Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: acjKt8LF0Nbv78Lm2lY/mKX+yBHDFxvlfIfws6wd+DU=
Subject key identifier: FB:65:64:06:DB:2F:E9:FE:65:CD:E5:7D:02:A1:70:6C:A6:39:C7:1B
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 019A1760CBE1B42B9A0F45DBF0102549B1CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 16FB
Signing time: Fri 24 Oct 2025 18:00:10 +0000
Manifest this update: Fri 24 Oct 2025 18:00:10 +0000
Manifest next update: Sat 25 Oct 2025 18:00:10 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: t9R/nk0fiQVMyf9krPpoS5QPcdopG3l6TxjeoV+IAf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:17:60:cb:e1:b4:2b:9a:0f:45:db:f0:10:25:49:b1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Oct 24 18:00:10 2025 GMT
Not After : Oct 25 18:00:10 2025 GMT
Subject: CN=fb656406db2fe9fe65cde57d02a1706ca639c71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:27:d7:7d:0a:c6:48:02:f1:62:1e:ac:03:c5:
d6:09:f3:09:93:18:24:f4:7a:9d:c8:12:97:45:cb:
08:ed:1f:cd:d8:55:5d:f2:5b:47:a1:5b:4a:95:5e:
52:dd:24:1f:60:3a:ca:3f:37:57:b6:fc:32:65:4f:
2b:72:39:1d:a6:de:d3:1c:50:02:3e:a3:c5:38:c1:
1f:a0:c6:ee:58:c4:7b:1d:fe:82:53:18:1c:e4:c1:
1a:40:ef:c6:18:e6:bd:f2:2b:1e:54:e2:e1:78:29:
88:5a:31:88:80:3d:a0:24:7e:4c:17:90:df:55:b0:
d4:57:75:5e:ea:c5:9a:65:7e:9a:ff:57:e3:78:62:
8b:e6:f2:c2:de:b3:9a:85:ed:e6:2a:70:e8:78:32:
59:9f:77:ac:e0:4d:ad:54:9a:34:1f:54:38:c2:7e:
64:59:b0:f7:2e:bc:29:f3:81:99:59:c2:ec:e0:79:
62:88:e4:cf:bf:13:8b:e9:9d:d9:44:d0:01:46:5b:
18:f1:b7:f0:78:49:18:b6:ec:99:a9:6b:8b:85:c7:
39:89:87:ed:09:d2:9b:f8:28:21:eb:63:84:b3:65:
22:f5:d8:aa:02:59:4b:9a:cf:08:54:d8:de:eb:e7:
a1:74:2f:56:2d:c2:6c:81:fe:ad:6f:73:1e:81:42:
7a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:65:64:06:DB:2F:E9:FE:65:CD:E5:7D:02:A1:70:6C:A6:39:C7:1B
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:18:4d:75:7e:e9:c9:e1:ca:73:e5:73:de:0e:05:cd:74:c5:
0b:3a:7f:b5:3f:45:24:2d:50:77:4f:08:6a:53:0b:78:04:d3:
b5:78:a4:ab:d6:d2:e2:e5:59:72:8c:af:a7:41:c9:54:88:97:
72:d5:26:71:e0:7d:1c:ca:92:a6:9f:c2:56:8f:dd:ad:50:61:
cc:61:ec:76:49:2f:b9:8c:22:79:76:5d:15:72:0b:49:38:aa:
18:18:8d:77:34:1d:e9:14:f6:96:4c:0c:7d:7e:a8:8b:20:9f:
6a:ce:a2:3c:d7:90:95:f9:a1:fc:ac:05:13:82:38:3e:74:09:
a8:9e:92:07:56:f0:8f:96:f6:1e:b3:e6:7f:bc:72:50:be:35:
27:cf:1a:8b:c9:a6:9f:60:f0:93:b9:4b:0f:da:ee:29:2a:dc:
9f:5b:9b:0c:9d:e0:cc:f3:96:44:8a:18:03:0b:c8:04:02:46:
78:56:91:af:47:00:1d:7b:fe:51:f7:37:cc:78:f4:f8:32:11:
5d:5a:cd:84:83:6b:73:4c:95:1b:3a:fe:56:14:98:eb:1d:47:
f1:09:ad:e4:45:75:97:bf:7d:3c:87:47:f5:26:c2:a2:f6:c7:
89:25:f4:96:a4:c8:bf:2f:05:6e:08:e0:55:5e:1e:df:e2:e6:
a0:ac:b1:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoXYMvhtCuaD0Xb8BAlSbHPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MmVjZTljOWEzMjRkNDVjMzVmOTU1OWYzMjlkODg2OWRh
YjUzYmEwHhcNMjUxMDI0MTgwMDEwWhcNMjUxMDI1MTgwMDEwWjAzMTEwLwYDVQQD
EyhmYjY1NjQwNmRiMmZlOWZlNjVjZGU1N2QwMmExNzA2Y2E2MzljNzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCfXfQrGSALxYh6sA8XWCfMJkxgk
9HqdyBKXRcsI7R/N2FVd8ltHoVtKlV5S3SQfYDrKPzdXtvwyZU8rcjkdpt7THFAC
PqPFOMEfoMbuWMR7Hf6CUxgc5MEaQO/GGOa98iseVOLheCmIWjGIgD2gJH5MF5Df
VbDUV3Ve6sWaZX6a/1fjeGKL5vLC3rOahe3mKnDoeDJZn3es4E2tVJo0H1Q4wn5k
WbD3Lrwp84GZWcLs4HliiOTPvxOL6Z3ZRNABRlsY8bfweEkYtuyZqWuLhcc5iYft
CdKb+Cgh62OEs2Ui9diqAllLms8IVNje6+ehdC9WLcJsgf6tb3MegUJ6kwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPtlZAbbL+n+Zc3lfQKhcGymOccbMB8GA1UdIwQY
MBaAFIUuzpyaMk1Fw1+VWfMp2Iadq1O6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kM2NjZTYtYjQ3Yi00ZDA2LWEzMGYt
ZWIyNDExZDIxMmFiLzEvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9kM2NjZTYtYjQ3Yi00ZDA2LWEzMGYtZWIyNDExZDIxMmFi
LzEvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASxhNdX7p
yeHKc+Vz3g4FzXTFCzp/tT9FJC1Qd08IalMLeATTtXikq9bS4uVZcoyvp0HJVIiX
ctUmceB9HMqSpp/CVo/drVBhzGHsdkkvuYwieXZdFXILSTiqGBiNdzQd6RT2lkwM
fX6oiyCfas6iPNeQlfmh/KwFE4I4PnQJqJ6SB1bwj5b2HrPmf7xyUL41J88ai8mm
n2Dwk7lLD9ruKSrcn1ubDJ3gzPOWRIoYAwvIBAJGeFaRr0cAHXv+Ufc3zHj0+DIR
XVrNhINrc0yVGzr+VhSY6x1H8Qmt5EV1l799PIdH9SbCovbHiSX0lqTIvy8Fbgjg
VV4e3+LmoKyxKg==
-----END CERTIFICATE-----
Generated at Sat Oct 25 04:35:39 2025 by rpki-client