Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: MxasQou/LGJWqRGu2dBPTFh3hDb2bYHF9kuacJUl/FA=
Subject key identifier: 73:FD:9C:A1:9C:C2:A6:2C:A5:64:14:5C:A4:E3:39:EA:39:CA:DF:9C
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 0198D4E0BDEF5F40522241E30015C995BD25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 11F5
Signing time: Sat 23 Aug 2025 03:02:35 +0000
Manifest this update: Sat 23 Aug 2025 03:02:35 +0000
Manifest next update: Sun 24 Aug 2025 03:02:35 +0000
Files and hashes: 1: EgrdXaLN-vc8C2zZS8RN3DywvDo.roa (hash: hzm54PDUPW3onP/qtSLZRsQOvKv3wuQ4riGx7IRQcQA=)
2: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: 35hpiwpLs9MQYBJJ0KwhQ3564mcJp6obVZ/RHcM1hE8=)
3: rAaiXMvO9i5snovqluPbyo_QCN0.roa (hash: pt3vDzVbNzSpy4PSZ8+XX3gpZBn6uEG/ZRILx9TbDQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:bd:ef:5f:40:52:22:41:e3:00:15:c9:95:bd:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: Aug 23 03:02:35 2025 GMT
Not After : Aug 24 03:02:35 2025 GMT
Subject: CN=73fd9ca19cc2a62ca564145ca4e339ea39cadf9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:f9:13:3d:47:3f:96:9c:a3:1a:21:98:5b:
a4:34:54:09:14:6c:c8:5e:e1:59:29:59:36:fd:bc:
34:7e:57:2c:75:89:69:97:68:67:e4:28:26:d6:ba:
e9:e2:ec:aa:0e:0a:fc:46:c6:27:2e:4e:c7:f5:39:
cb:6f:8f:03:60:b0:d6:9b:c8:e5:42:bf:c7:2b:8c:
fd:41:16:46:8e:ad:3d:9d:53:2a:3a:80:20:29:d7:
18:1d:f7:d1:9f:96:b7:59:fe:41:4f:6d:b0:8f:f3:
7c:cf:dc:25:76:8d:bf:2b:43:13:87:e0:1f:ca:e9:
97:39:c4:94:da:ac:6b:19:da:e7:14:86:0c:b0:4a:
a8:c7:4d:11:87:55:9b:99:bc:8f:17:15:a0:57:e7:
f1:55:5f:ea:47:a7:b1:5a:e0:59:03:6c:6d:d3:6a:
10:f5:27:ac:25:ea:6e:56:47:69:52:f2:7c:8a:fe:
0d:00:fc:8d:53:ad:0d:6d:4a:fb:98:f9:9f:8d:1a:
79:c0:48:0c:46:49:b3:d3:05:67:5d:88:67:90:e7:
c4:24:df:a1:51:55:04:7a:02:2d:52:fe:81:52:31:
8c:b9:cc:d4:f3:10:f1:12:96:c7:1c:39:0a:57:69:
7f:af:87:4b:d0:0a:43:50:de:ca:3b:95:d9:83:03:
bb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:FD:9C:A1:9C:C2:A6:2C:A5:64:14:5C:A4:E3:39:EA:39:CA:DF:9C
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:e4:96:5a:07:17:54:19:c6:d8:f8:e3:ab:25:8e:e4:10:32:
4d:3b:31:6b:b6:7e:36:a4:3b:30:2a:87:af:df:44:26:44:50:
fa:b8:d9:43:ef:6e:2a:ed:93:1e:5f:f7:9a:a6:e0:74:a0:c1:
d3:9d:fd:35:c4:66:c2:9c:77:f5:1b:ca:f8:e3:18:fb:58:f2:
4f:f9:24:bc:e1:05:cc:ec:a0:16:83:ab:92:e2:f6:0b:18:97:
0c:2b:af:ee:0e:e5:dd:25:5c:6b:6c:45:63:4e:6c:8d:93:bb:
a2:2b:74:f0:0a:2d:57:d3:ba:5f:b8:a0:e8:d8:9e:53:96:20:
ee:04:74:ec:82:49:4d:03:e7:3a:5a:fa:23:94:11:fa:c2:8e:
f3:99:d1:d2:ed:54:92:aa:92:42:60:82:80:19:03:e1:c5:c9:
79:b8:df:0f:05:00:1a:94:aa:cc:70:d4:ee:6f:59:b8:33:9f:
0c:18:ff:90:98:60:9e:1b:c1:b3:57:5c:6e:bd:e0:97:b6:1c:
1e:d7:cb:a5:bd:a0:92:c6:33:9f:c0:f8:f6:36:a2:8b:6b:2e:
7d:63:e5:2b:c9:f5:9f:3e:6d:62:68:c5:14:8c:48:79:73:3e:
67:7a:4e:9f:82:e4:8c:04:79:b6:97:4d:5f:c5:f0:73:5c:63:
01:c0:6f:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4L3vX0BSIkHjABXJlb0lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MWQ0ZTM0ZDRlNDg1MzljMTcwNDUxZDRlMjYxMzg4ODdm
NmU5MjIwHhcNMjUwODIzMDMwMjM1WhcNMjUwODI0MDMwMjM1WjAzMTEwLwYDVQQD
Eyg3M2ZkOWNhMTljYzJhNjJjYTU2NDE0NWNhNGUzMzllYTM5Y2FkZjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Hr5Ez1HP5acoxohmFukNFQJFGzI
XuFZKVk2/bw0flcsdYlpl2hn5Cgm1rrp4uyqDgr8RsYnLk7H9TnLb48DYLDWm8jl
Qr/HK4z9QRZGjq09nVMqOoAgKdcYHffRn5a3Wf5BT22wj/N8z9wldo2/K0MTh+Af
yumXOcSU2qxrGdrnFIYMsEqox00Rh1WbmbyPFxWgV+fxVV/qR6exWuBZA2xt02oQ
9SesJepuVkdpUvJ8iv4NAPyNU60NbUr7mPmfjRp5wEgMRkmz0wVnXYhnkOfEJN+h
UVUEegItUv6BUjGMuczU8xDxEpbHHDkKV2l/r4dL0ApDUN7KO5XZgwO7LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHP9nKGcwqYspWQUXKTjOeo5yt+cMB8GA1UdIwQY
MBaAFIUdTjTU5IU5wXBFHU4mE4iH9ukiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFIxT05OVGtoVG5CY0VVZFRpWVRpSWYyNlNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9iZjE1ODktNmFkZi00NGIzLTk3NDYt
ODFjNDA1NTE0OGUwLzEvaFIxT05OVGtoVG5CY0VVZFRpWVRpSWYyNlNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9iZjE1ODktNmFkZi00NGIzLTk3NDYtODFjNDA1NTE0OGUw
LzEvaFIxT05OVGtoVG5CY0VVZFRpWVRpSWYyNlNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASeSWWgcX
VBnG2PjjqyWO5BAyTTsxa7Z+NqQ7MCqHr99EJkRQ+rjZQ+9uKu2THl/3mqbgdKDB
0539NcRmwpx39RvK+OMY+1jyT/kkvOEFzOygFoOrkuL2CxiXDCuv7g7l3SVca2xF
Y05sjZO7oit08AotV9O6X7ig6NieU5Yg7gR07IJJTQPnOlr6I5QR+sKO85nR0u1U
kqqSQmCCgBkD4cXJebjfDwUAGpSqzHDU7m9ZuDOfDBj/kJhgnhvBs1dcbr3gl7Yc
HtfLpb2gksYzn8D49jaii2sufWPlK8n1nz5tYmjFFIxIeXM+Z3pOn4LkjAR5tpdN
X8Xwc1xjAcBvKA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:37:42 2025 by rpki-client