5b:17:5e:d2:0e:52:
cc:d6:02:55:27:89:10:ff:a1:5c:9e:07:82:85:7d:66:8f:28:
10:23:ef:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqTePuVlFxWYpN6ZsqtEKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZTFhYmE2MDBjZGU1ZWMzMTgzMTliMTU1OTRiNjhhYjk2
Yzk1NmMwHhcNMjUwODIzMTYwMDQ3WhcNMjUwODI0MTYwMDQ3WjAzMTEwLwYDVQQD
EygzMjFmY2E1YWM1ZDZkZmNiNDA1N2M1MTcxYzYzMDIwNzZjYTk2N2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7gaj2LMwse+5IPL1DanN92NAyAII
3eFvLDS82Bk0q+T0s74Ur9TA0CfEB0HjDdrUYkf0OJlxZQILrxl2he91MrQPab+/
vOciZqCiU0vWJQrvX0Rvc4dUDEaRjW6XiQ/Goo5+NrHrvbHaKOAE7PxFJplq/UWZ
qnXZYLYcNTRXyUfRTyj5h1iX5gnI0yCT+JAXIxjtr4oXgT+aCQcDjcLsokuURuuc
ufaXBS36eGC1UXDJZrpwRrljMu7rPD/4A7aHzbcvL3y/vTWQMBbIGIg+7+ZbkHgf
9sox/I8mem89xIU4i0kP+ffw3etlXwQUuC1PaoC6uyeQ0C8egnAf4HG7SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDIfylrF1t/LQFfFFxxjAgdsqWfSMB8GA1UdIwQY
MBaAFIbhq6YAzeXsMYMZsVWUtoq5bJVsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjIt
ZDYwNWM1M2EzNWJlLzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjItZDYwNWM1M2EzNWJl
LzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOIVHy0jt
2/ujnctV+fk19ijqoT4mIzdaP7aLH2PAvIVNHPqP/YTnxAfpP8rl4H85ZYAVzt3U
5qod05w8j7cnJkH76FMHMWqywaE4f1lblsrizARuk+J30+GzVFmheju7POfe37Mf
q8PIlgRUulcRipB3M2leXlT2Q3H/Z/BkaYQfs5sOCI3Vn47zegy5DHeiiP4VruVW
+sq8BMmqcx2bk+BtxVDcjCgpdviSW0jt2KzQ0Siwv/OSKP4K7xlpmiEsJS+w8OOV
Vl1UbAqxEZSLfkUMH9z6/IeVG+Czmm3EfI8pmK1vWxde0g5SzNYCVSeJEP+hXJ4H
goV9Zo8oECPvsw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:18:51 2025 by rpki-client