Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: jS/dAjg07QLaznDzcwKmtR76YW3dKr0RMeP9F8DByq0=
Subject key identifier: E3:FC:4E:D5:54:DD:65:D7:E5:B5:D7:50:F0:9D:F6:24:80:AE:38:E9
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 01988BEAB0622A74741CDD5A16FD02C5A853
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 1634
Signing time: Fri 08 Aug 2025 23:01:10 +0000
Manifest this update: Fri 08 Aug 2025 23:01:10 +0000
Manifest next update: Sat 09 Aug 2025 23:01:10 +0000
Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=)
2: XOmOBh50cvCvJmnFjaJhaHYW2sE.roa (hash: 6F6wNjub6rC7wNAaFOeBE6JJ3w2cU7C6GJM4bNB9ZQQ=)
3: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: JaTKmg6OarQAQT2ByQAbrXo6FgVX4yhNe6T8NPjV+JI=)
4: viZJ1ILrK-Lhvo6EpJnhGu2o9Q4.roa (hash: VBEvk2C209Y5tb0FL9tK/NrEWGQ6MCpm2RIBK/aQkDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:b0:62:2a:74:74:1c:dd:5a:16:fd:02:c5:a8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Aug 8 23:01:10 2025 GMT
Not After : Aug 9 23:01:10 2025 GMT
Subject: CN=e3fc4ed554dd65d7e5b5d750f09df62480ae38e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:1e:bd:02:77:2a:ae:7a:35:e7:04:a2:69:ba:
80:08:c6:36:e5:99:7f:29:04:bd:cc:9d:89:05:5f:
c9:9e:24:db:18:6d:a4:20:3d:01:f6:6a:da:32:cc:
11:93:a2:31:7b:ae:a1:19:cb:76:ea:39:62:fe:ff:
cf:07:b2:d7:1e:4e:fb:7d:dc:e3:b5:b1:97:8b:a1:
b5:a1:ad:8f:c8:d3:44:cd:b3:56:9a:75:c6:3f:d6:
9f:9f:ed:06:9b:de:ca:e0:d6:f2:97:f6:fa:b8:0b:
06:df:ca:3b:e4:8e:8f:8a:ec:7a:c1:f1:ff:66:42:
3b:a3:25:82:33:84:6f:57:9a:e5:fa:3a:4b:a9:1f:
c5:59:62:20:db:79:c3:d6:f2:e3:f9:08:48:ee:56:
90:df:9e:ac:72:3f:c3:dd:80:ad:86:d3:81:b7:70:
a4:fa:1b:11:90:2f:b6:01:8c:8f:11:d9:80:07:08:
13:5d:c6:1c:b9:3b:fc:4f:66:be:7a:3e:24:ae:9c:
fa:c2:86:0d:3b:46:2e:ce:0a:79:6b:76:d8:82:fc:
a0:8e:e9:23:e5:1b:c7:b9:19:6d:1b:40:95:7c:67:
ba:07:3c:ef:70:6d:8e:3c:aa:59:43:6c:44:7c:29:
14:17:1d:c5:ea:20:1d:cc:f4:16:49:c5:07:9e:47:
f9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FC:4E:D5:54:DD:65:D7:E5:B5:D7:50:F0:9D:F6:24:80:AE:38:E9
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:73:18:f6:20:ab:f2:30:d8:34:db:8f:c6:0e:d8:25:75:ed:
c4:a4:d6:64:ad:bb:94:3a:18:21:44:da:aa:9a:15:55:7c:41:
89:e0:8f:c1:f7:9e:19:a7:49:f9:17:3d:01:8e:87:e0:17:b2:
6f:39:0f:db:40:e1:1f:e9:aa:c3:67:25:90:1b:15:91:48:74:
d3:77:22:b5:1d:66:eb:21:39:24:0b:ac:b3:42:77:b2:fc:09:
48:2c:48:f0:a9:ef:39:ec:be:4b:45:3a:40:9d:d2:3c:ea:1e:
0f:3c:da:41:f6:e0:cd:17:b3:9c:d9:a6:0d:56:1f:35:cf:d7:
c4:ff:ae:06:75:0a:d6:65:b4:3b:c1:36:52:23:fc:bf:03:f1:
d6:06:34:c5:1e:23:54:21:5d:a3:08:72:72:fc:e5:2f:e0:18:
eb:27:66:35:2f:ed:dd:54:11:90:44:89:68:c4:a8:0a:14:48:
0c:fd:88:82:c5:be:56:37:d3:57:95:8e:95:49:c4:c0:a5:93:
e4:0f:1c:67:de:9b:d8:a6:fd:04:a9:e3:5c:85:85:af:f4:b0:
31:2c:80:54:dd:9b:6c:b2:26:0b:9b:1b:4d:e7:ee:42:d8:44:
6c:1b:96:2d:73:53:f9:9b:36:d9:68:ab:e6:72:96:29:82:f2:
2e:82:d8:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiL6rBiKnR0HN1aFv0CxahTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3ZDk5MDEzMTQ2N2I3N2QxMTE2MmI3OWZiZTNiMDZjYThh
YjJkMzkwHhcNMjUwODA4MjMwMTEwWhcNMjUwODA5MjMwMTEwWjAzMTEwLwYDVQQD
EyhlM2ZjNGVkNTU0ZGQ2NWQ3ZTViNWQ3NTBmMDlkZjYyNDgwYWUzOGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoR69Ancqrno15wSiabqACMY25Zl/
KQS9zJ2JBV/JniTbGG2kID0B9mraMswRk6Ixe66hGct26jli/v/PB7LXHk77fdzj
tbGXi6G1oa2PyNNEzbNWmnXGP9afn+0Gm97K4Nbyl/b6uAsG38o75I6Piux6wfH/
ZkI7oyWCM4RvV5rl+jpLqR/FWWIg23nD1vLj+QhI7laQ356scj/D3YCthtOBt3Ck
+hsRkC+2AYyPEdmABwgTXcYcuTv8T2a+ej4krpz6woYNO0Yuzgp5a3bYgvygjukj
5RvHuRltG0CVfGe6BzzvcG2OPKpZQ2xEfCkUFx3F6iAdzPQWScUHnkf53QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOP8TtVU3WXX5bXXUPCd9iSArjjpMB8GA1UdIwQY
MBaAFIfZkBMUZ7d9ERYrefvjsGyoqy05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMt
YjhlOGIzNGRiMjkwLzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMtYjhlOGIzNGRiMjkw
LzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdHMY9iCr
8jDYNNuPxg7YJXXtxKTWZK27lDoYIUTaqpoVVXxBieCPwfeeGadJ+Rc9AY6H4Bey
bzkP20DhH+mqw2clkBsVkUh003citR1m6yE5JAuss0J3svwJSCxI8KnvOey+S0U6
QJ3SPOoeDzzaQfbgzReznNmmDVYfNc/XxP+uBnUK1mW0O8E2UiP8vwPx1gY0xR4j
VCFdowhycvzlL+AY6ydmNS/t3VQRkESJaMSoChRIDP2IgsW+VjfTV5WOlUnEwKWT
5A8cZ96b2Kb9BKnjXIWFr/SwMSyAVN2bbLImC5sbTefuQthEbBuWLXNT+Zs22Wir
5nKWKYLyLoLYzg==
-----END CERTIFICATE-----
Generated at Sat Aug 9 01:02:03 2025 by rpki-client