Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
File: hGbpF0La0bn0x5ayOzfres2FgWE.mft (raw, json)
Hash identifier: ijqLv5Ay5f5sTmzzqsz/UCdJL805cwl1E4wzn6qc0AU=
Subject key identifier: BD:1B:32:F1:8B:92:FA:BF:E0:B2:8C:26:0A:01:CC:04:E9:16:A2:B1
Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Certificate serial: 0199FC589D2350AE83A659BE84E41D88DB72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
Manifest number: 1183
Signing time: Sun 19 Oct 2025 12:01:29 +0000
Manifest this update: Sun 19 Oct 2025 12:01:29 +0000
Manifest next update: Mon 20 Oct 2025 12:01:29 +0000
Files and hashes: 1: bbcA4RxlQmcQjNn0rG4goHNMuOU.roa (hash: R2hOoSIVcz11ndb2ZPvvYv6Kv8fgZfMkny+ajnRe2GQ=)
2: hGbpF0La0bn0x5ayOzfres2FgWE.crl (hash: TzOuxfDUk2df9gHQSOHi/AmRpZvtVux+LebrvasO7zs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:9d:23:50:ae:83:a6:59:be:84:e4:1d:88:db:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Validity
Not Before: Oct 19 12:01:29 2025 GMT
Not After : Oct 20 12:01:29 2025 GMT
Subject: CN=bd1b32f18b92fabfe0b28c260a01cc04e916a2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:91:87:6f:28:16:3c:bd:5b:dc:58:9d:e6:
f6:35:de:f3:a9:59:ea:4f:a8:09:93:71:05:f7:ee:
69:12:7b:d2:fe:ed:0d:0f:cc:94:02:48:c8:4f:40:
51:ee:13:60:96:8d:25:34:d4:9c:25:20:c0:6a:57:
94:cf:08:20:92:fc:9e:a3:77:dc:b0:cf:7f:af:c2:
88:78:07:08:27:48:56:c6:37:87:77:60:c0:d3:11:
d6:2c:ea:1f:d3:47:c5:d7:80:56:2b:33:7d:4f:33:
f9:d9:a1:df:80:3c:3e:bf:ff:eb:50:fa:8d:47:97:
62:8a:18:be:13:3e:d7:f2:dc:e0:58:c2:a5:8a:20:
b8:9b:3e:ca:10:31:1d:b5:cf:f5:94:b6:b6:ba:00:
2c:88:79:f2:5b:87:07:dd:44:3f:2d:31:65:50:92:
a8:17:1b:6b:1a:43:dd:98:23:48:72:3f:de:2c:03:
2c:da:9c:b2:37:31:7c:04:18:6b:d0:46:0e:9a:95:
95:b1:2d:de:85:58:71:9f:3a:f8:24:b3:fe:12:95:
86:98:b0:43:50:db:9f:61:1c:26:26:67:2b:38:87:
d1:a0:45:76:76:8c:3a:47:ba:c9:b5:8e:be:fd:a6:
c3:24:ef:15:65:2d:07:e6:eb:ba:ae:30:00:bb:8b:
59:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1B:32:F1:8B:92:FA:BF:E0:B2:8C:26:0A:01:CC:04:E9:16:A2:B1
X509v3 Authority Key Identifier:
keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:e9:92:03:f1:96:ae:2d:da:a8:d5:29:5b:6a:79:d0:e1:53:
d8:6b:90:66:1f:51:37:a1:7b:ae:37:f6:03:95:f3:85:8d:69:
7e:a6:5c:94:1b:58:e9:cc:a9:70:24:c4:04:1e:f5:21:f8:e6:
b1:c0:c9:73:b0:d8:f5:76:47:a9:ac:27:e0:49:fd:d2:fa:b3:
ca:56:32:e4:60:3f:e0:47:c8:23:08:d4:a1:1c:a5:ca:71:7a:
e3:f0:00:02:71:df:87:27:c4:d3:c8:e4:35:cc:bd:4b:be:b5:
4b:10:52:9d:5e:65:d2:5c:2e:97:96:92:3f:86:16:59:54:ba:
77:81:de:96:43:d0:8a:c5:6b:1a:92:83:83:8e:ab:d4:24:c3:
ac:4a:e2:7d:5d:9d:4f:55:b6:07:d5:f5:d1:04:ab:ae:76:59:
78:b1:dc:b0:69:4f:fb:92:02:02:9e:de:87:32:99:84:66:68:
60:10:ff:ae:bf:09:5b:9b:18:8c:3f:13:1c:9c:a8:a3:90:4a:
57:f1:28:74:32:96:8f:23:4a:93:ca:7b:b7:6e:ab:cd:6c:d8:
6f:64:8b:6b:13:59:52:7e:1b:e0:a8:b9:8c:c5:ff:ab:18:46:
8b:8e:dd:76:be:c1:03:46:a4:97:60:7d:ab:a2:9d:1e:c1:c2:
d4:44:d3:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WJ0jUK6Dplm+hOQdiNtyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NjZlOTE3NDJkYWQxYjlmNGM3OTZiMjNiMzdlYjdhY2Q4
NTgxNjEwHhcNMjUxMDE5MTIwMTI5WhcNMjUxMDIwMTIwMTI5WjAzMTEwLwYDVQQD
EyhiZDFiMzJmMThiOTJmYWJmZTBiMjhjMjYwYTAxY2MwNGU5MTZhMmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdGRh28oFjy9W9xYneb2Nd7zqVnq
T6gJk3EF9+5pEnvS/u0ND8yUAkjIT0BR7hNglo0lNNScJSDAaleUzwggkvyeo3fc
sM9/r8KIeAcIJ0hWxjeHd2DA0xHWLOof00fF14BWKzN9TzP52aHfgDw+v//rUPqN
R5diihi+Ez7X8tzgWMKliiC4mz7KEDEdtc/1lLa2ugAsiHnyW4cH3UQ/LTFlUJKo
FxtrGkPdmCNIcj/eLAMs2pyyNzF8BBhr0EYOmpWVsS3ehVhxnzr4JLP+EpWGmLBD
UNufYRwmJmcrOIfRoEV2dow6R7rJtY6+/abDJO8VZS0H5uu6rjAAu4tZUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL0bMvGLkvq/4LKMJgoBzATpFqKxMB8GA1UdIwQY
MBaAFIRm6RdC2tG59MeWsjs363rNhYFhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAt
NGUzMmM4YjhlZTM2LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAtNGUzMmM4YjhlZTM2
LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkemSA/GW
ri3aqNUpW2p50OFT2GuQZh9RN6F7rjf2A5XzhY1pfqZclBtY6cypcCTEBB71Ifjm
scDJc7DY9XZHqawn4En90vqzylYy5GA/4EfIIwjUoRylynF64/AAAnHfhyfE08jk
Ncy9S761SxBSnV5l0lwul5aSP4YWWVS6d4HelkPQisVrGpKDg46r1CTDrErifV2d
T1W2B9X10QSrrnZZeLHcsGlP+5ICAp7ehzKZhGZoYBD/rr8JW5sYjD8THJyoo5BK
V/EodDKWjyNKk8p7t26rzWzYb2SLaxNZUn4b4Ki5jMX/qxhGi47ddr7BA0akl2B9
q6KdHsHC1ETTxA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:37:36 2025 by rpki-client