Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: hTkUhzJDRufR5BZdre0WJ+bf3AABPP/vO30cBpZ5NO0=
Subject key identifier: 51:75:2B:BF:5D:11:4A:AC:68:50:D7:FD:32:BF:7B:FF:0D:38:3B:1B
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 0198D515B0905FAAA87C9A91E336065208FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 085E
Signing time: Sat 23 Aug 2025 04:00:25 +0000
Manifest this update: Sat 23 Aug 2025 04:00:25 +0000
Manifest next update: Sun 24 Aug 2025 04:00:25 +0000
Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: OStgqtpSJOOMRPlq75Oa0j+Hc+E06bbb15DdIx/6Izk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:b0:90:5f:aa:a8:7c:9a:91:e3:36:06:52:08:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Aug 23 04:00:25 2025 GMT
Not After : Aug 24 04:00:25 2025 GMT
Subject: CN=51752bbf5d114aac6850d7fd32bf7bff0d383b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ab:1f:4a:68:22:da:17:3c:70:2a:8b:43:9f:
55:da:ac:fd:69:e4:57:12:7f:f7:fb:ee:28:2b:6c:
b0:62:dc:06:f5:c8:97:bd:48:2e:10:7c:b1:b9:69:
0d:4a:84:75:2f:30:60:b1:fa:97:45:1e:b0:3b:68:
b0:4d:35:d0:88:af:ef:31:fa:15:0a:64:84:fe:86:
91:9d:d5:3b:fa:ab:54:11:1d:13:43:f0:56:45:8b:
0d:83:10:3c:a5:94:a3:d4:19:4c:de:55:11:c9:81:
2c:51:25:0d:c9:6a:c0:03:b7:11:0c:c0:eb:f4:21:
37:32:e4:03:4d:50:b4:c1:3e:dc:2c:29:25:6c:55:
79:f6:ef:d1:ec:ec:4c:3c:e8:17:80:c6:a8:be:27:
1e:e3:a5:4b:2d:20:b4:aa:d2:71:ae:4d:f0:f1:df:
43:ce:a6:ab:29:82:9b:6d:03:1a:32:a1:cd:5f:16:
c7:83:b6:82:84:31:d8:ac:5d:47:04:81:0c:ff:36:
32:6f:d2:3d:1d:c7:f8:6a:12:88:23:2d:5a:75:67:
ac:55:0a:86:d3:af:1d:02:30:40:75:79:1a:82:c8:
45:75:e2:c9:06:53:ab:cb:f6:01:e6:e7:47:32:ba:
dd:fd:ff:a6:f1:2a:4f:97:e6:90:9f:da:f8:8c:53:
c0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:75:2B:BF:5D:11:4A:AC:68:50:D7:FD:32:BF:7B:FF:0D:38:3B:1B
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:e0:57:48:23:d2:1e:ed:12:64:96:dd:c0:f8:76:d4:1d:1e:
81:c4:d6:52:de:61:fa:cc:12:e5:89:2e:b8:fd:5d:de:1c:23:
d3:87:c5:8d:49:b7:30:d2:0d:5a:0c:83:27:ac:f2:15:b1:cf:
26:b1:6a:62:94:e7:73:26:56:20:c1:95:6c:44:96:0a:7f:f1:
10:c0:d4:9c:7a:0a:75:cf:b9:52:ea:51:81:17:49:3a:ab:e8:
87:02:e9:57:3e:07:4d:71:0a:ff:da:2e:cc:72:72:a1:db:06:
ed:4b:85:4b:8e:37:d6:61:83:87:53:4f:0a:af:74:ad:60:e2:
8e:5b:54:d1:2d:85:9e:03:e9:4a:b3:e8:13:37:28:09:09:26:
d6:bc:43:cb:35:8d:63:fe:dd:ff:4a:e5:6c:52:c1:91:8a:84:
ab:8c:8b:61:cc:e3:b6:7f:35:db:21:69:94:62:79:18:4c:28:
b2:9d:5d:cb:02:40:75:38:7d:17:51:7e:07:5d:7d:c8:ad:43:
54:4a:58:5e:64:84:b8:00:e8:11:64:f3:27:60:d3:21:ff:30:
67:b4:6c:c2:92:35:16:5c:73:cc:b5:90:b0:f4:18:4e:55:9f:
48:b9:0a:8b:bf:0b:80:7a:94:a3:f3:7e:40:93:32:54:e1:52:
09:4c:48:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFbCQX6qofJqR4zYGUgj/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0M2JlODYzOWY0MDM5OTkzYzFmNmU3ODc5ZjQ3MjllNDdk
YzM3YWUwHhcNMjUwODIzMDQwMDI1WhcNMjUwODI0MDQwMDI1WjAzMTEwLwYDVQQD
Eyg1MTc1MmJiZjVkMTE0YWFjNjg1MGQ3ZmQzMmJmN2JmZjBkMzgzYjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArasfSmgi2hc8cCqLQ59V2qz9aeRX
En/3++4oK2ywYtwG9ciXvUguEHyxuWkNSoR1LzBgsfqXRR6wO2iwTTXQiK/vMfoV
CmSE/oaRndU7+qtUER0TQ/BWRYsNgxA8pZSj1BlM3lURyYEsUSUNyWrAA7cRDMDr
9CE3MuQDTVC0wT7cLCklbFV59u/R7OxMPOgXgMaovice46VLLSC0qtJxrk3w8d9D
zqarKYKbbQMaMqHNXxbHg7aChDHYrF1HBIEM/zYyb9I9Hcf4ahKIIy1adWesVQqG
068dAjBAdXkagshFdeLJBlOry/YB5udHMrrd/f+m8SpPl+aQn9r4jFPA0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFF1K79dEUqsaFDX/TK/e/8NODsbMB8GA1UdIwQY
MBaAFIQ76GOfQDmZPB9ueHn0cp5H3DeuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi85ZTFhNzctN2MxNy00NDgxLTg3N2Mt
Nzc4ODc0OGY2N2NiLzEvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi85ZTFhNzctN2MxNy00NDgxLTg3N2MtNzc4ODc0OGY2N2Ni
LzEvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcuBXSCPS
Hu0SZJbdwPh21B0egcTWUt5h+swS5YkuuP1d3hwj04fFjUm3MNINWgyDJ6zyFbHP
JrFqYpTncyZWIMGVbESWCn/xEMDUnHoKdc+5UupRgRdJOqvohwLpVz4HTXEK/9ou
zHJyodsG7UuFS4431mGDh1NPCq90rWDijltU0S2FngPpSrPoEzcoCQkm1rxDyzWN
Y/7d/0rlbFLBkYqEq4yLYczjtn812yFplGJ5GEwosp1dywJAdTh9F1F+B119yK1D
VEpYXmSEuADoEWTzJ2DTIf8wZ7RswpI1FlxzzLWQsPQYTlWfSLkKi78LgHqUo/N+
QJMyVOFSCUxIqg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:24 2025 by rpki-client