Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
File: H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft (raw, json)
Hash identifier: XIPshM8hyg8sTUkeBxlM7gaSKV3FNbpd9P2dJ0AjVpg=
Subject key identifier: 4D:56:B4:94:9B:96:AD:BF:51:7C:8C:8A:B3:4C:35:48:88:06:55:57
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 019A541AEDFA6CB0BB46DAB181B7D26629A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
Manifest number: 1727
Signing time: Wed 05 Nov 2025 13:00:42 +0000
Manifest this update: Wed 05 Nov 2025 13:00:42 +0000
Manifest next update: Thu 06 Nov 2025 13:00:42 +0000
Files and hashes: 1: Du67LuSR--FTZRs33JDJ1Yh_Yqc.roa (hash: Uq3e+EYwHhZpPWXp5ry3+fcpGqjbo+HY9H6K+cMEsOA=)
2: FEVLyocUc6srSgG5NKC92llAoSk.roa (hash: U/AT3qDQIkq6fb3oDkQi2I80nDPVQViw5CnQ12p/5Wg=)
3: H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl (hash: LgWlrA9+EwWGcu6C0+adfXclISzoYXAtrQu75wOja8k=)
4: KKoRgXzLVxX8M0ge-PzEa-7tJn8.roa (hash: ZB5HW8dKxDtda/UB5dE3fN6v3EtscnOQiCRsaguyfYs=)
5: vPm_UYg8wre_NolD1hu0Cx9JGzE.roa (hash: Rws+EnLA4ahX/aasRkr6vitQH/K/D1I71mx2gpcNmkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 13:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:1a:ed:fa:6c:b0:bb:46:da:b1:81:b7:d2:66:29:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Nov 5 13:00:42 2025 GMT
Not After : Nov 6 13:00:42 2025 GMT
Subject: CN=4d56b4949b96adbf517c8c8ab34c354888065557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:3b:82:f6:2c:7d:18:8b:db:4a:76:10:50:6e:
bc:d2:73:86:fe:65:72:23:8c:e4:09:dd:91:4d:63:
84:d0:51:2a:4d:c4:f2:61:f0:b4:4c:3f:5b:bc:0b:
54:69:1d:79:d1:0f:b3:23:e2:47:8b:b0:42:a2:2a:
44:a9:4e:41:8b:2e:dc:69:42:e3:c7:c3:78:9f:32:
9b:43:6d:97:6a:f7:7d:45:f8:af:ce:d6:42:8b:f9:
45:6b:5c:56:49:63:76:88:fe:9d:c6:4f:c8:84:62:
44:0c:ee:03:9f:4f:2f:ea:45:a0:2c:7e:cb:7d:e5:
32:1b:3f:f4:c3:5e:23:12:b9:9e:66:61:9e:08:16:
95:a3:f4:5d:6a:63:45:1f:11:c6:21:19:01:56:4d:
3e:fe:6f:85:1e:38:e1:f8:fc:8e:10:7c:ff:82:5f:
ea:e2:b3:9c:07:85:e2:04:ba:98:21:75:bf:ba:81:
f3:a4:bf:98:47:34:09:1b:d1:b6:b6:52:28:61:12:
10:84:ae:ff:8f:6e:af:91:0d:bc:16:84:6f:2f:c8:
48:b3:2e:5d:7b:46:58:29:14:9e:52:93:ff:3b:50:
27:a7:b7:23:98:f6:b5:7b:8f:2c:77:4b:1b:d7:9b:
3b:a4:d0:1c:c4:9a:a7:57:f6:44:b9:c7:5f:02:40:
ac:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:56:B4:94:9B:96:AD:BF:51:7C:8C:8A:B3:4C:35:48:88:06:55:57
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7e:f7:55:2a:ef:0f:6a:df:50:47:3e:29:f8:53:60:0c:8d:
13:54:24:a4:84:7e:fa:d1:bd:a5:d0:4c:a1:c6:97:2b:eb:5b:
c4:71:23:0a:4b:46:2b:99:e8:7c:38:cd:33:6c:aa:aa:2b:07:
5f:b2:bf:ef:39:6d:f9:22:b5:7c:05:ec:82:01:c3:b7:6d:40:
20:be:bd:63:a6:ff:fe:b7:10:0d:82:0a:79:d6:9b:84:0c:72:
2b:ab:ad:d3:fa:df:5d:a4:e7:47:f9:64:48:e4:f2:88:f1:ad:
03:43:56:f5:f8:93:27:ed:bb:4c:47:2e:c6:1a:63:83:06:ed:
68:19:36:33:1c:3c:d0:89:32:cc:8d:51:fe:ec:50:9e:2d:7f:
7c:ca:e4:76:80:27:31:06:8e:67:f4:34:ac:e8:0a:ba:4b:63:
b2:9e:d6:ac:57:b0:25:e3:bb:8c:bc:62:35:39:cf:bc:73:0b:
3e:bb:b1:37:6b:1c:ee:d3:b9:50:f3:00:10:6e:e6:7e:d5:c7:
a1:ea:67:f9:73:45:6f:1e:a8:04:c4:4f:bb:48:6a:6b:33:93:
ed:62:da:65:dd:44:1d:44:35:4c:4e:df:69:96:b3:0a:ee:c5:
dd:fe:e4:7b:17:f1:50:be:1a:4d:eb:f3:47:a0:24:ae:52:06:
9c:a6:d4:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpUGu36bLC7RtqxgbfSZimkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjFhYTVkMWJlZmQ3YTBmZTNlNGRmZTNhYThkYTczZWZj
ZmJhMzQwHhcNMjUxMTA1MTMwMDQyWhcNMjUxMTA2MTMwMDQyWjAzMTEwLwYDVQQD
Eyg0ZDU2YjQ5NDliOTZhZGJmNTE3YzhjOGFiMzRjMzU0ODg4MDY1NTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8DuC9ix9GIvbSnYQUG680nOG/mVy
I4zkCd2RTWOE0FEqTcTyYfC0TD9bvAtUaR150Q+zI+JHi7BCoipEqU5Biy7caULj
x8N4nzKbQ22Xavd9RfivztZCi/lFa1xWSWN2iP6dxk/IhGJEDO4Dn08v6kWgLH7L
feUyGz/0w14jErmeZmGeCBaVo/RdamNFHxHGIRkBVk0+/m+FHjjh+PyOEHz/gl/q
4rOcB4XiBLqYIXW/uoHzpL+YRzQJG9G2tlIoYRIQhK7/j26vkQ28FoRvL8hIsy5d
e0ZYKRSeUpP/O1Anp7cjmPa1e48sd0sb15s7pNAcxJqnV/ZEucdfAkCs9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE1WtJSblq2/UXyMirNMNUiIBlVXMB8GA1UdIwQY
MBaAFB9hql0b79eg/j5N/jqo2nPvz7o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUt
YzYyMWU4ZGY5NWZmLzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUtYzYyMWU4ZGY5NWZm
LzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQX73VSrv
D2rfUEc+KfhTYAyNE1QkpIR++tG9pdBMocaXK+tbxHEjCktGK5nofDjNM2yqqisH
X7K/7zlt+SK1fAXsggHDt21AIL69Y6b//rcQDYIKedabhAxyK6ut0/rfXaTnR/lk
SOTyiPGtA0NW9fiTJ+27TEcuxhpjgwbtaBk2Mxw80IkyzI1R/uxQni1/fMrkdoAn
MQaOZ/Q0rOgKuktjsp7WrFewJeO7jLxiNTnPvHMLPruxN2sc7tO5UPMAEG7mftXH
oepn+XNFbx6oBMRPu0hqazOT7WLaZd1EHUQ1TE7faZazCu7F3f7kexfxUL4aTevz
R6AkrlIGnKbUMQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 22:31:13 2025 by rpki-client