Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: FPvUWbEp63TuHxzulvuVPUVORK7vB471hVOwK77GZNI=
Subject key identifier: 97:A6:0B:C9:18:45:50:FD:16:9B:53:AE:A1:67:59:6B:72:90:57:F9
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 0198D54E5E25D455836354DA65CDFF13FCF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0AFD
Signing time: Sat 23 Aug 2025 05:02:19 +0000
Manifest this update: Sat 23 Aug 2025 05:02:19 +0000
Manifest next update: Sun 24 Aug 2025 05:02:19 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: j8SgCMRnmZNt6ZltNIn8m59wrssD1O1lWWQb7IHUAEo=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:5e:25:d4:55:83:63:54:da:65:cd:ff:13:fc:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Aug 23 05:02:19 2025 GMT
Not After : Aug 24 05:02:19 2025 GMT
Subject: CN=97a60bc9184550fd169b53aea167596b729057f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c3:21:a7:b0:ef:55:4a:c2:de:8d:eb:30:03:
2d:4d:34:3f:66:14:12:39:c0:e3:ce:df:d1:04:40:
67:ed:3b:4f:a2:7a:6a:6d:98:93:c4:81:38:81:30:
fa:d5:90:61:05:50:47:79:ca:69:c4:c5:41:a3:41:
48:1f:30:84:5c:d7:d5:3e:8a:11:45:e0:cb:b2:06:
8f:6c:d2:a6:4c:8a:19:f2:de:bf:76:c5:82:59:51:
ea:c2:14:79:53:c2:e9:0e:3d:f7:5f:a4:68:ca:14:
50:1e:d3:07:96:f5:53:a2:ef:fc:92:7d:17:63:3f:
44:cd:ce:66:64:da:80:07:2f:89:61:ea:c1:b4:6d:
8d:76:d0:e8:9e:c2:f2:f9:8e:12:8e:0e:0d:52:0c:
7b:93:5f:32:13:21:dc:ab:32:eb:a6:3c:90:ff:a7:
56:a8:4c:ff:ce:7a:54:d5:d0:db:b7:c2:ea:0c:f2:
f7:24:43:6e:aa:5a:79:88:b5:0a:e5:d0:d7:fa:12:
b9:a4:70:6c:1e:1f:72:be:8c:56:35:cb:fb:05:46:
b2:0f:a9:47:07:ad:31:9f:9e:c9:d1:69:d5:59:74:
ad:d7:a5:56:2b:0c:48:8c:ac:9f:12:d6:27:f3:5f:
f8:17:77:65:e8:b5:4f:88:06:91:26:de:ef:d7:e9:
6f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A6:0B:C9:18:45:50:FD:16:9B:53:AE:A1:67:59:6B:72:90:57:F9
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b1:21:e0:e8:ae:8d:72:34:22:3f:8c:20:a4:8f:7a:47:42:
61:27:ba:d1:53:be:15:89:02:b9:d3:b9:6a:e5:8f:65:65:10:
f5:ec:66:d8:c5:c4:6c:0f:15:43:9c:ef:23:ae:ac:e9:46:ee:
95:02:09:a7:af:b5:21:c6:5c:f9:f5:0c:bd:41:0d:2d:c2:37:
d5:85:d8:f6:a4:ba:ca:14:f6:16:2e:6d:d5:11:6d:ec:91:4b:
59:42:0b:6b:68:29:6e:12:87:66:0b:cc:00:bc:13:30:c8:50:
38:40:55:ac:1e:a3:a8:90:57:a4:8c:87:8d:f4:b6:46:fa:55:
28:e5:e5:a7:b5:12:31:a4:18:9c:2f:4d:22:d5:8b:10:48:53:
91:0b:13:da:ca:05:20:5e:6b:2f:20:2b:e9:84:5b:43:01:39:
c6:0e:c0:53:16:ff:d3:ee:93:c0:d1:6d:b5:2a:ae:c9:ad:3e:
e6:3e:ac:4e:f2:10:f6:9c:78:2d:4b:e8:c0:47:c7:dd:5b:6f:
21:f3:32:34:15:f5:15:da:93:d0:d2:ec:a3:10:fa:e4:5a:4a:
ff:2d:4b:2a:be:b7:ad:22:66:e9:1f:8c:8c:28:6d:e2:4c:e2:
a5:8f:45:3a:d9:ba:b8:76:5f:da:56:a7:0e:02:64:6d:b0:65:
62:f2:30:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTl4l1FWDY1TaZc3/E/zwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZGI3MWY2OTE5YjBlZjk4ZWVmYzk5NjQ5MjhhODc1MTAy
MzZhMDMwHhcNMjUwODIzMDUwMjE5WhcNMjUwODI0MDUwMjE5WjAzMTEwLwYDVQQD
Eyg5N2E2MGJjOTE4NDU1MGZkMTY5YjUzYWVhMTY3NTk2YjcyOTA1N2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMMhp7DvVUrC3o3rMAMtTTQ/ZhQS
OcDjzt/RBEBn7TtPonpqbZiTxIE4gTD61ZBhBVBHecppxMVBo0FIHzCEXNfVPooR
ReDLsgaPbNKmTIoZ8t6/dsWCWVHqwhR5U8LpDj33X6RoyhRQHtMHlvVTou/8kn0X
Yz9Ezc5mZNqABy+JYerBtG2NdtDonsLy+Y4Sjg4NUgx7k18yEyHcqzLrpjyQ/6dW
qEz/znpU1dDbt8LqDPL3JENuqlp5iLUK5dDX+hK5pHBsHh9yvoxWNcv7BUayD6lH
B60xn57J0WnVWXSt16VWKwxIjKyfEtYn81/4F3dl6LVPiAaRJt7v1+lvmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJemC8kYRVD9FptTrqFnWWtykFf5MB8GA1UdIwQY
MBaAFIfbcfaRmw75ju/JlkkoqHUQI2oDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODIt
OTA0YTA4MDMxYTlmLzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODItOTA0YTA4MDMxYTlm
LzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbEh4Oiu
jXI0Ij+MIKSPekdCYSe60VO+FYkCudO5auWPZWUQ9exm2MXEbA8VQ5zvI66s6Ubu
lQIJp6+1IcZc+fUMvUENLcI31YXY9qS6yhT2Fi5t1RFt7JFLWUILa2gpbhKHZgvM
ALwTMMhQOEBVrB6jqJBXpIyHjfS2RvpVKOXlp7USMaQYnC9NItWLEEhTkQsT2soF
IF5rLyAr6YRbQwE5xg7AUxb/0+6TwNFttSquya0+5j6sTvIQ9px4LUvowEfH3Vtv
IfMyNBX1FdqT0NLsoxD65FpK/y1LKr63rSJm6R+MjCht4kzipY9FOtm6uHZf2lan
DgJkbbBlYvIwsA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:13:28 2025 by rpki-client