Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: BekkdJVFql/M0Hs0mCRkSEd8SyL6bOk2k5G+iJ8yYYU=
Subject key identifier: A1:C4:20:4D:CB:71:4C:2F:7D:F9:8F:70:71:C9:05:7C:48:58:AC:07
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 0199239ECFD298475B30DF93DFE504FABF55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 10:00:34 +0000
Manifest this update: Sun 07 Sep 2025 10:00:34 +0000
Manifest next update: Mon 08 Sep 2025 10:00:34 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: yERBFT1vtbn4gXxosOAqN0w5m25q7QH/eN9R7OkrIGg=)
2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:cf:d2:98:47:5b:30:df:93:df:e5:04:fa:bf:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Sep 7 10:00:34 2025 GMT
Not After : Sep 8 10:00:34 2025 GMT
Subject: CN=a1c4204dcb714c2f7df98f7071c9057c4858ac07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:72:a8:72:84:af:59:8a:06:8a:c3:5a:87:40:
e6:51:d7:57:1e:db:43:78:2d:f9:68:09:5c:2a:53:
a0:c4:7d:14:f3:10:ce:02:51:ea:a0:73:43:c7:82:
63:0e:d8:e4:30:29:8f:61:54:ff:d8:e4:c6:44:95:
09:a8:18:97:93:fa:18:25:3b:91:a3:5e:19:61:8a:
e9:35:7d:82:b1:3c:47:06:c2:03:54:90:12:8f:14:
ef:72:29:48:66:18:01:67:19:b0:e9:7a:83:97:bd:
bd:e5:e7:41:39:8b:2f:1b:61:e7:76:10:b4:d7:00:
21:5c:4b:1f:80:8d:2e:95:d5:90:33:c2:07:dd:3b:
8d:84:5c:c6:f8:7c:e2:0a:23:d2:b6:1b:a8:f3:ac:
17:64:d9:75:a8:72:4b:48:81:53:ea:59:d7:3c:20:
84:1a:13:74:51:ce:8f:a3:0f:28:dc:37:d3:7f:ef:
0f:80:4f:1d:f3:ac:b0:f4:84:da:98:17:63:ae:fa:
b8:85:ca:23:e2:38:a6:8a:73:63:a1:f2:36:4c:3e:
9b:da:76:29:3c:02:15:cd:34:2f:40:47:de:b9:f1:
81:cf:21:6c:fb:1f:65:69:ec:ea:19:ca:b8:4c:d4:
01:ad:6f:94:69:22:1e:c7:8d:f6:ea:be:43:51:b4:
26:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C4:20:4D:CB:71:4C:2F:7D:F9:8F:70:71:C9:05:7C:48:58:AC:07
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:e0:c5:23:13:3e:3e:be:36:2d:ff:5d:0d:d2:92:0f:2e:f9:
e7:20:73:ce:12:10:b2:16:da:be:ea:86:59:64:dc:3e:4a:15:
b1:95:f0:ef:e4:0d:d0:2d:4d:95:7f:82:8e:15:9f:de:8c:b0:
8c:ef:16:63:69:8a:00:89:e6:3f:53:92:9f:93:12:5a:5d:a9:
74:17:a7:8c:1d:3d:ba:86:05:32:23:51:02:57:16:41:49:26:
23:8d:bb:c4:9e:73:0b:fb:31:76:b7:34:43:b0:b0:ef:09:39:
15:b7:36:14:eb:3e:a6:d5:70:be:d4:29:02:66:33:66:5b:8c:
a3:3e:52:b9:b3:86:69:81:84:8d:a0:9f:24:5d:9d:48:29:a3:
33:4a:a1:5b:96:ec:c9:3a:44:27:1d:00:42:47:e1:38:b0:c0:
91:6d:75:b6:62:95:19:22:8b:72:9d:d3:19:69:25:bc:6f:65:
09:c5:8d:8b:1c:60:e3:7c:3d:a8:11:cc:f5:87:46:0c:1c:76:
fd:d0:7b:e6:88:ee:9b:5c:36:16:82:d2:c2:ab:67:d8:e7:0b:
59:b5:ea:df:15:a8:23:fa:8b:4f:d3:04:01:bc:19:f2:2d:da:
94:9b:96:b7:85:d1:6a:d5:67:b2:86:95:f1:42:ee:69:d7:af:
8a:d5:ce:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjns/SmEdbMN+T3+UE+r9VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTkyMDg4ZTc2NTVjYjEzNDAyMGNhOTViMGU1N2Q0ZTZk
YWY0MGYwHhcNMjUwOTA3MTAwMDM0WhcNMjUwOTA4MTAwMDM0WjAzMTEwLwYDVQQD
EyhhMWM0MjA0ZGNiNzE0YzJmN2RmOThmNzA3MWM5MDU3YzQ4NThhYzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7HKocoSvWYoGisNah0DmUddXHttD
eC35aAlcKlOgxH0U8xDOAlHqoHNDx4JjDtjkMCmPYVT/2OTGRJUJqBiXk/oYJTuR
o14ZYYrpNX2CsTxHBsIDVJASjxTvcilIZhgBZxmw6XqDl7295edBOYsvG2HndhC0
1wAhXEsfgI0uldWQM8IH3TuNhFzG+HziCiPSthuo86wXZNl1qHJLSIFT6lnXPCCE
GhN0Uc6Pow8o3DfTf+8PgE8d86yw9ITamBdjrvq4hcoj4jiminNjofI2TD6b2nYp
PAIVzTQvQEfeufGBzyFs+x9laezqGcq4TNQBrW+UaSIex4326r5DUbQmIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKHEIE3LcUwvffmPcHHJBXxIWKwHMB8GA1UdIwQY
MBaAFIeZIIjnZVyxNAIMqVsOV9Tm2vQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMt
ODVlYTYzYzI0NDc0LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMtODVlYTYzYzI0NDc0
LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd+DFIxM+
Pr42Lf9dDdKSDy755yBzzhIQshbavuqGWWTcPkoVsZXw7+QN0C1NlX+CjhWf3oyw
jO8WY2mKAInmP1OSn5MSWl2pdBenjB09uoYFMiNRAlcWQUkmI427xJ5zC/sxdrc0
Q7Cw7wk5Fbc2FOs+ptVwvtQpAmYzZluMoz5SubOGaYGEjaCfJF2dSCmjM0qhW5bs
yTpEJx0AQkfhOLDAkW11tmKVGSKLcp3TGWklvG9lCcWNixxg43w9qBHM9YdGDBx2
/dB75ojum1w2FoLSwqtn2OcLWbXq3xWoI/qLT9MEAbwZ8i3alJuWt4XRatVnsoaV
8ULuadevitXOTg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:10:25 2025 by rpki-client