
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
File: hGzXvBkUIFasr5VzyqGvjehxgVY.mft (raw, json)
Hash identifier: 4abedsPyF9/y8Y6AC+j61T5ahsUHV1kRmbZhCdKZZ7c=
Subject key identifier: 1C:76:6D:97:83:19:DC:6D:56:AA:AF:70:A7:3D:5D:A3:AF:6B:81:7B
Authority key identifier: 84:6C:D7:BC:19:14:20:56:AC:AF:95:73:CA:A1:AF:8D:E8:71:81:56
Certificate issuer: /CN=846cd7bc19142056acaf9573caa1af8de8718156
Certificate serial: 01988BB3918A95F311DB88A0F7670D61E141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGzXvBkUIFasr5VzyqGvjehxgVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
Manifest number: 016F
Signing time: Fri 08 Aug 2025 22:00:57 +0000
Manifest this update: Fri 08 Aug 2025 22:00:57 +0000
Manifest next update: Sat 09 Aug 2025 22:00:57 +0000
Files and hashes: 1: O5dJ1P8qPLvqN1TFZCJv-BCHVwE.roa (hash: 3xRQqmBaiPMEC6+BvwWE12p1a9per8d/4WLoxHZdLwY=)
2: hGzXvBkUIFasr5VzyqGvjehxgVY.crl (hash: p5c+DGaTizNdFWO8+tB2M1Lnj7WDAVHUcqM6oFRFxhA=)
3: hs1Ttmuuy8oKm2rJqVYgyDXaPIw.roa (hash: Byo6rO4TnKOVrKw6LlKH8flPLRHULJLiFuZMsf82Wv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGzXvBkUIFasr5VzyqGvjehxgVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:b3:91:8a:95:f3:11:db:88:a0:f7:67:0d:61:e1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846cd7bc19142056acaf9573caa1af8de8718156
Validity
Not Before: Aug 8 22:00:57 2025 GMT
Not After : Aug 9 22:00:57 2025 GMT
Subject: CN=1c766d978319dc6d56aaaf70a73d5da3af6b817b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b0:ac:a8:c6:5a:d5:93:f1:c4:c4:e8:68:12:
43:90:2a:94:65:f3:ac:7d:04:74:a8:ba:0c:81:27:
f1:83:49:c4:5b:ae:04:3f:2e:17:62:10:a4:0a:aa:
69:2d:90:ba:79:6d:3d:81:49:8e:f3:b8:8e:eb:7f:
be:ef:5e:b7:ae:15:0d:93:b7:99:79:97:6d:ce:5f:
4f:d8:50:89:74:df:80:9b:b5:a0:f6:83:c9:f2:ed:
fe:8f:60:97:3a:04:40:c0:9f:f9:32:64:6b:ff:40:
08:33:13:5e:5e:b3:ce:50:2e:52:80:06:fa:4f:38:
7a:ae:1e:ba:8d:ec:f5:b9:69:ce:72:70:77:be:91:
df:1f:83:5e:49:36:d3:fb:fc:eb:82:06:bc:4d:3e:
3f:f8:b5:81:f5:7d:93:31:44:61:c6:64:be:25:53:
07:a1:41:13:07:e7:41:03:a1:c1:87:2c:82:b7:dd:
e7:f7:66:7c:bc:d2:10:99:f7:ce:b2:4a:f9:07:b3:
93:62:62:44:80:58:cb:1a:15:a5:3c:ec:22:bd:ad:
6e:b8:5f:89:46:d9:21:dd:cc:d8:99:90:0d:75:79:
43:3a:69:b2:a4:38:8c:0c:7b:2e:9a:de:ea:a8:f1:
99:38:5a:66:2c:1b:eb:88:03:19:c4:34:d2:e6:c3:
27:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:76:6D:97:83:19:DC:6D:56:AA:AF:70:A7:3D:5D:A3:AF:6B:81:7B
X509v3 Authority Key Identifier:
keyid:84:6C:D7:BC:19:14:20:56:AC:AF:95:73:CA:A1:AF:8D:E8:71:81:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGzXvBkUIFasr5VzyqGvjehxgVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/990590-4a63-4b2f-a933-d1959f3e2f76/1/hGzXvBkUIFasr5VzyqGvjehxgVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:05:39:10:95:42:3e:08:51:24:ec:98:83:44:91:77:1a:13:
7e:c4:21:a4:18:79:2e:7c:2f:b5:7b:97:35:b5:14:e0:98:a2:
e2:51:66:23:e7:41:08:74:3d:d1:2e:eb:c6:41:49:f6:0d:0e:
e2:56:f1:c8:b9:20:ec:61:c2:8e:05:c2:02:b5:9e:e8:ee:95:
4b:99:77:bb:79:e2:a3:a4:80:c1:b1:f1:75:41:70:31:ee:58:
69:73:fa:67:4a:86:62:9d:ac:7a:2c:c4:0a:98:99:7b:91:71:
2f:de:ec:3c:33:44:0e:96:e0:ac:2f:fb:fc:e5:86:c0:4d:71:
7c:c6:6b:c8:a5:2e:6d:21:78:4e:0b:35:3a:0d:26:96:4f:b5:
44:2e:2a:ee:a8:56:2e:1b:ba:67:10:29:5f:85:14:2d:ac:18:
fb:bd:58:2e:51:f3:19:31:9e:39:ff:b4:6c:56:21:14:e3:e1:
e1:1f:c1:32:30:ec:cf:d9:4f:5d:09:57:0e:a0:56:bc:fd:e3:
81:67:ae:31:e4:c3:82:2c:ec:69:4f:86:fe:b1:ef:a0:14:ea:
8a:dc:da:6e:7d:69:4b:d8:b7:1d:44:71:64:84:83:7f:df:b4:
b9:a7:b0:4c:43:d9:03:34:d4:dc:87:8f:8d:c7:20:11:2e:f3:
b4:eb:e1:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLs5GKlfMR24ig92cNYeFBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NmNkN2JjMTkxNDIwNTZhY2FmOTU3M2NhYTFhZjhkZTg3
MTgxNTYwHhcNMjUwODA4MjIwMDU3WhcNMjUwODA5MjIwMDU3WjAzMTEwLwYDVQQD
EygxYzc2NmQ5NzgzMTlkYzZkNTZhYWFmNzBhNzNkNWRhM2FmNmI4MTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7CsqMZa1ZPxxMToaBJDkCqUZfOs
fQR0qLoMgSfxg0nEW64EPy4XYhCkCqppLZC6eW09gUmO87iO63++7163rhUNk7eZ
eZdtzl9P2FCJdN+Am7Wg9oPJ8u3+j2CXOgRAwJ/5MmRr/0AIMxNeXrPOUC5SgAb6
Tzh6rh66jez1uWnOcnB3vpHfH4NeSTbT+/zrgga8TT4/+LWB9X2TMURhxmS+JVMH
oUETB+dBA6HBhyyCt93n92Z8vNIQmffOskr5B7OTYmJEgFjLGhWlPOwiva1uuF+J
Rtkh3czYmZANdXlDOmmypDiMDHsumt7qqPGZOFpmLBvriAMZxDTS5sMncwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBx2bZeDGdxtVqqvcKc9XaOva4F7MB8GA1UdIwQY
MBaAFIRs17wZFCBWrK+Vc8qhr43ocYFWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEd6WHZCa1VJRmFzcjVWenlxR3ZqZWh4Z1ZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy85OTA1OTAtNGE2My00YjJmLWE5MzMt
ZDE5NTlmM2UyZjc2LzEvaEd6WHZCa1VJRmFzcjVWenlxR3ZqZWh4Z1ZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy85OTA1OTAtNGE2My00YjJmLWE5MzMtZDE5NTlmM2UyZjc2
LzEvaEd6WHZCa1VJRmFzcjVWenlxR3ZqZWh4Z1ZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEwU5EJVC
PghRJOyYg0SRdxoTfsQhpBh5LnwvtXuXNbUU4Jii4lFmI+dBCHQ90S7rxkFJ9g0O
4lbxyLkg7GHCjgXCArWe6O6VS5l3u3nio6SAwbHxdUFwMe5YaXP6Z0qGYp2seizE
CpiZe5FxL97sPDNEDpbgrC/7/OWGwE1xfMZryKUubSF4Tgs1Og0mlk+1RC4q7qhW
Lhu6ZxApX4UULawY+71YLlHzGTGeOf+0bFYhFOPh4R/BMjDsz9lPXQlXDqBWvP3j
gWeuMeTDgizsaU+G/rHvoBTqitzabn1pS9i3HURxZISDf9+0uaewTEPZAzTU3IeP
jccgES7ztOvhgA==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:48:27 2025 by rpki-client