Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
File: H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft (raw, json)
Hash identifier: L3Rw9DgP37ac78HUCNxAVTLvXzzyUc03K3uDsOmtTeE=
Subject key identifier: DE:00:DB:5A:55:60:11:DE:A9:39:2E:2C:8F:98:C2:8A:13:A4:5B:C2
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 01995040FEDCC88324613EAABD86DA9E27B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
Manifest number: 16A0
Signing time: Tue 16 Sep 2025 02:01:00 +0000
Manifest this update: Tue 16 Sep 2025 02:01:00 +0000
Manifest next update: Wed 17 Sep 2025 02:01:00 +0000
Files and hashes: 1: Co2reX9WjBlmenpbYdQoA_FU6Yg.roa (hash: q2QsExP+FdyReITqdolcGkEpneACU1Mny9QFEjumzVA=)
2: Du67LuSR--FTZRs33JDJ1Yh_Yqc.roa (hash: Uq3e+EYwHhZpPWXp5ry3+fcpGqjbo+HY9H6K+cMEsOA=)
3: H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl (hash: /5Gv7sbjD9L4fZgEmPu8oenvdrqD6FsK+YoouPC8XKU=)
4: KKoRgXzLVxX8M0ge-PzEa-7tJn8.roa (hash: ZB5HW8dKxDtda/UB5dE3fN6v3EtscnOQiCRsaguyfYs=)
5: vPm_UYg8wre_NolD1hu0Cx9JGzE.roa (hash: Rws+EnLA4ahX/aasRkr6vitQH/K/D1I71mx2gpcNmkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:40:fe:dc:c8:83:24:61:3e:aa:bd:86:da:9e:27:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Sep 16 02:01:00 2025 GMT
Not After : Sep 17 02:01:00 2025 GMT
Subject: CN=de00db5a556011dea9392e2c8f98c28a13a45bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a3:7a:20:64:d0:85:6d:1f:88:68:76:9a:f4:
78:1c:d5:74:8c:9f:e4:e6:d5:88:15:6a:4b:c6:85:
a6:54:8a:21:67:c9:bb:5e:cd:2f:56:42:7d:d7:ea:
d7:81:75:17:d3:c6:c8:94:58:48:e2:d0:61:51:ab:
74:fc:56:90:89:a2:35:fd:3e:17:9a:74:90:27:c1:
c1:88:ce:e7:95:6a:9e:25:c6:6a:50:44:ee:eb:a5:
c1:0e:31:30:9e:52:39:9e:66:ab:0a:fd:05:51:ed:
eb:39:d4:43:84:fa:e2:82:57:d3:08:1b:e7:30:b3:
88:9d:ef:18:64:59:7e:7b:bf:e7:be:d1:ad:6b:2c:
bb:23:32:3b:7e:3a:11:9a:d3:1b:c7:9d:3c:17:74:
b9:0c:54:2f:7c:8f:e2:6f:f3:5a:3a:be:2b:bf:6c:
8b:63:a2:c8:87:15:2f:74:05:13:34:62:0a:4c:f0:
47:fb:6b:34:6c:f3:04:de:0c:8e:f0:f4:68:f8:eb:
27:2e:62:ee:73:5b:5e:fb:63:35:79:2c:2e:70:69:
e2:43:fc:9d:dc:e7:55:85:51:93:2b:62:1e:28:c8:
a4:b1:c6:11:b6:0e:68:ec:db:cc:a6:04:7a:fb:d0:
d9:85:11:11:33:8c:fd:f2:de:d3:17:b0:00:7e:17:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:00:DB:5A:55:60:11:DE:A9:39:2E:2C:8F:98:C2:8A:13:A4:5B:C2
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:43:a4:fd:85:03:65:a0:d9:a4:00:9b:c6:1c:61:6f:1f:a0:
79:f8:25:9a:92:85:1a:5f:22:d8:3b:15:eb:70:b5:94:3b:8c:
98:24:17:1a:85:8c:e1:f4:82:d3:e2:d1:01:19:f6:ca:aa:b9:
b4:bd:b7:c2:76:60:3b:a7:bc:20:a5:23:ec:3d:80:b7:45:8d:
fe:70:b7:64:de:55:61:80:2e:d9:41:41:21:c8:47:5d:c5:fa:
75:14:e0:1c:a0:50:22:3a:81:2a:06:cd:1f:85:92:ea:85:05:
17:6e:4b:da:a2:4d:b2:09:59:4e:25:31:48:f8:b7:2d:74:95:
18:e7:cc:b4:a9:38:c5:c7:19:84:f1:f1:3f:f7:92:78:57:1c:
a0:37:7b:8c:4f:ec:93:5d:02:ab:9a:69:ea:d0:44:35:67:77:
70:ba:e4:b7:4b:7c:52:9d:8b:b0:6c:17:81:df:0a:a8:31:7d:
f8:b5:95:2c:fe:59:08:b4:42:06:94:85:6b:e9:2b:a6:c4:11:
d4:b8:22:7f:c7:73:5b:ad:e7:e5:35:73:af:8e:9d:e8:8a:72:
c6:16:c0:10:b8:f3:57:e9:9f:22:6b:02:14:78:d8:9a:c6:3f:
11:24:d2:16:5a:6d:03:ad:d7:4e:bf:79:1c:1a:76:64:49:1b:
a3:b9:c4:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZlQQP7cyIMkYT6qvYbanie0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjFhYTVkMWJlZmQ3YTBmZTNlNGRmZTNhYThkYTczZWZj
ZmJhMzQwHhcNMjUwOTE2MDIwMTAwWhcNMjUwOTE3MDIwMTAwWjAzMTEwLwYDVQQD
EyhkZTAwZGI1YTU1NjAxMWRlYTkzOTJlMmM4Zjk4YzI4YTEzYTQ1YmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KN6IGTQhW0fiGh2mvR4HNV0jJ/k
5tWIFWpLxoWmVIohZ8m7Xs0vVkJ91+rXgXUX08bIlFhI4tBhUat0/FaQiaI1/T4X
mnSQJ8HBiM7nlWqeJcZqUETu66XBDjEwnlI5nmarCv0FUe3rOdRDhPriglfTCBvn
MLOIne8YZFl+e7/nvtGtayy7IzI7fjoRmtMbx508F3S5DFQvfI/ib/NaOr4rv2yL
Y6LIhxUvdAUTNGIKTPBH+2s0bPME3gyO8PRo+OsnLmLuc1te+2M1eSwucGniQ/yd
3OdVhVGTK2IeKMikscYRtg5o7NvMpgR6+9DZhRERM4z98t7TF7AAfhdYqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN4A21pVYBHeqTkuLI+YwooTpFvCMB8GA1UdIwQY
MBaAFB9hql0b79eg/j5N/jqo2nPvz7o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUt
YzYyMWU4ZGY5NWZmLzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUtYzYyMWU4ZGY5NWZm
LzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYUOk/YUD
ZaDZpACbxhxhbx+gefglmpKFGl8i2DsV63C1lDuMmCQXGoWM4fSC0+LRARn2yqq5
tL23wnZgO6e8IKUj7D2At0WN/nC3ZN5VYYAu2UFBIchHXcX6dRTgHKBQIjqBKgbN
H4WS6oUFF25L2qJNsglZTiUxSPi3LXSVGOfMtKk4xccZhPHxP/eSeFccoDd7jE/s
k10Cq5pp6tBENWd3cLrkt0t8Up2LsGwXgd8KqDF9+LWVLP5ZCLRCBpSFa+krpsQR
1Lgif8dzW63n5TVzr46d6IpyxhbAELjzV+mfImsCFHjYmsY/ESTSFlptA63XTr95
HBp2ZEkbo7nEyQ==
-----END CERTIFICATE-----
Generated at Tue Sep 16 12:00:07 2025 by rpki-client