Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
File: hD0a_PE70hF9R99oPkCmMocATP4.mft (raw, json)
Hash identifier: Y2VYfI5iGAFPCU+G7XrpQgH0PzdVYOx2NrwtxMcsiLo=
Subject key identifier: B8:BB:16:17:B9:96:90:65:91:7B:E0:C3:F2:80:BB:60:54:0B:BA:62
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 019A22C0C5D03FB0901B2645CE9DD4609600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
Manifest number: 139F
Signing time: Sun 26 Oct 2025 23:00:50 +0000
Manifest this update: Sun 26 Oct 2025 23:00:50 +0000
Manifest next update: Mon 27 Oct 2025 23:00:50 +0000
Files and hashes: 1: D3bRMlTDClBFr3S51rSxiY9VG9A.roa (hash: aR3n5btl/hz9D4qsdHX0kbRtCNTOPvoaLGVTTlP76Qo=)
2: ZxguzW17xFrUP53FIAJUfjkeqvQ.roa (hash: Sn/df7xibUqHylpF6Ngt+9h48Sxd84uF3fpZ9SuTgf8=)
3: hD0a_PE70hF9R99oPkCmMocATP4.crl (hash: itWstEdDjbbbuscdgQU4UcZ9v9uRmEjLKYBOBc8c0jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:c5:d0:3f:b0:90:1b:26:45:ce:9d:d4:60:96:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Oct 26 23:00:50 2025 GMT
Not After : Oct 27 23:00:50 2025 GMT
Subject: CN=b8bb1617b9969065917be0c3f280bb60540bba62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c7:70:f5:32:f2:79:45:35:b1:89:da:f5:82:
04:63:9e:17:d8:4d:c9:60:dc:fe:63:33:2e:b2:d2:
e2:0c:eb:54:cf:6e:95:ca:66:cb:3a:57:d2:4c:04:
44:b8:c3:a6:60:49:a1:85:1b:f2:e1:56:94:80:c4:
98:1e:9c:04:aa:bf:bf:5e:b0:b7:75:40:28:f3:11:
17:17:0d:55:91:a1:ed:34:2e:bc:38:78:1b:47:81:
9b:50:51:09:66:f6:71:33:af:29:94:8c:5e:cf:85:
ca:c8:b4:28:f4:22:46:ea:57:10:aa:35:23:b8:a0:
45:98:48:c7:a3:06:92:40:35:e8:16:8e:ae:91:5f:
fc:a4:5c:ef:a3:00:25:3d:dd:4f:98:3f:6b:fb:33:
33:32:1b:da:df:c9:b5:f4:15:93:46:d3:4f:f1:7b:
4f:16:62:aa:88:15:aa:79:4b:d9:44:a4:08:f1:15:
6d:dd:73:a4:35:10:34:5a:a2:9d:01:c0:b0:1d:33:
16:3d:fe:fb:39:05:49:f9:9b:22:a2:3b:38:fc:45:
6b:60:b2:32:c7:4f:3e:26:c6:d6:a8:e1:d9:f3:fe:
f9:82:9e:dc:88:ee:cb:57:6a:9d:5d:15:b3:b4:08:
e4:a6:f0:9d:19:96:70:99:19:5b:97:c4:0c:b0:b0:
e0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:BB:16:17:B9:96:90:65:91:7B:E0:C3:F2:80:BB:60:54:0B:BA:62
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:b8:85:17:a0:50:b3:3f:5b:de:50:d1:ef:2b:c8:ac:8d:58:
2e:12:1a:c9:3f:98:02:62:74:ce:b9:2e:78:0e:81:ce:e2:4f:
49:79:fa:35:27:06:f4:b7:f9:65:a2:21:0e:00:7b:e1:ff:78:
63:1b:5f:e8:d7:66:04:24:b2:db:c8:d7:bf:58:dd:e6:22:6b:
95:16:1f:28:4e:62:e0:e2:2b:96:5f:85:7a:7c:89:33:ca:26:
59:db:76:ae:59:00:6e:8c:d1:77:cb:9f:c6:18:96:7c:7c:32:
07:aa:ce:59:fd:4d:ce:81:ff:88:38:44:7c:87:b3:4c:3f:79:
97:40:69:8d:a8:a1:71:e0:5f:1d:d5:85:e2:b9:e7:48:f1:4a:
fa:45:e2:ac:e2:83:ea:30:db:0d:83:ad:f2:30:2e:a7:bf:e5:
fb:c9:74:97:b4:27:91:94:6b:92:5a:4f:9a:9f:76:e8:01:bf:
4c:bb:f6:e7:36:ef:12:24:e7:cd:6f:3f:45:bf:9b:b7:34:5b:
81:5b:9d:70:f8:51:88:ba:3e:39:aa:18:03:27:aa:be:c4:34:
80:95:4f:d1:1e:b2:a5:2b:26:da:1d:68:f1:ef:30:0c:07:a9:
50:1f:cc:f8:15:65:11:d8:04:fd:d0:39:34:eb:1d:13:9f:21:
01:06:00:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoiwMXQP7CQGyZFzp3UYJYAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0M2QxYWZjZjEzYmQyMTE3ZDQ3ZGY2ODNlNDBhNjMyODcw
MDRjZmUwHhcNMjUxMDI2MjMwMDUwWhcNMjUxMDI3MjMwMDUwWjAzMTEwLwYDVQQD
EyhiOGJiMTYxN2I5OTY5MDY1OTE3YmUwYzNmMjgwYmI2MDU0MGJiYTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcdw9TLyeUU1sYna9YIEY54X2E3J
YNz+YzMustLiDOtUz26VymbLOlfSTAREuMOmYEmhhRvy4VaUgMSYHpwEqr+/XrC3
dUAo8xEXFw1VkaHtNC68OHgbR4GbUFEJZvZxM68plIxez4XKyLQo9CJG6lcQqjUj
uKBFmEjHowaSQDXoFo6ukV/8pFzvowAlPd1PmD9r+zMzMhva38m19BWTRtNP8XtP
FmKqiBWqeUvZRKQI8RVt3XOkNRA0WqKdAcCwHTMWPf77OQVJ+Zsiojs4/EVrYLIy
x08+JsbWqOHZ8/75gp7ciO7LV2qdXRWztAjkpvCdGZZwmRlbl8QMsLDgIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLi7Fhe5lpBlkXvgw/KAu2BUC7piMB8GA1UdIwQY
MBaAFIQ9GvzxO9IRfUffaD5ApjKHAEz+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEQwYV9QRTcwaEY5Ujk5b1BrQ21Nb2NBVFA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8xNzMzMDYtMmRiZC00YWQ4LWJkNTEt
YjFmM2JjYzY3YWFlLzEvaEQwYV9QRTcwaEY5Ujk5b1BrQ21Nb2NBVFA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS8xNzMzMDYtMmRiZC00YWQ4LWJkNTEtYjFmM2JjYzY3YWFl
LzEvaEQwYV9QRTcwaEY5Ujk5b1BrQ21Nb2NBVFA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIriFF6BQ
sz9b3lDR7yvIrI1YLhIayT+YAmJ0zrkueA6BzuJPSXn6NScG9Lf5ZaIhDgB74f94
Yxtf6NdmBCSy28jXv1jd5iJrlRYfKE5i4OIrll+FenyJM8omWdt2rlkAbozRd8uf
xhiWfHwyB6rOWf1NzoH/iDhEfIezTD95l0BpjaihceBfHdWF4rnnSPFK+kXirOKD
6jDbDYOt8jAup7/l+8l0l7QnkZRrklpPmp926AG/TLv25zbvEiTnzW8/Rb+btzRb
gVudcPhRiLo+OaoYAyeqvsQ0gJVP0R6ypSsm2h1o8e8wDAepUB/M+BVlEdgE/dA5
NOsdE58hAQYATQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 01:39:07 2025 by rpki-client