Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
File: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft (raw, json)
Hash identifier: u7Q5tfVxD8pIp7BtcOUbaxStrYKkwDkcbsqyHAQkw88=
Subject key identifier: 95:C0:9A:EF:0A:AA:1C:CE:5B:0B:11:8C:F5:A3:13:3C:56:43:5D:0D
Authority key identifier: D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
Certificate issuer: /CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Certificate serial: 01992DB4FC0133C0C32CC281DBE5A5ECDA1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
Manifest number: 060A
Signing time: Tue 09 Sep 2025 09:00:59 +0000
Manifest this update: Tue 09 Sep 2025 09:00:59 +0000
Manifest next update: Wed 10 Sep 2025 09:00:59 +0000
Files and hashes: 1: 0Z-rzxBLOWIfSfgExnNziFjknFI.roa (hash: WIPxFrkjwE/aiN3DpBiUfgIiKOHJkBOTh5tGpO+hM/Q=)
2: 1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl (hash: rzH7EYnLvfWVgWULZjG+d8qOuWzqUy6dUoz6vESbOOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:b4:fc:01:33:c0:c3:2c:c2:81:db:e5:a5:ec:da:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d47e62cbf5fef3377f9e7cd58558f44e2eea9bce
Validity
Not Before: Sep 9 09:00:59 2025 GMT
Not After : Sep 10 09:00:59 2025 GMT
Subject: CN=95c09aef0aaa1cce5b0b118cf5a3133c56435d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6f:0a:0c:0d:6a:5c:f9:58:f2:83:b3:7c:e6:
e0:1c:d4:5e:fd:fd:7f:9a:92:c0:8d:d6:dc:68:91:
fe:f4:3e:96:1b:8f:05:bb:13:2c:bb:5c:a4:ac:30:
75:fa:bf:b0:d6:19:6f:ba:77:c3:83:cd:c1:11:9a:
24:89:92:18:b7:e9:39:1c:cc:eb:5f:3b:29:52:ce:
7d:6e:af:4a:bf:a5:a4:96:62:b0:ab:fc:5a:93:33:
79:34:4d:6b:ed:1d:d5:d0:48:d2:73:5c:12:30:56:
aa:d3:e4:9b:ba:0f:66:56:84:f3:56:ee:33:2e:6b:
c9:82:36:02:9f:12:9f:6d:7a:a2:78:8b:0f:fb:42:
df:86:a6:d4:9a:75:de:72:05:e1:c8:b1:9c:99:31:
35:1f:48:04:e9:0f:0c:ee:8f:93:52:19:36:4e:72:
95:94:a6:4e:2c:3b:66:5d:2b:3b:72:ff:52:9a:21:
95:af:8b:a9:26:14:09:43:c4:32:8e:0e:56:d6:12:
57:7a:f2:62:fa:63:bd:45:36:d7:89:45:69:58:6d:
44:87:11:b3:11:0d:02:4d:e8:13:50:b5:30:ad:4a:
35:cf:da:8e:6c:a0:f1:31:13:1e:ac:ea:3c:65:c2:
2a:56:d4:6d:14:e9:90:a2:4d:e6:aa:c5:47:72:a8:
fd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C0:9A:EF:0A:AA:1C:CE:5B:0B:11:8C:F5:A3:13:3C:56:43:5D:0D
X509v3 Authority Key Identifier:
keyid:D4:7E:62:CB:F5:FE:F3:37:7F:9E:7C:D5:85:58:F4:4E:2E:EA:9B:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1H5iy_X-8zd_nnzVhVj0Ti7qm84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/aa9d4e-1226-40e7-a9c1-469d3a51d47d/1/1H5iy_X-8zd_nnzVhVj0Ti7qm84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:3c:19:8d:18:3b:44:b1:83:a3:78:05:ac:c2:6a:f3:a1:75:
3b:98:6d:6e:9a:63:18:63:a0:31:79:2f:4a:30:f6:52:97:b8:
e1:93:bd:cc:c5:dc:4e:f4:87:5a:1e:a5:51:06:3e:66:46:1b:
5d:78:65:02:8b:c2:bc:f4:ca:69:ad:11:4b:e6:10:d2:be:b5:
8d:14:b5:5a:ad:e6:42:6c:cf:5e:bb:5b:6d:78:1c:8f:5b:49:
36:30:7c:ee:02:2c:37:c1:71:b5:cf:4d:60:fd:b9:2a:a4:5c:
5f:7f:69:5f:12:28:f2:f4:e8:52:1a:39:c0:27:5d:d4:43:7d:
53:e6:55:41:cb:59:9e:46:53:e4:29:64:f8:9e:24:29:ed:e5:
05:4f:08:9e:2a:5a:30:1b:d9:d8:39:88:c9:8b:2c:65:25:7a:
53:96:23:ed:47:71:9e:15:7f:fe:96:ba:c1:25:d1:a3:71:36:
70:cc:c0:57:0a:1a:ee:b3:16:e4:7a:f5:63:82:60:a0:0e:23:
f2:9b:41:38:ba:1c:98:9d:43:c6:51:80:50:4c:dd:96:b3:ac:
3f:ae:32:49:61:ca:b1:22:fc:fc:80:21:46:68:f9:28:7d:f6:
b8:c9:53:83:9d:c4:f9:a0:18:9c:30:6f:de:fa:0f:de:0e:43:
7e:8b:c7:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkttPwBM8DDLMKB2+Wl7NofMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0N2U2MmNiZjVmZWYzMzc3ZjllN2NkNTg1NThmNDRlMmVl
YTliY2UwHhcNMjUwOTA5MDkwMDU5WhcNMjUwOTEwMDkwMDU5WjAzMTEwLwYDVQQD
Eyg5NWMwOWFlZjBhYWExY2NlNWIwYjExOGNmNWEzMTMzYzU2NDM1ZDBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqG8KDA1qXPlY8oOzfObgHNRe/f1/
mpLAjdbcaJH+9D6WG48FuxMsu1ykrDB1+r+w1hlvunfDg83BEZokiZIYt+k5HMzr
XzspUs59bq9Kv6WklmKwq/xakzN5NE1r7R3V0EjSc1wSMFaq0+Sbug9mVoTzVu4z
LmvJgjYCnxKfbXqieIsP+0LfhqbUmnXecgXhyLGcmTE1H0gE6Q8M7o+TUhk2TnKV
lKZOLDtmXSs7cv9SmiGVr4upJhQJQ8Qyjg5W1hJXevJi+mO9RTbXiUVpWG1EhxGz
EQ0CTegTULUwrUo1z9qObKDxMRMerOo8ZcIqVtRtFOmQok3mqsVHcqj9LQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJXAmu8KqhzOWwsRjPWjEzxWQ10NMB8GA1UdIwQY
MBaAFNR+Ysv1/vM3f5581YVY9E4u6pvOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUg1aXlfWC04emRfbm56VmhWajBUaTdxbTg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9hYTlkNGUtMTIyNi00MGU3LWE5YzEt
NDY5ZDNhNTFkNDdkLzEvMUg1aXlfWC04emRfbm56VmhWajBUaTdxbTg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9hYTlkNGUtMTIyNi00MGU3LWE5YzEtNDY5ZDNhNTFkNDdk
LzEvMUg1aXlfWC04emRfbm56VmhWajBUaTdxbTg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXTwZjRg7
RLGDo3gFrMJq86F1O5htbppjGGOgMXkvSjD2Upe44ZO9zMXcTvSHWh6lUQY+ZkYb
XXhlAovCvPTKaa0RS+YQ0r61jRS1Wq3mQmzPXrtbbXgcj1tJNjB87gIsN8Fxtc9N
YP25KqRcX39pXxIo8vToUho5wCdd1EN9U+ZVQctZnkZT5Clk+J4kKe3lBU8Inipa
MBvZ2DmIyYssZSV6U5Yj7UdxnhV//pa6wSXRo3E2cMzAVwoa7rMW5Hr1Y4JgoA4j
8ptBOLocmJ1DxlGAUEzdlrOsP64ySWHKsSL8/IAhRmj5KH32uMlTg53E+aAYnDBv
3voP3g5DfovHBA==
-----END CERTIFICATE-----
Generated at Tue Sep 9 13:17:27 2025 by rpki-client