Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: 9EnYwWQz+ZjjbOCHytTazgVzK5Nzi2RXm+dqOeEeJ4E=
Subject key identifier: D3:A8:7E:CA:F6:18:77:C4:7D:A4:24:23:01:D6:C0:86:F2:00:52:9E
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 01984B1C82F24F943163EA87EB6BAE2BA13F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0683
Signing time: Sun 27 Jul 2025 09:00:16 +0000
Manifest this update: Sun 27 Jul 2025 09:00:16 +0000
Manifest next update: Mon 28 Jul 2025 09:00:16 +0000
Files and hashes: 1: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
2: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
3: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: exsFLB02eUEzA/WCfsu9UNkUyVCYcFZNN6/bEvGuqtQ=)
4: wcJ_wqjkpF90dh4pnsLUh2A6UA8.roa (hash: Vle/iazgF/KeRcK8urw8Nfb/AAf+CLF6fd+SxsYrWz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:1c:82:f2:4f:94:31:63:ea:87:eb:6b:ae:2b:a1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Jul 27 09:00:16 2025 GMT
Not After : Jul 28 09:00:16 2025 GMT
Subject: CN=d3a87ecaf61877c47da4242301d6c086f200529e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:78:78:3c:27:b9:df:e1:ea:3b:70:95:d5:69:
5f:f2:93:4d:45:69:e3:c8:3b:7b:6c:ce:75:9a:de:
ca:25:2a:a4:9c:53:82:26:7d:36:97:3b:cf:e2:27:
04:50:b3:ea:3b:11:8e:37:7f:1d:0e:ba:4a:0f:4c:
ae:a0:f8:1c:2f:20:f2:24:bc:bc:2c:fd:b6:94:c3:
52:5d:34:2b:9f:6c:71:96:65:34:f4:4f:00:fc:bb:
70:a2:ab:5e:90:bb:a7:8c:c2:bc:9f:8d:cd:43:49:
3d:4f:a9:78:43:10:ab:e1:6b:98:61:b8:d1:15:1a:
bb:89:bc:a8:1e:57:d8:34:6b:8a:50:39:23:5e:28:
3d:c5:03:6f:c7:80:b2:41:bb:d0:19:d7:81:ff:90:
59:2f:1f:25:d5:93:b2:69:4c:2e:fa:f9:35:a6:78:
8f:dd:63:d8:67:86:6b:ea:24:6d:e3:a0:53:97:f6:
eb:59:c2:c5:79:8a:7c:fd:0d:78:bc:ea:e1:f0:8b:
e6:8a:92:13:f0:ba:79:fe:50:ba:a4:ac:f7:80:a4:
69:87:19:7b:6e:95:2b:2f:24:27:88:0c:8a:37:40:
e9:79:f5:a4:fa:3a:13:0f:31:df:c3:a6:3d:b4:ee:
4e:04:b6:ab:f1:b2:ca:db:23:31:21:b7:f1:b4:03:
84:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:A8:7E:CA:F6:18:77:C4:7D:A4:24:23:01:D6:C0:86:F2:00:52:9E
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:33:05:dc:7f:67:9d:50:f0:de:d2:42:5c:25:96:fe:47:05:
10:4d:31:70:55:3d:db:8e:9c:d6:84:16:11:1e:67:e2:4a:7e:
a5:47:2d:7d:0e:24:1e:d2:6d:56:6f:a0:1d:b1:7a:b7:c0:68:
b6:a3:da:8d:80:94:63:9f:ac:67:de:02:b7:92:22:d8:f6:59:
18:20:ee:b8:33:00:76:80:23:d4:b8:79:1a:aa:ac:6f:b9:33:
1a:de:1c:2f:54:1b:8a:66:87:61:4f:18:74:a6:bf:35:1c:d7:
39:a8:55:18:8c:28:ae:61:1a:86:cd:07:37:64:3a:32:46:76:
8f:27:b8:e2:02:c4:7d:8f:6a:73:c7:48:38:a0:3f:ab:f8:74:
f9:dd:e5:35:75:a1:1d:52:84:81:26:2d:7a:13:af:89:db:d3:
ca:c8:d3:88:26:0c:e2:d9:3b:ef:99:19:37:5f:e9:21:73:19:
52:64:66:f7:7c:a2:85:8a:f4:36:e1:d5:66:18:23:54:3f:3d:
c3:cc:19:2a:98:09:33:0a:a1:e6:60:39:1b:d6:c4:23:9f:d6:
23:f7:f2:98:e6:28:d2:c5:19:97:57:61:a6:aa:14:87:70:ca:
1a:50:21:1c:9a:92:fe:1b:a4:3c:57:ad:86:bf:c8:bf:eb:86:
19:13:99:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhLHILyT5QxY+qH62uuK6E/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NDQ5MmRiOWNiYjBhMGViNmJmNjljMjVjODY5NjFmNDkx
ODNjOWIwHhcNMjUwNzI3MDkwMDE2WhcNMjUwNzI4MDkwMDE2WjAzMTEwLwYDVQQD
EyhkM2E4N2VjYWY2MTg3N2M0N2RhNDI0MjMwMWQ2YzA4NmYyMDA1MjllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXh4PCe53+HqO3CV1Wlf8pNNRWnj
yDt7bM51mt7KJSqknFOCJn02lzvP4icEULPqOxGON38dDrpKD0yuoPgcLyDyJLy8
LP22lMNSXTQrn2xxlmU09E8A/LtwoqtekLunjMK8n43NQ0k9T6l4QxCr4WuYYbjR
FRq7ibyoHlfYNGuKUDkjXig9xQNvx4CyQbvQGdeB/5BZLx8l1ZOyaUwu+vk1pniP
3WPYZ4Zr6iRt46BTl/brWcLFeYp8/Q14vOrh8IvmipIT8Lp5/lC6pKz3gKRphxl7
bpUrLyQniAyKN0DpefWk+joTDzHfw6Y9tO5OBLar8bLK2yMxIbfxtAOENQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNOofsr2GHfEfaQkIwHWwIbyAFKeMB8GA1UdIwQY
MBaAFIREktucuwoOtr9pwlyGlh9JGDybMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8zM2E4ODgtNGNmMy00YThjLTkyOTct
YTFlMGRiMWExN2RmLzEvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8zM2E4ODgtNGNmMy00YThjLTkyOTctYTFlMGRiMWExN2Rm
LzEvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIDMF3H9n
nVDw3tJCXCWW/kcFEE0xcFU9246c1oQWER5n4kp+pUctfQ4kHtJtVm+gHbF6t8Bo
tqPajYCUY5+sZ94Ct5Ii2PZZGCDuuDMAdoAj1Lh5Gqqsb7kzGt4cL1QbimaHYU8Y
dKa/NRzXOahVGIwormEahs0HN2Q6MkZ2jye44gLEfY9qc8dIOKA/q/h0+d3lNXWh
HVKEgSYtehOvidvTysjTiCYM4tk775kZN1/pIXMZUmRm93yihYr0NuHVZhgjVD89
w8wZKpgJMwqh5mA5G9bEI5/WI/fymOYo0sUZl1dhpqoUh3DKGlAhHJqS/hukPFet
hr/Iv+uGGROZYw==
-----END CERTIFICATE-----
Generated at Sun Jul 27 12:31:54 2025 by rpki-client