Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: pmeZLndZvLIMfZWUGho60PhcHzaPKFK0d3RmhYVCSdo=
Subject key identifier: 4E:AA:D6:09:54:35:A9:5E:B6:05:40:15:36:6D:F6:1B:D4:BF:00:0E
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 0198808AEF39A9EFA83C92D3D5B86A24835A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 0A06
Signing time: Wed 06 Aug 2025 18:00:45 +0000
Manifest this update: Wed 06 Aug 2025 18:00:45 +0000
Manifest next update: Thu 07 Aug 2025 18:00:45 +0000
Files and hashes: 1: 2z5OP5uOUPeCHEZvOlemyfzgiqA.roa (hash: Hk782ryuX9Xc6GFCRAe62b1gzyY4Vb/jeKK1cnQhmr8=)
2: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: WThorCiIw4UqUKFiBeKH0kWRTXZssviCZao5HMNNsc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8a:ef:39:a9:ef:a8:3c:92:d3:d5:b8:6a:24:83:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: Aug 6 18:00:45 2025 GMT
Not After : Aug 7 18:00:45 2025 GMT
Subject: CN=4eaad6095435a95eb6054015366df61bd4bf000e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:63:7d:c4:7a:a0:67:81:dd:eb:42:5a:7c:ab:
fb:18:38:35:fe:5f:78:5a:4c:c9:33:7e:fe:7d:45:
c2:6e:25:1e:3d:39:1e:42:45:37:8a:f1:52:c9:ea:
78:66:52:ff:fb:d3:a6:49:f4:85:9b:b4:1d:91:28:
83:44:d4:c4:dd:f4:8c:9f:02:16:a7:55:00:34:50:
42:6c:dd:5f:b2:82:4a:8e:3a:12:a9:fb:f9:61:6d:
13:25:33:5c:1d:9e:ab:b4:28:08:2d:00:a3:3f:e6:
07:fb:a6:db:6c:63:f9:52:bb:20:66:ed:b4:0a:03:
97:25:01:cc:63:6f:42:8a:b1:6a:a8:b2:85:23:03:
f4:b0:5f:9f:b9:9f:f3:2a:20:19:1e:49:71:97:33:
4b:7c:24:ae:cf:f3:7e:33:6b:14:66:28:15:ac:1c:
ef:1f:c1:0b:c3:2e:e9:4e:17:f6:a6:16:ea:f1:79:
bc:c0:b2:d9:2f:6b:c5:ea:39:3a:c1:36:24:4b:04:
c6:ac:d2:60:30:94:47:a8:9a:43:c7:dd:74:54:03:
e9:ae:37:aa:59:0e:4c:ac:a1:30:4d:c6:69:dc:97:
5d:cd:ba:cd:62:e0:83:e7:1a:18:22:39:d3:78:fc:
ca:b4:9a:1d:f0:0c:af:6e:be:60:2f:2b:30:45:07:
c8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AA:D6:09:54:35:A9:5E:B6:05:40:15:36:6D:F6:1B:D4:BF:00:0E
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:45:d9:22:55:05:61:d9:76:dc:e8:0c:3d:18:3d:f8:4e:de:
c5:e7:17:60:56:49:58:bf:32:b5:22:46:1c:22:7d:c9:16:5c:
f5:9b:74:bb:1c:7a:bd:f4:7a:ae:ba:9c:45:b2:75:89:cf:c9:
f1:54:57:cf:08:00:9a:45:12:46:fd:67:21:7b:e9:cc:ac:9d:
c2:a3:4c:2d:09:36:0e:31:b8:bb:00:96:ae:d8:87:00:e2:fb:
8c:61:23:a5:a8:b6:5e:4a:98:eb:a3:b4:2a:7a:96:8a:5c:bb:
a1:74:7f:1e:cf:db:16:cc:37:78:b6:46:b6:ca:a5:47:a3:92:
03:a8:36:1d:bc:b1:30:80:8e:6d:7f:74:f3:6b:1a:6c:92:4c:
27:09:37:95:60:87:82:68:ad:41:bf:5e:67:74:f7:05:12:66:
9d:21:0b:8a:6c:55:f8:c3:e1:ea:b6:e4:a9:20:4c:17:bf:d6:
e4:28:5f:24:95:5f:8a:64:c5:47:56:93:78:9a:d9:61:4c:e7:
ce:73:6a:85:dc:fe:59:5f:76:f1:b0:20:4f:9c:2b:a1:41:a6:
96:28:e9:c7:75:ef:f1:f7:91:8f:ab:0e:ea:86:f6:ac:61:f1:
79:1b:96:53:0f:8c:c3:bb:59:7c:64:15:bc:ba:18:df:ea:e8:
ad:e1:8f:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAiu85qe+oPJLT1bhqJINaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZGUwODU5NzVkZTY1ODhlMDdmZWQxMzU1MTNhYTM4YWNl
ZGI3NjMwHhcNMjUwODA2MTgwMDQ1WhcNMjUwODA3MTgwMDQ1WjAzMTEwLwYDVQQD
Eyg0ZWFhZDYwOTU0MzVhOTVlYjYwNTQwMTUzNjZkZjYxYmQ0YmYwMDBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWN9xHqgZ4Hd60JafKv7GDg1/l94
WkzJM37+fUXCbiUePTkeQkU3ivFSyep4ZlL/+9OmSfSFm7QdkSiDRNTE3fSMnwIW
p1UANFBCbN1fsoJKjjoSqfv5YW0TJTNcHZ6rtCgILQCjP+YH+6bbbGP5UrsgZu20
CgOXJQHMY29CirFqqLKFIwP0sF+fuZ/zKiAZHklxlzNLfCSuz/N+M2sUZigVrBzv
H8ELwy7pThf2phbq8Xm8wLLZL2vF6jk6wTYkSwTGrNJgMJRHqJpDx910VAPprjeq
WQ5MrKEwTcZp3JddzbrNYuCD5xoYIjnTePzKtJod8Ayvbr5gLyswRQfIZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE6q1glUNaletgVAFTZt9hvUvwAOMB8GA1UdIwQY
MBaAFIfeCFl13mWI4H/tE1UTqjis7bdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNGVmNzEtZjEyMi00N2NlLThhNDAt
Y2MwZjk3MDcxNDBlLzEvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wNGVmNzEtZjEyMi00N2NlLThhNDAtY2MwZjk3MDcxNDBl
LzEvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAakXZIlUF
Ydl23OgMPRg9+E7execXYFZJWL8ytSJGHCJ9yRZc9Zt0uxx6vfR6rrqcRbJ1ic/J
8VRXzwgAmkUSRv1nIXvpzKydwqNMLQk2DjG4uwCWrtiHAOL7jGEjpai2XkqY66O0
KnqWily7oXR/Hs/bFsw3eLZGtsqlR6OSA6g2HbyxMICObX9082sabJJMJwk3lWCH
gmitQb9eZ3T3BRJmnSELimxV+MPh6rbkqSBMF7/W5ChfJJVfimTFR1aTeJrZYUzn
znNqhdz+WV928bAgT5wroUGmlijpx3Xv8feRj6sO6ob2rGHxeRuWUw+Mw7tZfGQV
vLoY3+roreGPTQ==
-----END CERTIFICATE-----
Generated at Thu Aug 7 02:04:03 2025 by rpki-client