Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
File: 8HH00RnQt0-2bjen74eNRJ1U3cg.mft (raw, json)
Hash identifier: Ih4XzFZukzUApcLoVR3kQzHbhHORdZ5vkdBNjzFUuu0=
Subject key identifier: 3B:DD:4A:79:D3:F9:E1:B1:BD:2E:74:8D:F7:81:FA:F4:5C:FE:23:0F
Authority key identifier: F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
Certificate issuer: /CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Certificate serial: 019A18E2819E915E91C7AFFB27160CD4D70C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
Manifest number: 16F3
Signing time: Sat 25 Oct 2025 01:01:28 +0000
Manifest this update: Sat 25 Oct 2025 01:01:28 +0000
Manifest next update: Sun 26 Oct 2025 01:01:28 +0000
Files and hashes: 1: 8HH00RnQt0-2bjen74eNRJ1U3cg.crl (hash: a2R4H5utsMZobzRwduHoX2lDHD6g5ED1fRQF2R9MJLo=)
2: uzaT_8pYRSOjnRLn-VDCRDMHjkw.roa (hash: BTL6zzsEp/zMhbPEtqOYQnpjz6sJkx1lWw25F56hHZw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 17:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:18:e2:81:9e:91:5e:91:c7:af:fb:27:16:0c:d4:d7:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Validity
Not Before: Oct 25 01:01:28 2025 GMT
Not After : Oct 26 01:01:28 2025 GMT
Subject: CN=3bdd4a79d3f9e1b1bd2e748df781faf45cfe230f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:67:04:30:0e:9c:d4:47:54:29:4b:6c:d0:6e:
87:5f:75:f9:40:dd:67:5e:0b:b5:63:e7:ba:63:75:
08:7e:6d:4d:25:29:69:5b:e7:05:20:cc:d2:4b:82:
9a:a7:40:07:6a:96:b5:44:6a:00:26:22:19:43:87:
7b:e9:26:eb:03:05:94:8e:19:39:59:e0:59:53:59:
89:96:ea:95:22:f5:fa:e1:15:e8:f6:d9:7c:64:6a:
d7:dd:7d:6f:ae:a2:0d:b1:ba:2f:73:7a:92:68:62:
88:cb:a2:ea:80:e9:87:73:ea:e2:71:9e:8b:32:49:
59:d8:75:e0:29:7a:15:8e:2b:eb:cb:b9:94:b4:fc:
c2:59:f2:37:7d:d1:23:d7:29:bd:4c:dd:06:52:1e:
60:04:2e:aa:e4:cc:7e:e0:6b:e7:bd:ac:50:dc:fc:
3e:08:d8:bc:1b:74:3f:b2:68:4f:65:4a:46:8b:86:
82:48:ce:9a:a3:1d:0c:4b:8a:c2:e7:2a:81:04:56:
fc:33:17:77:a4:3f:1f:b5:3c:31:6d:50:1c:5f:75:
73:f6:80:d2:a0:ba:b9:1b:5d:a3:87:6a:d8:85:8a:
58:3b:ba:05:2a:50:92:bd:b1:6f:1b:7c:9c:13:89:
ef:80:12:7b:4b:80:57:2e:f7:4a:cd:5e:4d:c4:73:
18:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DD:4A:79:D3:F9:E1:B1:BD:2E:74:8D:F7:81:FA:F4:5C:FE:23:0F
X509v3 Authority Key Identifier:
keyid:F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:99:26:cc:1a:58:57:e9:9b:84:b4:06:de:1f:63:cd:71:39:
17:4a:02:3b:c4:7d:a6:5d:94:8e:a3:ad:5f:2f:19:ba:26:fb:
ba:a2:4b:9c:6f:83:74:2c:37:29:37:b7:65:db:fd:8f:b0:0f:
b8:ea:91:bc:17:01:1f:6d:1e:f3:4a:ff:1a:1a:af:7a:a9:f5:
34:2a:14:db:1e:7e:e2:d0:c5:f0:23:4d:f0:9c:2c:11:fe:86:
3a:f0:c6:30:5e:98:36:5b:9b:93:08:d3:ce:73:6c:82:6f:cb:
00:dc:ef:32:cc:ff:99:35:93:26:63:a1:00:13:bd:b9:b6:84:
68:59:50:c5:7d:bd:34:a7:10:d6:48:24:87:df:1e:7e:83:fb:
53:2b:c5:9a:1b:41:9e:e4:03:29:13:c4:d1:40:a3:c7:3d:94:
9b:11:6b:6e:de:d4:fb:e1:15:7a:bf:e8:53:03:6d:82:36:17:
0e:f9:50:87:d1:80:fd:b2:fd:47:e0:13:53:23:26:5b:40:47:
ae:96:76:70:e4:50:4e:a6:84:97:25:9d:8a:5e:07:22:57:fd:
c8:ca:06:be:d2:bb:0b:48:aa:7f:7e:72:67:ae:ea:b2:b9:5b:
3d:1d:2a:25:41:07:83:c6:9b:79:ed:0d:b1:e1:ec:03:d4:68:
77:2c:1b:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoY4oGekV6Rx6/7JxYM1NcMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNzFmNGQxMTlkMGI3NGZiNjZlMzdhN2VmODc4ZDQ0OWQ1
NGRkYzgwHhcNMjUxMDI1MDEwMTI4WhcNMjUxMDI2MDEwMTI4WjAzMTEwLwYDVQQD
EygzYmRkNGE3OWQzZjllMWIxYmQyZTc0OGRmNzgxZmFmNDVjZmUyMzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2cEMA6c1EdUKUts0G6HX3X5QN1n
Xgu1Y+e6Y3UIfm1NJSlpW+cFIMzSS4Kap0AHapa1RGoAJiIZQ4d76SbrAwWUjhk5
WeBZU1mJluqVIvX64RXo9tl8ZGrX3X1vrqINsbovc3qSaGKIy6LqgOmHc+ricZ6L
MklZ2HXgKXoVjivry7mUtPzCWfI3fdEj1ym9TN0GUh5gBC6q5Mx+4GvnvaxQ3Pw+
CNi8G3Q/smhPZUpGi4aCSM6aox0MS4rC5yqBBFb8Mxd3pD8ftTwxbVAcX3Vz9oDS
oLq5G12jh2rYhYpYO7oFKlCSvbFvG3ycE4nvgBJ7S4BXLvdKzV5NxHMY6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDvdSnnT+eGxvS50jfeB+vRc/iMPMB8GA1UdIwQY
MBaAFPBx9NEZ0LdPtm43p++HjUSdVN3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82YTk2ODItMjAxYi00ZTAxLWJhMDkt
MDc0NzQ1MjRlZjlhLzEvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny82YTk2ODItMjAxYi00ZTAxLWJhMDktMDc0NzQ1MjRlZjlh
LzEvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARZkmzBpY
V+mbhLQG3h9jzXE5F0oCO8R9pl2UjqOtXy8Zuib7uqJLnG+DdCw3KTe3Zdv9j7AP
uOqRvBcBH20e80r/Ghqveqn1NCoU2x5+4tDF8CNN8JwsEf6GOvDGMF6YNlubkwjT
znNsgm/LANzvMsz/mTWTJmOhABO9ubaEaFlQxX29NKcQ1kgkh98efoP7UyvFmhtB
nuQDKRPE0UCjxz2UmxFrbt7U++EVer/oUwNtgjYXDvlQh9GA/bL9R+ATUyMmW0BH
rpZ2cORQTqaElyWdil4HIlf9yMoGvtK7C0iqf35yZ67qsrlbPR0qJUEHg8abee0N
seHsA9RodywbyA==
-----END CERTIFICATE-----
Generated at Sat Oct 25 02:47:46 2025 by rpki-client