Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: oHZZmV7M6fk91nf/sSyBT7maZy1/s7OOQfTlvpUWOyQ=
Subject key identifier: 1A:2E:23:CF:19:F7:B7:E8:E1:D4:0B:F1:6B:08:42:09:D8:6B:A0:B0
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 0199350048DE792665517FA7E202609E734D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 167F
Signing time: Wed 10 Sep 2025 19:00:35 +0000
Manifest this update: Wed 10 Sep 2025 19:00:35 +0000
Manifest next update: Thu 11 Sep 2025 19:00:35 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: EYiXf2V1sdnqRROU6cjbJQpoOPc+PwuMT5IV+K2ypGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:00:48:de:79:26:65:51:7f:a7:e2:02:60:9e:73:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Sep 10 19:00:35 2025 GMT
Not After : Sep 11 19:00:35 2025 GMT
Subject: CN=1a2e23cf19f7b7e8e1d40bf16b084209d86ba0b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:14:48:02:16:ef:d0:62:b9:d1:c4:c2:16:89:
98:fc:e4:eb:b4:26:26:81:3f:76:8e:a5:2c:33:e8:
bc:dc:b3:08:25:cb:9d:46:ef:d9:17:26:05:be:ab:
40:97:f4:59:14:dd:8b:6a:c2:66:e5:f5:b9:73:a0:
26:66:64:b6:59:d1:8e:0e:df:a2:e2:a6:ce:a9:62:
ab:9b:bb:b4:44:1a:9e:8f:d0:dc:fc:21:07:af:88:
73:bd:87:2e:e4:12:37:cd:5a:36:32:a4:f1:dc:42:
30:90:df:47:6a:24:dc:06:42:4d:ee:17:16:4e:42:
3c:be:e6:5b:33:16:cb:27:66:6a:1c:dc:aa:e9:9c:
70:b9:19:a3:b2:f0:35:18:9b:71:95:be:f0:64:3a:
4d:50:91:24:fb:1a:8d:18:d6:85:b3:21:9f:06:6f:
4a:d7:56:d5:3e:c0:c6:64:34:7b:3f:6e:8a:1b:c0:
05:7c:eb:6b:c3:8f:e3:45:d9:ff:0a:ad:dc:4b:9f:
30:e2:59:f7:a6:df:35:17:a4:fa:5a:ac:af:9e:65:
4a:66:02:ce:76:eb:c4:7f:db:02:3d:32:b2:93:85:
4a:5e:41:43:99:ae:70:d5:7d:22:1a:c1:b9:71:23:
51:24:6c:5c:4a:39:c3:ef:0a:24:80:b9:6d:fd:a6:
18:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:2E:23:CF:19:F7:B7:E8:E1:D4:0B:F1:6B:08:42:09:D8:6B:A0:B0
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:79:5c:41:d7:b6:31:cc:1f:7f:21:a4:54:00:63:7f:79:a1:
73:3a:c4:47:66:5d:5e:7a:ef:69:07:54:a2:17:35:21:55:2f:
f6:2c:6e:a1:39:8a:e7:c5:78:a3:06:1d:56:bf:cd:b6:0b:c9:
0f:ce:fc:49:a0:26:7a:0c:ac:c0:b0:77:c3:71:07:3c:ff:b8:
b7:1c:e6:6f:c4:e0:7e:28:a7:e7:c5:80:8a:71:c2:8a:81:68:
38:97:6d:b9:77:8b:6b:59:23:83:68:52:67:be:b3:73:ce:e2:
aa:33:6c:5a:08:ad:f0:5c:a5:87:36:59:a2:9d:54:99:11:d6:
9c:7f:b9:be:a4:f9:9b:4c:7b:b7:05:78:ed:f5:13:5c:fa:d5:
28:a1:93:c3:ce:a3:cf:54:60:c6:37:3d:f6:73:2e:9c:f8:6c:
99:df:37:1f:7e:52:17:e5:66:a8:09:14:fd:fa:4b:bf:60:8b:
5a:2f:af:56:9e:fc:d7:37:3f:4d:65:41:f3:82:bd:fc:0f:fa:
00:ea:cb:36:4f:10:0f:0b:46:a4:31:67:d7:c1:e1:15:41:b7:
a0:ea:31:d4:cc:78:eb:dd:c9:a5:01:e4:2a:3f:00:dc:6c:03:
e2:73:7e:61:63:51:4a:1e:e4:d9:7f:70:50:f0:ff:60:19:e4:
c6:4a:ab:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1AEjeeSZlUX+n4gJgnnNNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1OWQ1MTc3MDc3YjkwODE4YzZmOTBhZTRlNDQzMzJkOGNh
Y2JiNzQwHhcNMjUwOTEwMTkwMDM1WhcNMjUwOTExMTkwMDM1WjAzMTEwLwYDVQQD
EygxYTJlMjNjZjE5ZjdiN2U4ZTFkNDBiZjE2YjA4NDIwOWQ4NmJhMGIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRRIAhbv0GK50cTCFomY/OTrtCYm
gT92jqUsM+i83LMIJcudRu/ZFyYFvqtAl/RZFN2LasJm5fW5c6AmZmS2WdGODt+i
4qbOqWKrm7u0RBqej9Dc/CEHr4hzvYcu5BI3zVo2MqTx3EIwkN9HaiTcBkJN7hcW
TkI8vuZbMxbLJ2ZqHNyq6ZxwuRmjsvA1GJtxlb7wZDpNUJEk+xqNGNaFsyGfBm9K
11bVPsDGZDR7P26KG8AFfOtrw4/jRdn/Cq3cS58w4ln3pt81F6T6WqyvnmVKZgLO
duvEf9sCPTKyk4VKXkFDma5w1X0iGsG5cSNRJGxcSjnD7wokgLlt/aYY/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBouI88Z97fo4dQL8WsIQgnYa6CwMB8GA1UdIwQY
MBaAFIWdUXcHe5CBjG+Qrk5EMy2MrLt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9mYWVhNDMtZjMzMy00NTA5LWE2ZGIt
M2FjOTZiZTI4NWUwLzEvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9mYWVhNDMtZjMzMy00NTA5LWE2ZGItM2FjOTZiZTI4NWUw
LzEvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABHlcQde2
McwffyGkVABjf3mhczrER2ZdXnrvaQdUohc1IVUv9ixuoTmK58V4owYdVr/NtgvJ
D878SaAmegyswLB3w3EHPP+4txzmb8Tgfiin58WAinHCioFoOJdtuXeLa1kjg2hS
Z76zc87iqjNsWgit8FylhzZZop1UmRHWnH+5vqT5m0x7twV47fUTXPrVKKGTw86j
z1Rgxjc99nMunPhsmd83H35SF+VmqAkU/fpLv2CLWi+vVp781zc/TWVB84K9/A/6
AOrLNk8QDwtGpDFn18HhFUG3oOox1Mx4693JpQHkKj8A3GwD4nN+YWNRSh7k2X9w
UPD/YBnkxkqrbQ==
-----END CERTIFICATE-----
Generated at Thu Sep 11 01:23:46 2025 by rpki-client