Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json)
Hash identifier: k0V7B679kWWPnEotD765K8Q6YRc4DqVmWN5C8jp6kO4=
Subject key identifier: 46:C3:91:3C:9F:E7:EC:7B:F9:AA:43:24:E0:AC:2F:97:5E:55:B5:A8
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 0198D54E90A166A1C5B30C4B7317646A874A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
Manifest number: 0D6F
Signing time: Sat 23 Aug 2025 05:02:32 +0000
Manifest this update: Sat 23 Aug 2025 05:02:32 +0000
Manifest next update: Sun 24 Aug 2025 05:02:32 +0000
Files and hashes: 1: 574W7z-0GVSyQ6o383reYXA7QZc.roa (hash: 7oxCz8Z8dYajS9esPzPSpl386CuN+PzQh5YVWvXB59o=)
2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: vRRbXe7KCHFxCjaoxYeG8SWL24ibh/qPoaPnWdHVUH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:90:a1:66:a1:c5:b3:0c:4b:73:17:64:6a:87:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: Aug 23 05:02:32 2025 GMT
Not After : Aug 24 05:02:32 2025 GMT
Subject: CN=46c3913c9fe7ec7bf9aa4324e0ac2f975e55b5a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:e5:9b:df:6b:71:9f:c5:4a:ba:db:27:3b:
07:3f:7a:b2:a4:fa:bc:fc:4c:8b:c2:4b:c0:b9:5a:
4f:cd:6a:d7:09:93:0d:22:c8:fd:98:3a:0e:44:27:
1b:cc:58:63:fa:72:30:44:f8:5b:89:56:a4:38:3e:
f2:e2:48:5d:75:85:52:56:c1:ca:6e:66:85:45:54:
71:aa:d4:46:ec:c9:78:e0:42:9d:a1:fe:f4:da:5d:
41:07:9d:6d:bd:fe:91:86:21:3e:72:58:6d:5c:d3:
07:10:44:01:77:af:b2:7b:41:38:7f:3c:16:4a:e7:
55:da:89:f2:95:7f:e8:34:7f:ac:62:0a:99:cf:a8:
f4:34:5b:3a:78:41:b0:84:fc:e9:e4:d0:70:6a:41:
b9:7f:a4:85:03:01:00:78:e0:5c:e8:ee:b4:f4:88:
31:27:2c:6a:7c:2f:e3:ec:a1:6f:7c:37:df:64:30:
3d:f8:60:95:09:01:4a:e1:d6:4d:ed:ff:6d:e6:15:
c9:68:22:0b:2f:41:06:1a:97:28:dd:05:dd:b2:8c:
40:71:3a:7e:00:fb:39:57:00:d8:4a:78:de:47:0e:
6a:b7:3f:b1:dd:94:bd:09:14:5a:49:6c:c2:5a:73:
39:bf:64:72:ae:b7:d4:bf:7f:c4:92:b6:82:91:a4:
72:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C3:91:3C:9F:E7:EC:7B:F9:AA:43:24:E0:AC:2F:97:5E:55:B5:A8
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:b3:ea:27:20:5a:dd:9d:64:5e:7a:4f:95:66:32:6e:b7:bd:
c0:a9:5b:fd:02:f8:32:fc:33:75:18:44:f7:7c:3d:1e:ab:fa:
da:fe:bb:88:b0:56:c9:da:85:46:56:a3:f9:bc:e0:a2:1c:6b:
f5:cf:9d:58:b6:f0:e5:d4:a3:b4:62:49:6c:d2:1e:dc:fb:df:
46:cd:7f:de:de:00:2a:6f:86:ae:70:dd:a5:a8:18:dd:9b:42:
09:f6:c7:13:d2:da:f7:bb:f1:70:f7:95:15:16:2f:a2:1f:95:
bc:3b:cf:92:e0:15:a2:0e:38:0f:4f:e2:ba:a0:f2:ac:5c:66:
fe:00:c1:cb:dc:d4:57:ec:9c:46:20:33:7b:c6:01:53:c6:86:
5d:3a:2b:cd:22:35:4d:a8:46:e2:0f:9b:aa:19:bf:0f:10:81:
c7:05:b5:4d:6e:47:0d:41:18:a6:a4:c0:e6:ab:d8:b3:2c:f7:
ac:50:01:26:c3:e0:52:24:2c:a5:6d:a4:55:ec:cc:d0:ab:4b:
d1:a7:6b:2c:3f:5c:0f:33:63:17:e8:3e:9a:61:73:9f:3e:dc:
f7:4e:96:31:c4:4f:91:8c:c5:58:1e:4e:d5:fd:b1:91:e6:0b:
6e:0f:8f:8e:95:e6:97:08:0e:f9:db:a2:e3:89:c9:0a:20:7f:
c8:0c:f6:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTpChZqHFswxLcxdkaodKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZDA1ZTAxN2UzMzNkMTdiM2FlYjhjNWQ0OTQzYmU4ZGM2
N2MwODQwHhcNMjUwODIzMDUwMjMyWhcNMjUwODI0MDUwMjMyWjAzMTEwLwYDVQQD
Eyg0NmMzOTEzYzlmZTdlYzdiZjlhYTQzMjRlMGFjMmY5NzVlNTViNWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpLlm99rcZ/FSrrbJzsHP3qypPq8
/EyLwkvAuVpPzWrXCZMNIsj9mDoORCcbzFhj+nIwRPhbiVakOD7y4khddYVSVsHK
bmaFRVRxqtRG7Ml44EKdof702l1BB51tvf6RhiE+clhtXNMHEEQBd6+ye0E4fzwW
SudV2onylX/oNH+sYgqZz6j0NFs6eEGwhPzp5NBwakG5f6SFAwEAeOBc6O609Igx
JyxqfC/j7KFvfDffZDA9+GCVCQFK4dZN7f9t5hXJaCILL0EGGpco3QXdsoxAcTp+
APs5VwDYSnjeRw5qtz+x3ZS9CRRaSWzCWnM5v2RyrrfUv3/EkraCkaRyuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEbDkTyf5+x7+apDJOCsL5deVbWoMB8GA1UdIwQY
MBaAFIXQXgF+Mz0Xs664xdSUO+jcZ8CEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGRCZUFYNHpQUmV6cnJqRjFKUTc2Tnhud0lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wOTVhYzktYzNmYS00NjVkLTgzMWQt
NDdjOTUwMzM2ZTJmLzEvaGRCZUFYNHpQUmV6cnJqRjFKUTc2Tnhud0lRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8wOTVhYzktYzNmYS00NjVkLTgzMWQtNDdjOTUwMzM2ZTJm
LzEvaGRCZUFYNHpQUmV6cnJqRjFKUTc2Tnhud0lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7PqJyBa
3Z1kXnpPlWYybre9wKlb/QL4MvwzdRhE93w9Hqv62v67iLBWydqFRlaj+bzgohxr
9c+dWLbw5dSjtGJJbNIe3PvfRs1/3t4AKm+GrnDdpagY3ZtCCfbHE9La97vxcPeV
FRYvoh+VvDvPkuAVog44D0/iuqDyrFxm/gDBy9zUV+ycRiAze8YBU8aGXTorzSI1
TahG4g+bqhm/DxCBxwW1TW5HDUEYpqTA5qvYsyz3rFABJsPgUiQspW2kVezM0KtL
0adrLD9cDzNjF+g+mmFznz7c906WMcRPkYzFWB5O1f2xkeYLbg+PjpXmlwgO+dui
44nJCiB/yAz25g==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:33 2025 by rpki-client