Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
File: RHxS2B7cEklkSteUvgKK-Q4CShY.mft (raw, json)
Hash identifier: +t3BUV0WrnKarnZ/4pl459XajOUcGDcyAzf4VCUQVS8=
Subject key identifier: 14:6A:A1:E1:E3:C1:C9:62:26:22:D4:28:4C:B8:AA:7F:24:68:EC:91
Authority key identifier: 44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16
Certificate issuer: /CN=447c52d81edc1249644ad794be028af90e024a16
Certificate serial: 0199FC8F5D67EF4D7185BA7BB7D3EFD8CDE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
Manifest number: 0A8E
Signing time: Sun 19 Oct 2025 13:01:17 +0000
Manifest this update: Sun 19 Oct 2025 13:01:17 +0000
Manifest next update: Mon 20 Oct 2025 13:01:17 +0000
Files and hashes: 1: 0RTmTUPTdqVwMU5i8iRqJZA86F0.roa (hash: eIjsDcha7FolfU5e8Eelou/OO0UBzir5atE5Gevb/B4=)
2: RHxS2B7cEklkSteUvgKK-Q4CShY.crl (hash: iuiMJDMDSe7iQT9zupuimH6USi/6JPEgzjPAv+dKNdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:5d:67:ef:4d:71:85:ba:7b:b7:d3:ef:d8:cd:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=447c52d81edc1249644ad794be028af90e024a16
Validity
Not Before: Oct 19 13:01:17 2025 GMT
Not After : Oct 20 13:01:17 2025 GMT
Subject: CN=146aa1e1e3c1c9622622d4284cb8aa7f2468ec91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:db:d7:42:d5:23:86:e5:2d:28:bd:9e:9c:4f:
04:b0:91:d5:8c:bf:ee:5a:e8:e3:92:d3:c9:89:f5:
00:c1:1a:76:dd:a5:9c:cd:eb:78:4c:8a:87:52:6a:
19:60:86:b0:23:27:27:1f:39:96:c8:0e:16:d5:f5:
23:2a:20:d3:a8:2b:e8:26:2d:9f:a6:f7:d9:09:0d:
66:08:a2:32:0d:ea:77:1e:cc:8a:7a:a9:56:7d:64:
0f:35:ed:a5:e7:bf:5d:cc:ea:59:7b:5e:70:8e:5d:
c1:79:f2:86:43:3e:51:f2:43:74:94:55:e0:41:73:
1d:a9:27:65:ff:8d:c9:b2:3b:93:5a:bd:af:d9:e4:
e9:d5:10:80:b1:2b:83:a7:c3:18:c8:a0:6d:fd:f8:
07:77:8e:dd:ae:0b:8f:22:58:8d:83:d0:94:94:00:
f7:4d:83:12:17:79:f4:6e:b5:a7:e1:58:a4:73:54:
5a:ce:9a:a4:b8:7b:6b:4a:28:a9:4e:23:c8:cd:94:
65:42:02:1f:9b:40:a2:f1:05:67:46:17:22:50:24:
d2:03:31:c3:ac:93:30:41:1b:05:de:63:64:cf:c5:
2a:3a:ed:40:00:1e:e2:a1:aa:ec:84:32:07:40:ab:
63:a4:bb:01:f9:98:24:8d:1b:1b:2c:33:64:cc:d0:
24:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6A:A1:E1:E3:C1:C9:62:26:22:D4:28:4C:B8:AA:7F:24:68:EC:91
X509v3 Authority Key Identifier:
keyid:44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ba:5a:b8:2a:c8:b0:a7:29:d2:2e:00:23:f9:13:df:73:7f:
5c:43:df:c2:9d:81:39:88:cd:78:e4:92:4a:7f:d3:eb:c0:00:
05:59:74:48:b2:e5:00:ac:a0:ae:25:58:17:a1:12:7e:23:ec:
58:60:60:4c:a5:e3:f2:c8:fa:7d:a7:98:ed:42:12:4f:7d:de:
9e:a6:af:e2:85:c3:fa:e2:9e:d5:15:e9:0e:c3:9b:f5:b7:0f:
b5:e0:93:2b:75:99:d5:f6:41:51:2e:de:33:a1:ba:db:6e:b3:
bb:32:f0:04:43:10:92:d7:ef:c9:ea:04:2f:b6:3b:ca:6c:6a:
c4:57:61:f4:b1:43:eb:8f:f4:40:50:1e:ac:69:f2:3e:53:4d:
e7:70:73:5e:fc:b6:b8:e9:5c:8e:a4:48:ac:34:a0:b5:78:64:
3f:17:29:0f:7c:ca:19:8f:6e:b5:9d:4b:d6:9c:e8:b1:5a:33:
13:ee:77:81:b3:98:34:28:bc:de:a0:44:9c:ba:86:53:a4:6b:
60:c9:a2:94:b0:bc:11:b5:d3:d3:5e:8f:60:00:0e:44:91:88:
f5:2f:59:42:68:a0:0e:35:0f:d8:51:b7:bc:48:e1:71:b3:3e:
fe:14:3e:e5:73:dd:50:b2:bf:10:d2:32:76:e9:70:05:4f:c0:
54:f4:0e:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j11n701xhbp7t9Pv2M3mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0N2M1MmQ4MWVkYzEyNDk2NDRhZDc5NGJlMDI4YWY5MGUw
MjRhMTYwHhcNMjUxMDE5MTMwMTE3WhcNMjUxMDIwMTMwMTE3WjAzMTEwLwYDVQQD
EygxNDZhYTFlMWUzYzFjOTYyMjYyMmQ0Mjg0Y2I4YWE3ZjI0NjhlYzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNvXQtUjhuUtKL2enE8EsJHVjL/u
WujjktPJifUAwRp23aWczet4TIqHUmoZYIawIycnHzmWyA4W1fUjKiDTqCvoJi2f
pvfZCQ1mCKIyDep3HsyKeqlWfWQPNe2l579dzOpZe15wjl3BefKGQz5R8kN0lFXg
QXMdqSdl/43JsjuTWr2v2eTp1RCAsSuDp8MYyKBt/fgHd47drguPIliNg9CUlAD3
TYMSF3n0brWn4Vikc1RazpqkuHtrSiipTiPIzZRlQgIfm0Ci8QVnRhciUCTSAzHD
rJMwQRsF3mNkz8UqOu1AAB7ioarshDIHQKtjpLsB+ZgkjRsbLDNkzNAk0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBRqoeHjwcliJiLUKEy4qn8kaOyRMB8GA1UdIwQY
MBaAFER8Utge3BJJZErXlL4CivkOAkoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC83NjFiMTctNmNiNS00N2ZkLThjNGYt
ZWZhNjc4OWZkOTcyLzEvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC83NjFiMTctNmNiNS00N2ZkLThjNGYtZWZhNjc4OWZkOTcy
LzEvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbrpauCrI
sKcp0i4AI/kT33N/XEPfwp2BOYjNeOSSSn/T68AABVl0SLLlAKygriVYF6ESfiPs
WGBgTKXj8sj6faeY7UIST33enqav4oXD+uKe1RXpDsOb9bcPteCTK3WZ1fZBUS7e
M6G6226zuzLwBEMQktfvyeoEL7Y7ymxqxFdh9LFD64/0QFAerGnyPlNN53BzXvy2
uOlcjqRIrDSgtXhkPxcpD3zKGY9utZ1L1pzosVozE+53gbOYNCi83qBEnLqGU6Rr
YMmilLC8EbXT016PYAAORJGI9S9ZQmigDjUP2FG3vEjhcbM+/hQ+5XPdULK/ENIy
dulwBU/AVPQOrg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:21:14 2025 by rpki-client