Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: k4Rlbk5BBHimCGheEd4rSWT1umKDINOpHuVS4Vq6TtA=
Subject key identifier: 81:68:9B:1E:06:BD:5F:83:EA:A1:44:4C:51:5A:A4:70:18:AB:7C:8F
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 019873AACF4B95C841672A3090FC47AA77FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0698
Signing time: Mon 04 Aug 2025 06:00:30 +0000
Manifest this update: Mon 04 Aug 2025 06:00:30 +0000
Manifest next update: Tue 05 Aug 2025 06:00:30 +0000
Files and hashes: 1: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
2: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
3: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: SisD0QqbiWbTTXuJCl4KCS8D198+s0jfVZgG9yWNFdU=)
4: wcJ_wqjkpF90dh4pnsLUh2A6UA8.roa (hash: Vle/iazgF/KeRcK8urw8Nfb/AAf+CLF6fd+SxsYrWz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 06:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:aa:cf:4b:95:c8:41:67:2a:30:90:fc:47:aa:77:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Aug 4 06:00:30 2025 GMT
Not After : Aug 5 06:00:30 2025 GMT
Subject: CN=81689b1e06bd5f83eaa1444c515aa47018ab7c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:64:2f:99:64:52:28:81:11:b3:57:f1:e9:cb:
11:2b:ef:fb:ff:5d:81:64:23:18:6a:69:59:58:8e:
ec:0b:8e:85:45:c1:8e:d0:ab:a4:57:61:77:0f:d3:
ef:c3:73:e2:c4:bf:a2:a1:a6:1a:1c:37:68:bb:13:
9d:42:a2:3d:c5:98:b4:68:7c:07:31:84:13:7d:4b:
4c:3f:d6:11:99:78:48:e3:15:50:c7:93:58:52:41:
37:69:c9:b0:04:96:6f:d5:0a:0a:02:5c:60:26:69:
a1:0b:00:15:06:29:bd:bc:c8:5a:c5:60:88:0a:d2:
e6:ee:cf:77:36:fb:75:12:c0:ab:25:79:dc:94:e5:
74:e4:55:d6:d5:4d:29:43:ef:52:5f:b6:53:7b:df:
a4:50:16:f8:9a:de:fa:ba:49:92:6a:3d:ac:6b:fb:
66:96:96:3a:f4:1e:30:0a:47:d9:c6:aa:21:78:80:
fd:51:06:5e:97:60:ef:49:a8:1d:ff:04:95:65:c1:
8c:46:9a:47:a4:33:30:2b:ca:d7:1f:c3:50:9a:c4:
92:bb:0b:f0:83:03:52:0b:54:b7:a7:3f:33:b8:bf:
e7:2f:f7:62:18:fb:97:69:95:59:74:a9:27:3f:e0:
e4:1b:7e:d8:4d:f1:09:0c:42:94:3f:15:c6:5b:b0:
72:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:68:9B:1E:06:BD:5F:83:EA:A1:44:4C:51:5A:A4:70:18:AB:7C:8F
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:fe:75:42:d5:d7:78:a8:e4:02:7e:ea:30:f7:c2:59:88:18:
eb:c2:50:9f:e6:bd:78:be:75:c0:e7:ad:9b:c3:29:1c:d4:19:
58:d0:a0:11:c1:9a:40:96:0e:bb:60:54:77:c5:c0:36:96:7a:
18:d3:53:c3:82:89:a5:3e:22:c2:80:c3:41:85:98:a7:7f:e7:
cb:f1:7f:2d:03:41:66:20:e5:69:18:02:83:72:6b:97:d4:75:
b3:2d:b5:c8:c5:a3:fb:29:f7:b1:28:bc:2d:b1:6e:51:68:c0:
56:01:d4:2d:90:33:d1:ec:14:09:76:9d:ac:3c:e3:20:73:74:
b0:7e:97:5b:09:4e:b2:0f:fb:d8:33:88:0b:da:a7:7c:47:e9:
db:21:d4:4f:f1:d8:15:49:b2:ea:4e:a2:60:6c:7f:91:6e:40:
51:70:f0:1d:1d:65:a2:ab:42:e1:bf:1c:30:7a:55:ec:1c:af:
16:9e:84:1d:52:9d:49:f9:fa:4a:61:76:d8:3e:f2:42:90:ff:
8c:e0:ee:c3:2d:e3:c5:d5:47:0d:91:bf:64:30:39:09:12:6c:
a3:01:4d:74:bd:04:37:79:45:4b:4c:7a:30:fa:16:91:36:88:
8c:cc:99:f1:e6:14:c4:a3:97:fc:93:9c:6c:71:92:c2:2a:2e:
a9:da:0d:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzqs9LlchBZyowkPxHqnf8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NDQ5MmRiOWNiYjBhMGViNmJmNjljMjVjODY5NjFmNDkx
ODNjOWIwHhcNMjUwODA0MDYwMDMwWhcNMjUwODA1MDYwMDMwWjAzMTEwLwYDVQQD
Eyg4MTY4OWIxZTA2YmQ1ZjgzZWFhMTQ0NGM1MTVhYTQ3MDE4YWI3YzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WQvmWRSKIERs1fx6csRK+/7/12B
ZCMYamlZWI7sC46FRcGO0KukV2F3D9Pvw3PixL+ioaYaHDdouxOdQqI9xZi0aHwH
MYQTfUtMP9YRmXhI4xVQx5NYUkE3acmwBJZv1QoKAlxgJmmhCwAVBim9vMhaxWCI
CtLm7s93Nvt1EsCrJXnclOV05FXW1U0pQ+9SX7ZTe9+kUBb4mt76ukmSaj2sa/tm
lpY69B4wCkfZxqoheID9UQZel2DvSagd/wSVZcGMRppHpDMwK8rXH8NQmsSSuwvw
gwNSC1S3pz8zuL/nL/diGPuXaZVZdKknP+DkG37YTfEJDEKUPxXGW7ByPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIFomx4GvV+D6qFETFFapHAYq3yPMB8GA1UdIwQY
MBaAFIREktucuwoOtr9pwlyGlh9JGDybMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8zM2E4ODgtNGNmMy00YThjLTkyOTct
YTFlMGRiMWExN2RmLzEvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi8zM2E4ODgtNGNmMy00YThjLTkyOTctYTFlMGRiMWExN2Rm
LzEvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUv51QtXX
eKjkAn7qMPfCWYgY68JQn+a9eL51wOetm8MpHNQZWNCgEcGaQJYOu2BUd8XANpZ6
GNNTw4KJpT4iwoDDQYWYp3/ny/F/LQNBZiDlaRgCg3Jrl9R1sy21yMWj+yn3sSi8
LbFuUWjAVgHULZAz0ewUCXadrDzjIHN0sH6XWwlOsg/72DOIC9qnfEfp2yHUT/HY
FUmy6k6iYGx/kW5AUXDwHR1loqtC4b8cMHpV7ByvFp6EHVKdSfn6SmF22D7yQpD/
jODuwy3jxdVHDZG/ZDA5CRJsowFNdL0EN3lFS0x6MPoWkTaIjMyZ8eYUxKOX/JOc
bHGSwiouqdoNzA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:58:20 2025 by rpki-client