Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: dmmvmhCHXW/zZxkj2XpJRPbYCQWHGp07y/nT2CbGkxE=
Subject key identifier: B3:DA:57:51:B2:90:21:85:5F:5B:47:3E:98:66:89:79:55:B8:80:66
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 019881D57013841E0BEB05C0C6B5CFB2A10B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 161E
Signing time: Thu 07 Aug 2025 00:01:45 +0000
Manifest this update: Thu 07 Aug 2025 00:01:45 +0000
Manifest next update: Fri 08 Aug 2025 00:01:45 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: wvFmk6gJiedK7r5MN8tsjV+YootbGMm3WeDybNOAfiI=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d5:70:13:84:1e:0b:eb:05:c0:c6:b5:cf:b2:a1:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Aug 7 00:01:45 2025 GMT
Not After : Aug 8 00:01:45 2025 GMT
Subject: CN=b3da5751b29021855f5b473e9866897955b88066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b3:ba:5b:85:bc:38:d4:62:99:0d:f4:b4:25:
cf:56:87:ac:c2:4d:41:97:d6:13:57:8e:f4:83:07:
ec:16:49:2f:b6:65:6a:fe:6c:e2:33:b2:07:cd:19:
cf:a7:a0:f3:1f:ca:b9:31:8b:b4:4a:b9:f9:cd:67:
83:d1:86:53:b5:ad:4b:3b:78:4c:3b:7e:b8:16:cc:
1b:e1:87:82:8a:0e:e7:b4:e0:28:31:be:db:80:c4:
f8:44:14:e7:83:00:73:eb:25:3e:a0:9b:d8:9f:bc:
60:62:54:3f:a5:0b:ce:60:e7:22:93:48:35:db:30:
80:b0:1a:8d:42:dd:6e:25:f1:aa:27:40:ea:c2:c8:
89:22:6f:b0:f8:7c:e0:34:58:6d:b0:c8:3f:75:f4:
0d:63:ca:99:50:3e:ea:c6:78:da:e3:bc:f7:e7:4e:
21:ad:04:8f:ee:48:0a:9a:d2:54:5f:2e:f9:22:fd:
26:b3:31:ca:24:30:90:e2:d6:6f:6c:71:80:be:4c:
11:13:1a:23:b0:a2:52:62:2c:b3:3f:b8:9f:20:c0:
7c:9a:51:51:75:a5:9f:aa:11:db:76:04:70:dd:67:
60:f9:8b:b4:8c:7b:c1:19:83:a8:f5:c6:c6:04:d3:
64:08:45:6a:5e:d0:33:43:46:55:66:89:99:61:4a:
7e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DA:57:51:B2:90:21:85:5F:5B:47:3E:98:66:89:79:55:B8:80:66
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6e:8e:4a:72:06:14:da:9f:3a:19:f2:ad:8b:f5:32:de:14:
f0:7c:31:66:1f:48:3b:eb:cc:42:48:67:0a:6b:b1:28:84:73:
46:0a:de:7d:d7:8d:7b:ea:79:2a:f1:d2:e0:31:06:db:28:3e:
4f:76:f6:0e:13:c8:c5:3a:f5:2f:34:5d:85:18:11:10:ff:78:
0e:53:43:8a:ef:56:84:39:4e:4f:06:f9:5d:2e:60:34:c2:c4:
6e:2d:91:28:4f:d1:ac:85:dc:69:9d:ad:0b:fa:6c:32:52:f5:
ec:5a:f5:1f:c3:24:b9:d8:f7:ef:31:0b:5b:d2:10:1c:b1:67:
77:7a:62:cc:05:8f:61:12:ff:85:6b:80:c5:cd:c0:04:54:5b:
24:64:50:0d:04:bb:8f:e8:b3:44:e5:d5:70:f7:61:7a:b6:d5:
12:ee:63:98:0c:cb:68:f6:43:e4:c5:3e:09:4f:f0:f5:19:a7:
c5:69:9f:e5:61:23:16:ff:e6:02:50:f2:32:3c:70:4f:cf:9f:
98:6e:ba:43:fe:82:d5:90:f4:71:15:b0:02:f4:98:cc:c7:21:
c0:0f:05:3b:f5:74:f4:97:f1:37:db:74:8b:7f:3a:d5:97:e1:
ff:e4:c2:c0:2b:a7:0c:52:b6:b0:a2:31:0d:38:d7:04:de:07:
59:47:fe:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiB1XAThB4L6wXAxrXPsqELMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZGU3NTZhOWI2ZDE0MDAwYzNlMTUwZDViN2Q2MDk1Yjc2
MTNmZTQwHhcNMjUwODA3MDAwMTQ1WhcNMjUwODA4MDAwMTQ1WjAzMTEwLwYDVQQD
EyhiM2RhNTc1MWIyOTAyMTg1NWY1YjQ3M2U5ODY2ODk3OTU1Yjg4MDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrO6W4W8ONRimQ30tCXPVoeswk1B
l9YTV470gwfsFkkvtmVq/mziM7IHzRnPp6DzH8q5MYu0Srn5zWeD0YZTta1LO3hM
O364Fswb4YeCig7ntOAoMb7bgMT4RBTngwBz6yU+oJvYn7xgYlQ/pQvOYOcik0g1
2zCAsBqNQt1uJfGqJ0DqwsiJIm+w+HzgNFhtsMg/dfQNY8qZUD7qxnja47z3504h
rQSP7kgKmtJUXy75Iv0mszHKJDCQ4tZvbHGAvkwRExojsKJSYiyzP7ifIMB8mlFR
daWfqhHbdgRw3Wdg+Yu0jHvBGYOo9cbGBNNkCEVqXtAzQ0ZVZomZYUp+iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLPaV1GykCGFX1tHPphmiXlVuIBmMB8GA1UdIwQY
MBaAFB3edWqbbRQADD4VDVt9YJW3YT/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMt
NzM1YTBjYzFlNzg5LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMtNzM1YTBjYzFlNzg5
LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhW6OSnIG
FNqfOhnyrYv1Mt4U8HwxZh9IO+vMQkhnCmuxKIRzRgrefdeNe+p5KvHS4DEG2yg+
T3b2DhPIxTr1LzRdhRgREP94DlNDiu9WhDlOTwb5XS5gNMLEbi2RKE/RrIXcaZ2t
C/psMlL17Fr1H8Mkudj37zELW9IQHLFnd3pizAWPYRL/hWuAxc3ABFRbJGRQDQS7
j+izROXVcPdherbVEu5jmAzLaPZD5MU+CU/w9RmnxWmf5WEjFv/mAlDyMjxwT8+f
mG66Q/6C1ZD0cRWwAvSYzMchwA8FO/V09JfxN9t0i3861Zfh/+TCwCunDFK2sKIx
DTjXBN4HWUf+pg==
-----END CERTIFICATE-----
Generated at Thu Aug 7 04:24:29 2025 by rpki-client