Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: yuE41n/3HW7sa7deYxX8GtPy90b+HBrj1WG+P8ujiB4=
Subject key identifier: 3E:32:B9:01:CE:44:5B:8F:26:49:F6:B9:E6:05:6E:74:27:3D:7A:2D
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 0198D5F1535BF22C55166E92AB3B2844AB37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 164E
Signing time: Sat 23 Aug 2025 08:00:19 +0000
Manifest this update: Sat 23 Aug 2025 08:00:19 +0000
Manifest next update: Sun 24 Aug 2025 08:00:19 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: QaYEAnT1u2LheRSBCkFAZN+3qFGQRHRAVjT7ili5LoU=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:53:5b:f2:2c:55:16:6e:92:ab:3b:28:44:ab:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Aug 23 08:00:19 2025 GMT
Not After : Aug 24 08:00:19 2025 GMT
Subject: CN=3e32b901ce445b8f2649f6b9e6056e74273d7a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:30:d0:d8:9b:62:4c:cf:50:2a:00:37:3b:f6:
89:f2:0c:2f:12:35:68:93:b5:14:cd:db:e5:67:59:
9d:6e:cc:92:36:22:fd:60:c0:ab:0c:d9:80:16:5a:
9a:2e:65:5d:40:84:06:a6:28:a1:b3:af:ba:29:40:
53:04:54:b5:e2:dd:4f:e7:6c:99:17:d1:25:c0:65:
59:fe:eb:f6:26:6a:a4:f1:d5:a5:89:cf:ce:00:1a:
68:2d:9c:3a:f5:1c:32:ed:b8:14:ec:c9:fd:c0:31:
4c:e5:b9:50:a2:df:ad:f2:62:e0:6b:c4:cb:35:50:
5b:8a:2b:3c:5c:77:4a:8b:e9:80:f4:b9:3f:63:a5:
2f:3b:8a:aa:e4:e3:5c:87:d1:93:fb:d0:3e:29:42:
fd:0c:55:f6:de:2f:da:bf:27:70:0b:ba:85:fc:77:
b3:1a:47:73:58:30:e7:72:af:28:2f:ed:d1:c1:38:
00:16:0b:fb:38:8a:3d:de:87:9a:96:13:3d:4b:b1:
76:9e:b1:e3:ed:5b:94:c0:7a:72:8b:e7:ca:6b:3d:
4b:7d:89:23:fd:f5:3c:0d:c7:f6:27:f1:9e:a9:c4:
43:2e:0c:72:8c:92:e7:bb:97:6b:cc:e1:3e:60:96:
dc:bb:93:ed:fb:ef:5c:e6:61:2e:6e:0b:e1:ab:b6:
da:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:32:B9:01:CE:44:5B:8F:26:49:F6:B9:E6:05:6E:74:27:3D:7A:2D
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:08:d5:6a:99:67:ca:7d:52:46:47:a8:f8:77:0d:5d:04:1a:
c3:98:02:0b:86:d6:00:17:5e:b6:42:2b:6c:5a:7b:f0:a3:91:
8d:16:e3:fd:26:76:c0:41:5a:33:28:d8:e1:7a:75:a9:d2:e1:
07:6c:8f:8f:b6:34:5f:20:2b:51:43:6a:2d:80:17:c3:51:ef:
16:36:57:2a:20:59:b3:c4:c8:e6:dc:2f:32:6a:44:80:f7:00:
27:e9:7c:99:9d:47:86:bd:46:c3:13:cd:dc:2e:68:5f:f2:37:
aa:ac:45:dc:d5:07:9f:3b:39:16:2a:2e:c4:39:19:c7:ee:14:
4e:77:40:7d:a3:0f:b6:3d:e5:96:fe:40:c1:12:e5:84:a6:20:
f3:5d:ef:99:f9:e8:75:92:28:23:69:8f:a7:4b:e6:84:f3:98:
dd:f7:4a:0a:4d:63:82:c0:2d:5c:05:24:50:b2:74:e4:fe:e3:
13:ac:d9:83:d9:e6:74:b4:f6:f5:9d:06:64:c1:07:ec:2e:b5:
d6:12:f5:2a:27:ca:31:aa:9f:5b:5c:cf:a0:99:73:d0:c7:4b:
d2:4e:3a:ad:0f:0a:90:f7:05:f3:96:60:84:94:4e:e4:5f:b6:
4b:8d:bf:aa:89:2a:da:e9:10:45:d0:dd:2a:06:7b:47:d6:3b:
ed:13:b7:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8VNb8ixVFm6SqzsoRKs3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZGM1M2QxZGU3YTJlZjdlYjJiOTBjODA5MTU1NDQxNDAw
NDI0ODgwHhcNMjUwODIzMDgwMDE5WhcNMjUwODI0MDgwMDE5WjAzMTEwLwYDVQQD
EygzZTMyYjkwMWNlNDQ1YjhmMjY0OWY2YjllNjA1NmU3NDI3M2Q3YTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzDQ2JtiTM9QKgA3O/aJ8gwvEjVo
k7UUzdvlZ1mdbsySNiL9YMCrDNmAFlqaLmVdQIQGpiihs6+6KUBTBFS14t1P52yZ
F9ElwGVZ/uv2Jmqk8dWlic/OABpoLZw69Rwy7bgU7Mn9wDFM5blQot+t8mLga8TL
NVBbiis8XHdKi+mA9Lk/Y6UvO4qq5ONch9GT+9A+KUL9DFX23i/avydwC7qF/Hez
GkdzWDDncq8oL+3RwTgAFgv7OIo93oealhM9S7F2nrHj7VuUwHpyi+fKaz1LfYkj
/fU8Dcf2J/GeqcRDLgxyjJLnu5drzOE+YJbcu5Pt++9c5mEubgvhq7bafwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD4yuQHORFuPJkn2ueYFbnQnPXotMB8GA1UdIwQY
MBaAFB3cU9Heei736yuQyAkVVEFABCSIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy81NTc0MTQtZDk5My00Y2JmLTgxODEt
NDg2NzFmYjdkMzgwLzEvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy81NTc0MTQtZDk5My00Y2JmLTgxODEtNDg2NzFmYjdkMzgw
LzEvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdAjVapln
yn1SRkeo+HcNXQQaw5gCC4bWABdetkIrbFp78KORjRbj/SZ2wEFaMyjY4Xp1qdLh
B2yPj7Y0XyArUUNqLYAXw1HvFjZXKiBZs8TI5twvMmpEgPcAJ+l8mZ1Hhr1GwxPN
3C5oX/I3qqxF3NUHnzs5FiouxDkZx+4UTndAfaMPtj3llv5AwRLlhKYg813vmfno
dZIoI2mPp0vmhPOY3fdKCk1jgsAtXAUkULJ05P7jE6zZg9nmdLT29Z0GZMEH7C61
1hL1KifKMaqfW1zPoJlz0MdL0k46rQ8KkPcF85ZghJRO5F+2S42/qokq2ukQRdDd
KgZ7R9Y77RO3tw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:41:49 2025 by rpki-client