Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json)
Hash identifier: Z65YuV4nuJp62tcYNRAN1IEit+uKr0RskiKjnL1lrQc=
Subject key identifier: 7D:42:65:15:9F:DE:DA:31:64:53:92:C5:B3:EB:46:53:49:85:69:49
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 019A213FCDEAC3E7A5F0B226990ED7F52ADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
Manifest number: 081D
Signing time: Sun 26 Oct 2025 16:00:20 +0000
Manifest this update: Sun 26 Oct 2025 16:00:20 +0000
Manifest next update: Mon 27 Oct 2025 16:00:20 +0000
Files and hashes: 1: 00q_V9fiuxK8x1J5dDf6heEWqpM.roa (hash: XdV8RV4SCz2Bjb29weutw1xlx9C6MC3WoiwiAcbHJHU=)
2: 0DRjjmcZlOUPV43RadORGLY5fAU.roa (hash: OsLSdbKdwCfPfb6fa3q09CVq+CXKI7ScoH/tLbYmOyY=)
3: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: mxUXjlWFMudB7vDcEqHn1s3VKBuONy8drl+3SadIawU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:3f:cd:ea:c3:e7:a5:f0:b2:26:99:0e:d7:f5:2a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Oct 26 16:00:20 2025 GMT
Not After : Oct 27 16:00:20 2025 GMT
Subject: CN=7d4265159fdeda31645392c5b3eb465349856949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:69:dc:12:cf:6d:25:2f:07:9c:f3:49:7a:3a:
58:36:58:75:02:58:c4:06:1f:e6:b4:1d:bf:d9:b7:
bf:7c:de:4e:34:74:a9:e7:a1:1d:86:31:42:e8:e9:
41:78:80:ec:67:e9:bf:f5:6f:b4:9a:58:eb:97:b2:
9f:a2:c4:b0:e5:d5:c6:4c:6d:06:f6:a9:c8:05:79:
b0:46:0d:dc:8d:bd:3a:08:75:0d:c9:6d:7c:7a:3d:
3a:f1:b7:ba:a8:df:37:bc:46:d0:e1:5f:94:d6:cb:
8d:91:e3:da:16:8c:a7:50:1c:87:c5:66:58:2a:dd:
05:cc:80:9b:33:17:1f:1e:90:4d:8f:23:64:bc:92:
68:71:63:15:90:b8:e1:0f:31:71:47:d7:10:c8:f5:
a8:58:d0:a3:ea:4a:d5:fa:df:89:b4:51:73:28:95:
28:e4:a6:0e:1f:8f:6b:ec:85:43:d0:e4:f0:6f:c7:
73:c6:d1:31:88:97:fb:c4:0e:69:a9:ae:23:08:d2:
32:60:9c:a9:d7:8f:6c:3c:b0:48:e4:e0:10:8c:53:
a0:40:a9:89:eb:15:dd:a7:c7:d6:83:23:bc:8e:21:
42:6a:98:dc:8f:62:c5:2f:f4:de:3b:57:1b:74:f8:
3b:a5:fe:ed:ad:8c:44:e9:6e:08:bf:38:af:29:af:
75:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:42:65:15:9F:DE:DA:31:64:53:92:C5:B3:EB:46:53:49:85:69:49
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a1:33:4f:12:7d:27:d0:b5:45:79:c7:66:72:9d:cd:30:a5:
fd:bf:3f:4a:51:ae:97:0a:c7:fa:b7:49:29:93:4f:39:27:a6:
2b:f0:59:1d:1a:26:dc:b3:7e:6c:5a:7c:68:6c:e9:b8:19:fd:
fc:fc:bd:90:60:03:bf:b2:4e:29:b5:6d:67:99:0e:1f:33:e2:
a7:75:48:25:43:65:1b:12:c6:24:90:38:f3:33:f9:50:58:ca:
31:ce:82:c7:d5:65:d0:49:64:62:e9:5b:f7:3f:ec:65:31:60:
72:bf:64:2d:d7:28:b6:55:ef:84:0b:17:0e:50:f9:09:9d:2d:
3c:cd:b9:df:c0:ef:75:a8:72:18:0c:da:be:9a:0c:5d:79:5a:
ed:02:8f:a6:b8:5d:bb:3d:11:f4:37:15:8d:b7:00:b9:15:e6:
ba:6d:f7:f0:e0:97:c1:22:b4:fa:46:d1:19:a6:23:2c:3d:af:
69:c6:f3:6e:4f:46:13:f0:08:74:98:c6:ec:66:c1:99:55:60:
8d:5d:93:3c:3a:27:d6:dc:46:3a:e2:de:ad:08:b0:0a:f0:e1:
29:18:aa:96:ad:30:55:1c:24:39:12:2c:c0:6f:e3:07:4b:64:
1d:c0:ab:81:50:f1:8b:db:48:58:83:56:e5:92:85:22:2b:3f:
d8:6f:45:7a
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZohP83qw+el8LImmQ7X9SrfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2
Mzc4YTgwHhcNMjUxMDI2MTYwMDIwWhcNMjUxMDI3MTYwMDIwWjAzMTEwLwYDVQQD
Eyg3ZDQyNjUxNTlmZGVkYTMxNjQ1MzkyYzViM2ViNDY1MzQ5ODU2OTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGncEs9tJS8HnPNJejpYNlh1AljE
Bh/mtB2/2be/fN5ONHSp56EdhjFC6OlBeIDsZ+m/9W+0mljrl7KfosSw5dXGTG0G
9qnIBXmwRg3cjb06CHUNyW18ej068be6qN83vEbQ4V+U1suNkePaFoynUByHxWZY
Kt0FzICbMxcfHpBNjyNkvJJocWMVkLjhDzFxR9cQyPWoWNCj6krV+t+JtFFzKJUo
5KYOH49r7IVD0OTwb8dzxtExiJf7xA5pqa4jCNIyYJyp149sPLBI5OAQjFOgQKmJ
6xXdp8fWgyO8jiFCapjcj2LFL/TeO1cbdPg7pf7trYxE6W4IvzivKa910QIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFH1CZRWf3toxZFOSxbPrRlNJhWlJMB8GA1UdIwQY
MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy
LTJhMWNjZTdkMmM2NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2FmLzA4YTljOC00YmUzLTQ2ODItYWY4Mi0yYTFjY2U3ZDJj
NjUvMS8xLWhza2VOX2c4em9uaXhQMExkTVpZQjFqZUtnLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUKEz
TxJ9J9C1RXnHZnKdzTCl/b8/SlGulwrH+rdJKZNPOSemK/BZHRom3LN+bFp8aGzp
uBn9/Py9kGADv7JOKbVtZ5kOHzPip3VIJUNlGxLGJJA48zP5UFjKMc6Cx9Vl0Elk
Yulb9z/sZTFgcr9kLdcotlXvhAsXDlD5CZ0tPM2538DvdahyGAzavpoMXXla7QKP
prhduz0R9DcVjbcAuRXmum338OCXwSK0+kbRGaYjLD2vacbzbk9GE/AIdJjG7GbB
mVVgjV2TPDon1txGOuLerQiwCvDhKRiqlq0wVRwkORIswG/jB0tkHcCrgVDxi9tI
WINW5ZKFIis/2G9Feg==
-----END CERTIFICATE-----
Generated at Sun Oct 26 17:40:23 2025 by rpki-client