Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: BnfEqpzFARYxIq3r9M5aGMxVGSjy6ADdooIX7MsLi5g=
Subject key identifier: 65:00:02:2C:F5:85:D2:34:5B:61:1B:18:0E:87:1C:54:4F:31:00:AF
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 01987E2F04F807FE860E01BEC38BB8F334FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 02B5
Signing time: Wed 06 Aug 2025 07:01:07 +0000
Manifest this update: Wed 06 Aug 2025 07:01:07 +0000
Manifest next update: Thu 07 Aug 2025 07:01:07 +0000
Files and hashes: 1: EKlx1rADZuyg4kkyJL1W_FoZslE.roa (hash: gnSA4UoMY65ycXDPhcYc7WaEaKvIIPSZcAUwOI0jUxA=)
2: c4kqcT1XSHJJ0FNREY_3KgQV5Zg.roa (hash: BFqJRUOC40P0vfCEnDcc5S1ZBpr8qXlnCPbjKvFWFf8=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: o9vU+wgiDAyLc9ZEMt0qvckOYDOTkpUdgD0qK+7aYEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2f:04:f8:07:fe:86:0e:01:be:c3:8b:b8:f3:34:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Aug 6 07:01:07 2025 GMT
Not After : Aug 7 07:01:07 2025 GMT
Subject: CN=6500022cf585d2345b611b180e871c544f3100af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0f:35:2d:fa:40:34:2c:1d:2d:21:03:2e:01:
e7:24:d7:1e:8b:f9:cd:a5:9f:09:4d:a3:fe:c5:a0:
a5:88:fc:cb:8d:b6:57:4b:cf:1e:f2:c2:f2:30:9d:
48:56:6b:e6:58:5a:af:bd:e9:56:2b:00:6a:75:cb:
3d:b5:b1:00:10:38:69:42:7d:2c:a4:27:d5:1f:10:
ca:1d:3e:36:64:7d:2a:62:57:6c:d6:26:9c:dc:53:
ee:9d:d3:c2:30:e1:f2:b8:e3:34:c4:3a:c1:10:2b:
c6:56:4c:8f:66:b5:84:4d:39:9a:89:68:6c:16:60:
56:2d:67:84:76:1f:7f:01:8d:76:e3:55:39:3b:8a:
8a:d8:d5:d9:75:f7:a3:7d:86:d8:01:28:60:ab:be:
20:9c:a4:b8:ed:42:89:55:cd:cf:db:f9:a0:78:b1:
de:cd:21:b7:a8:7b:b5:59:85:5f:42:50:1f:16:1a:
04:dd:0e:2e:99:4e:0d:82:05:ec:5a:2f:c3:50:81:
62:50:57:c7:62:62:74:8b:27:ce:49:ae:10:b7:2b:
a2:e8:fa:13:8d:c3:fd:83:aa:64:56:01:44:c3:ab:
63:53:03:8b:98:c5:ce:20:ca:f0:40:a6:1f:7d:5c:
57:4e:cc:a4:08:e5:f9:58:73:94:03:cd:d6:9c:79:
51:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:00:02:2C:F5:85:D2:34:5B:61:1B:18:0E:87:1C:54:4F:31:00:AF
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:5a:bb:1c:46:d7:d8:eb:c6:a2:08:49:d1:9f:cd:1e:ea:07:
e3:3d:c8:5c:a8:41:d2:6f:88:2c:0b:1a:a2:1d:84:7f:c3:61:
df:7c:7e:46:e4:a2:98:e9:e1:91:96:7d:93:b0:af:ca:8b:c3:
64:99:5f:d8:2a:fc:91:43:f1:96:21:46:ce:5b:bf:84:b4:0b:
e3:75:a2:71:8c:74:54:11:22:5d:e2:32:a8:02:14:2c:e2:11:
91:ad:72:46:97:6e:97:80:57:e1:d0:90:8a:8c:5b:6a:64:34:
c0:71:6d:fd:3d:0d:7b:9b:60:ad:03:04:46:44:01:3d:bd:01:
f3:2d:5a:8e:be:cc:93:0b:24:e0:3d:c0:06:95:5a:be:b8:e1:
8f:c1:8d:3b:8e:fe:c4:68:de:37:4c:78:c9:5f:09:dc:c0:95:
81:58:e9:82:84:95:a4:17:e6:69:6d:1b:b8:71:74:05:81:f7:
c6:54:14:96:31:f5:9e:a7:09:eb:02:84:25:4d:7c:48:84:68:
a4:7f:fb:f1:b9:d0:62:a8:e1:35:4f:59:a1:8d:56:46:ff:39:
92:fb:57:6e:ec:f4:bc:f7:9d:d7:7a:ec:78:d4:62:26:13:1d:
d0:bf:37:a0:50:3b:0b:9f:aa:8d:e6:88:70:aa:6d:12:dc:52:
4f:10:07:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh+LwT4B/6GDgG+w4u48zT+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OGFiYjI5OTc3YTY1YjE0MGNhY2I2ZTcyYWIyNGNlZGRk
NGU4YzUwHhcNMjUwODA2MDcwMTA3WhcNMjUwODA3MDcwMTA3WjAzMTEwLwYDVQQD
Eyg2NTAwMDIyY2Y1ODVkMjM0NWI2MTFiMTgwZTg3MWM1NDRmMzEwMGFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8w81LfpANCwdLSEDLgHnJNcei/nN
pZ8JTaP+xaCliPzLjbZXS88e8sLyMJ1IVmvmWFqvvelWKwBqdcs9tbEAEDhpQn0s
pCfVHxDKHT42ZH0qYlds1iac3FPundPCMOHyuOM0xDrBECvGVkyPZrWETTmaiWhs
FmBWLWeEdh9/AY1241U5O4qK2NXZdfejfYbYAShgq74gnKS47UKJVc3P2/mgeLHe
zSG3qHu1WYVfQlAfFhoE3Q4umU4NggXsWi/DUIFiUFfHYmJ0iyfOSa4Qtyui6PoT
jcP9g6pkVgFEw6tjUwOLmMXOIMrwQKYffVxXTsykCOX5WHOUA83WnHlROQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGUAAiz1hdI0W2EbGA6HHFRPMQCvMB8GA1UdIwQY
MBaAFIeKuymXemWxQMrLbnKrJM7d1OjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2Et
YWM4NjQ3ZDA1NThhLzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2EtYWM4NjQ3ZDA1NThh
LzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiVq7HEbX
2OvGoghJ0Z/NHuoH4z3IXKhB0m+ILAsaoh2Ef8Nh33x+RuSimOnhkZZ9k7CvyovD
ZJlf2Cr8kUPxliFGzlu/hLQL43WicYx0VBEiXeIyqAIULOIRka1yRpdul4BX4dCQ
ioxbamQ0wHFt/T0Ne5tgrQMERkQBPb0B8y1ajr7Mkwsk4D3ABpVavrjhj8GNO47+
xGjeN0x4yV8J3MCVgVjpgoSVpBfmaW0buHF0BYH3xlQUljH1nqcJ6wKEJU18SIRo
pH/78bnQYqjhNU9ZoY1WRv85kvtXbuz0vPed13rseNRiJhMd0L83oFA7C5+qjeaI
cKptEtxSTxAHTg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 14:06:24 2025 by rpki-client