
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json)
Hash identifier: JfVUk3RoBKcZH1rE9bMq5wibTfnSQ2R/6GlopoRmEP0=
Subject key identifier: 37:D9:EA:3B:A9:B8:12:11:74:37:10:70:C8:ED:BE:8E:C5:56:79:7C
Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Certificate serial: 01988053EC0E04150F810A2333355AE9520C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
Manifest number: 1625
Signing time: Wed 06 Aug 2025 17:00:40 +0000
Manifest this update: Wed 06 Aug 2025 17:00:40 +0000
Manifest next update: Thu 07 Aug 2025 17:00:40 +0000
Files and hashes: 1: 1a8VrRBxuEM9gIitWA-MTYGiH6k.roa (hash: o75BqB590sV6r1bb5EcguY1B6QE3rDYfVkZNGdgh7Sw=)
2: 5xOfslnPq8-oHcDS47I_csGpD8Q.roa (hash: 4dFQELulj6P8yjTGdV2+DXhC0ieIeLQi8X9meQWips0=)
3: DCocrInE23WH5yhpx0FXxrNY7_Y.roa (hash: O6VU1JCrRAIS6a+yNeHmYk7E8wYytQ8Lu8b/Fc+fOqI=)
4: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: mbk2VKztOcH96Y7X8HOsVtn+4Pol2lyn9OGd5vd96a0=)
5: du6DBdKlb1Cr5Z5mqlctF2rW68k.roa (hash: XaoP28uRsMgk856VCX7c/74Lo2ezwg/z+6hQ43OafIc=)
6: gvR46ytTmKrRi4maCYGnQqf4WI8.roa (hash: ViNC6FNBy9cckM8WILnCXIRpeOOtSFGRhOo8i05WQf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 17:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:53:ec:0e:04:15:0f:81:0a:23:33:35:5a:e9:52:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Validity
Not Before: Aug 6 17:00:40 2025 GMT
Not After : Aug 7 17:00:40 2025 GMT
Subject: CN=37d9ea3ba9b8121174371070c8edbe8ec556797c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:de:52:fc:aa:c5:3a:14:89:d6:40:7b:71:36:
e3:c8:95:af:d4:c5:14:b3:35:75:7f:3b:9a:cc:e3:
95:4f:9a:4a:d4:9e:2c:fa:7e:d7:70:9c:25:df:b1:
6c:56:82:e5:f9:4c:6e:9f:e2:09:8a:57:14:c4:77:
82:93:b5:bb:1d:35:11:65:44:e6:28:47:8c:b2:64:
09:a3:f7:d9:02:1e:f9:0a:a5:3f:9f:4f:14:98:1c:
2a:04:74:e4:72:cc:95:bd:4d:c4:6a:fc:e7:ed:49:
2a:f0:09:b3:d8:62:71:90:42:72:5a:c9:c3:28:54:
3c:21:76:81:c8:a3:57:53:fa:2c:44:40:57:2e:6b:
98:78:73:0f:50:7a:f7:3e:6b:e4:1e:28:64:d6:01:
89:ad:83:51:76:b7:6d:a4:50:20:5b:da:9a:f2:73:
d6:73:09:64:f9:ce:d9:27:7b:93:08:9c:28:36:07:
fa:ea:62:9c:5c:39:bc:4c:ca:dc:63:c1:4d:95:0d:
2c:37:5d:c0:d5:45:2b:a9:29:cc:be:10:c7:4f:7d:
2a:aa:f8:73:47:00:e5:6a:e4:8d:98:2d:31:2b:07:
3d:ef:0d:81:ea:84:e0:b1:da:e0:f4:61:73:35:a4:
4a:74:76:79:37:75:b4:76:8d:fc:d6:ca:29:18:a1:
10:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D9:EA:3B:A9:B8:12:11:74:37:10:70:C8:ED:BE:8E:C5:56:79:7C
X509v3 Authority Key Identifier:
keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:83:77:3e:af:fd:7d:23:4f:65:b7:50:18:d2:54:7d:31:18:
bd:05:59:0e:ab:37:de:91:df:48:1d:e3:21:7f:e7:6f:2a:2b:
0a:ea:5e:2a:4c:75:1c:d1:2c:80:1c:14:2f:5d:b8:7e:2c:72:
1a:65:ea:82:79:57:2a:ab:d0:9f:4f:35:ea:2a:fb:47:ba:47:
e1:60:b0:e3:a5:f6:35:fc:89:fc:bd:c6:f3:3c:d1:d9:bd:0d:
c2:ab:ea:d5:79:5e:5f:48:55:e4:8f:19:91:be:90:a3:da:4c:
61:99:f7:c9:0b:d4:70:4c:a2:c0:95:68:20:30:fa:af:36:95:
1d:34:ce:2a:0e:60:2a:20:ff:ed:50:3c:34:aa:9d:b3:84:b2:
1a:a0:ef:9e:53:ac:8b:0e:fe:fc:6d:6e:f4:3f:e0:f9:81:73:
29:fa:69:e2:0b:0d:0d:f4:3e:02:9d:b6:d1:23:70:67:40:9f:
56:ca:0c:61:0c:65:9b:7c:cd:da:a1:d5:08:4d:55:eb:42:8b:
05:87:93:be:ba:08:ec:22:65:cc:4d:3c:30:07:d9:c9:ca:b5:
87:42:16:6c:6c:33:18:cc:32:ff:ae:02:6f:3e:a0:9e:df:cf:
ef:82:ac:47:8c:a1:57:da:45:90:b6:fb:29:3b:dd:46:f4:fb:
dc:47:f9:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAU+wOBBUPgQojMzVa6VIMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkODYyNjc0OWNiZjg0YmNmNDJlYmIyOTg1Yjg2ZGVlODMw
ZTVjMTQwHhcNMjUwODA2MTcwMDQwWhcNMjUwODA3MTcwMDQwWjAzMTEwLwYDVQQD
EygzN2Q5ZWEzYmE5YjgxMjExNzQzNzEwNzBjOGVkYmU4ZWM1NTY3OTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtN5S/KrFOhSJ1kB7cTbjyJWv1MUU
szV1fzuazOOVT5pK1J4s+n7XcJwl37FsVoLl+Uxun+IJilcUxHeCk7W7HTURZUTm
KEeMsmQJo/fZAh75CqU/n08UmBwqBHTkcsyVvU3Eavzn7Ukq8Amz2GJxkEJyWsnD
KFQ8IXaByKNXU/osREBXLmuYeHMPUHr3PmvkHihk1gGJrYNRdrdtpFAgW9qa8nPW
cwlk+c7ZJ3uTCJwoNgf66mKcXDm8TMrcY8FNlQ0sN13A1UUrqSnMvhDHT30qqvhz
RwDlauSNmC0xKwc97w2B6oTgsdrg9GFzNaRKdHZ5N3W0do381sopGKEQtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDfZ6jupuBIRdDcQcMjtvo7FVnl8MB8GA1UdIwQY
MBaAFB2GJnScv4S89C67KYW4be6DDlwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYt
MGJmYmFkNDg0OWNkLzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYtMGJmYmFkNDg0OWNk
LzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV4N3Pq/9
fSNPZbdQGNJUfTEYvQVZDqs33pHfSB3jIX/nbyorCupeKkx1HNEsgBwUL124fixy
GmXqgnlXKqvQn0816ir7R7pH4WCw46X2NfyJ/L3G8zzR2b0Nwqvq1XleX0hV5I8Z
kb6Qo9pMYZn3yQvUcEyiwJVoIDD6rzaVHTTOKg5gKiD/7VA8NKqds4SyGqDvnlOs
iw7+/G1u9D/g+YFzKfpp4gsNDfQ+Ap220SNwZ0CfVsoMYQxlm3zN2qHVCE1V60KL
BYeTvroI7CJlzE08MAfZycq1h0IWbGwzGMwy/64Cbz6gnt/P74KsR4yhV9pFkLb7
KTvdRvT73Ef5xA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 01:16:11 2025 by rpki-client