Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json)
Hash identifier: iIB6GMk9HTzpfwTeJ7Z6DkiPaXz/6txwHJGEh2+zsMQ=
Subject key identifier: 3E:9A:BA:3A:64:00:D0:A3:D2:DC:93:6A:AC:59:BA:8F:04:6F:F3:70
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 01989F3AADAFB4AE781C80974D56F383DD03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
Manifest number: 09F5
Signing time: Tue 12 Aug 2025 17:01:19 +0000
Manifest this update: Tue 12 Aug 2025 17:01:19 +0000
Manifest next update: Wed 13 Aug 2025 17:01:19 +0000
Files and hashes: 1: _yLmchLwIYVTnPdJc9fw9h7BqNI.roa (hash: jQg4aqJLhfqC2o9cWdzjV4aGpmH8JtaZPWEi/oExAo8=)
2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: hHvcj6tgbjP270z3v6m1EvHfuryPCarWINtTh5OJgYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:3a:ad:af:b4:ae:78:1c:80:97:4d:56:f3:83:dd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: Aug 12 17:01:19 2025 GMT
Not After : Aug 13 17:01:19 2025 GMT
Subject: CN=3e9aba3a6400d0a3d2dc936aac59ba8f046ff370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b5:cf:76:f2:37:6a:98:ac:e3:5c:99:79:54:
b8:69:ca:64:54:0a:6a:04:8f:7d:61:8b:b0:a7:07:
f3:de:34:bb:96:2d:da:48:c5:90:55:6b:26:69:11:
2e:94:18:85:b1:94:fd:8c:8c:8d:04:10:f5:d2:6e:
e4:b8:94:3b:36:ec:f1:e9:15:b3:ef:82:0f:3c:41:
27:af:61:da:0b:ab:8c:58:77:bf:60:ad:e3:73:ce:
19:b0:9c:bb:7a:ba:46:4f:d0:97:31:ec:6b:ca:f9:
74:e2:b0:88:53:e5:be:ec:cb:40:62:e6:c1:33:c3:
dd:89:f3:2b:e7:7f:9c:df:87:cd:12:1f:af:c0:9d:
71:77:9e:7d:b3:46:08:ba:4d:72:fc:28:ef:5a:47:
b6:07:ec:a7:b0:31:00:8c:ed:b6:4a:fb:56:60:15:
3c:5c:26:92:c9:5c:dc:79:c5:e6:e2:0c:bf:e0:d2:
86:82:bf:e7:02:45:e1:b2:57:b7:15:bd:91:56:54:
43:71:49:a4:f7:88:96:fc:c2:7a:1e:39:c3:5e:73:
56:c5:68:f8:43:b5:23:42:26:34:a1:47:c7:f6:be:
50:64:5b:01:48:df:ea:7e:78:63:40:0c:50:83:9a:
bf:d1:25:e9:b9:ca:81:93:dc:db:d9:6a:e8:84:8f:
7d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9A:BA:3A:64:00:D0:A3:D2:DC:93:6A:AC:59:BA:8F:04:6F:F3:70
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:fb:fc:fa:5a:48:52:3b:27:45:ba:01:4f:64:b8:c5:24:6b:
41:67:1b:94:e5:a8:00:92:7e:11:d8:4a:05:87:47:a5:95:ea:
b5:a2:28:44:67:5b:fd:57:27:82:5e:e1:ae:e6:8e:0f:79:42:
28:12:0b:05:d5:96:b7:c7:00:ea:e8:56:fc:04:70:d1:60:74:
fb:86:32:b1:ff:20:15:53:ba:9c:a9:ae:b0:da:e1:ba:d2:e7:
19:00:29:ca:3c:1c:dd:f7:2b:18:6c:cb:21:cd:f0:de:49:77:
30:25:9f:85:68:14:5f:49:fc:4c:30:4f:35:c0:02:f5:6e:93:
8e:a7:7a:5a:8a:fa:7d:c6:ca:86:6c:6c:f2:83:d6:ac:a1:78:
0d:3a:18:8d:12:dd:94:e3:0d:26:5f:8b:85:2d:41:94:0c:b3:
fb:5f:da:47:22:db:9d:26:0a:9d:29:25:e0:ad:12:89:1d:b9:
8a:d8:e8:4d:d1:1b:ab:2d:df:ce:5a:b4:fb:56:bd:fa:c4:8f:
ce:aa:ed:64:f7:44:45:73:b4:98:c0:74:1c:1b:96:7c:b8:3b:
f9:fe:8a:47:b4:93:ab:b7:1c:1e:fc:d3:c4:89:e9:1f:5a:2b:
ba:88:0a:02:ad:e7:81:ea:17:7f:dd:4f:76:d6:b3:67:b4:56:
27:a7:38:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZifOq2vtK54HICXTVbzg90DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0N2NiMzY2ZmY2ZTIzZGY2YzA5N2Y2MGFkYzdmYTgwNzU1
OTgxOTEwHhcNMjUwODEyMTcwMTE5WhcNMjUwODEzMTcwMTE5WjAzMTEwLwYDVQQD
EygzZTlhYmEzYTY0MDBkMGEzZDJkYzkzNmFhYzU5YmE4ZjA0NmZmMzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7XPdvI3apis41yZeVS4acpkVApq
BI99YYuwpwfz3jS7li3aSMWQVWsmaREulBiFsZT9jIyNBBD10m7kuJQ7Nuzx6RWz
74IPPEEnr2HaC6uMWHe/YK3jc84ZsJy7erpGT9CXMexryvl04rCIU+W+7MtAYubB
M8PdifMr53+c34fNEh+vwJ1xd559s0YIuk1y/CjvWke2B+ynsDEAjO22SvtWYBU8
XCaSyVzcecXm4gy/4NKGgr/nAkXhsle3Fb2RVlRDcUmk94iW/MJ6HjnDXnNWxWj4
Q7UjQiY0oUfH9r5QZFsBSN/qfnhjQAxQg5q/0SXpucqBk9zb2WrohI99IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD6aujpkANCj0tyTaqxZuo8Eb/NwMB8GA1UdIwQY
MBaAFHR8s2b/biPfbAl/YK3H+oB1WYGRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEh5elp2OXVJOTlzQ1g5Z3JjZjZnSFZaZ1pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8zYWI1NWQtODUyZi00OTViLWIyYjMt
ZTAyZDczMGZlODRlLzEvZEh5elp2OXVJOTlzQ1g5Z3JjZjZnSFZaZ1pFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8zYWI1NWQtODUyZi00OTViLWIyYjMtZTAyZDczMGZlODRl
LzEvZEh5elp2OXVJOTlzQ1g5Z3JjZjZnSFZaZ1pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANvv8+lpI
UjsnRboBT2S4xSRrQWcblOWoAJJ+EdhKBYdHpZXqtaIoRGdb/Vcngl7hruaOD3lC
KBILBdWWt8cA6uhW/ARw0WB0+4Yysf8gFVO6nKmusNrhutLnGQApyjwc3fcrGGzL
Ic3w3kl3MCWfhWgUX0n8TDBPNcAC9W6Tjqd6Wor6fcbKhmxs8oPWrKF4DToYjRLd
lOMNJl+LhS1BlAyz+1/aRyLbnSYKnSkl4K0SiR25itjoTdEbqy3fzlq0+1a9+sSP
zqrtZPdERXO0mMB0HBuWfLg7+f6KR7STq7ccHvzTxInpH1oruogKAq3ngeoXf91P
dtazZ7RWJ6c4bQ==
-----END CERTIFICATE-----
Generated at Tue Aug 12 22:52:50 2025 by rpki-client