Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json)
Hash identifier: pZUKKksfRa0WH70Iw0+Sujn7FM80fZDSohkbq6TCxkk=
Subject key identifier: DE:4F:EB:BC:C5:06:D3:D7:41:F8:1A:C2:24:9F:C9:B5:47:02:30:B3
Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77
Certificate serial: 019A50E291FEBB183DDB782A45C9B3A1D863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
Manifest number: 171B
Signing time: Tue 04 Nov 2025 22:00:17 +0000
Manifest this update: Tue 04 Nov 2025 22:00:17 +0000
Manifest next update: Wed 05 Nov 2025 22:00:17 +0000
Files and hashes: 1: IZeoqEY95eSVV0eYYLX8T3tHlCs.roa (hash: LO4oh4VYMguVhAQpzzJsbYN82/uMVEn2vgRLSpasT1s=)
2: LJnxaD0i6KMHQc1A1Myl7JzH7gk.roa (hash: BOqHp3/8Lrk2VNXTgZj56poMzxkbv3v/wNmy6/SirSw=)
3: NewZ8pp4liRlRqK_bUM9ux7lUdY.roa (hash: e2V20fh5Bna/npvAqL/4q48RnUBDa1PMa1ud3KkuSzU=)
4: OMAWMgjFkntxY9hjh7x9HjopsUQ.roa (hash: fC4Wynjh9RIf9v3k1CSQsuZtxFupNj1veyw3ZlhI/Jw=)
5: QHrhoLDtZR3zPElOqqmMq3qzkao.roa (hash: NXLg9El+SZKbOxc9Fad+2P9R3XvjaMUu4aKcgfvxLco=)
6: VTgIeAjnu6QDITPutn3ZYiX28hw.roa (hash: 1qNSFP6+K7IEMjkOk6A/QLlgZfO6RHOCGRUYacl+A9I=)
7: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: klf6SsWCLrvzjmHriVkW2iISGT/F57vg5HvaaLt2Q6k=)
8: kYOzNphxQuuMN-KEH5LcxfVfKho.roa (hash: ZqTwzdBEFFNTdg6mPtQfwSsq0u9CJRd378DWfNVX+no=)
9: wYF_ylL7pnBo9OaIzACNhn9RjFU.roa (hash: RTPtjL/eZ7d6GsDAAsmLFavUlJqeMCconuqgqwEBbU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e2:91:fe:bb:18:3d:db:78:2a:45:c9:b3:a1:d8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77
Validity
Not Before: Nov 4 22:00:17 2025 GMT
Not After : Nov 5 22:00:17 2025 GMT
Subject: CN=de4febbcc506d3d741f81ac2249fc9b5470230b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d6:c9:92:75:47:40:4e:95:31:15:39:d3:0c:
43:6d:ac:04:f3:d4:f7:77:6a:08:a5:12:ac:c2:25:
7d:b0:97:ec:7a:06:8a:60:78:9e:be:ad:db:68:09:
2a:d7:a4:ef:37:4f:9b:ed:32:2a:78:2c:8b:5a:6b:
3d:6e:e8:65:17:da:06:92:18:30:4d:4f:00:d4:5e:
7a:8d:cc:1a:54:10:a8:d2:3f:e6:a5:05:cc:3d:f4:
6e:01:b9:cc:29:08:b7:71:d4:47:e3:f1:85:e6:f6:
cc:51:7e:45:da:c4:5f:e6:92:b1:83:a7:3f:ef:06:
8b:6a:24:a5:a7:40:51:1f:11:04:38:ab:8f:33:24:
ba:29:00:1b:a8:fa:71:95:44:5a:02:60:47:99:40:
87:de:ba:45:b5:87:8f:bf:c0:29:0d:8d:bd:c4:d0:
a0:ac:37:c0:a6:82:6b:35:e9:d1:52:27:0b:65:34:
a9:77:56:69:cf:e5:07:bb:51:d5:7b:a9:2f:22:8f:
0b:d7:1c:50:0c:f0:35:7e:eb:d0:8a:c5:12:32:9e:
89:f8:ca:95:04:54:7f:e5:4f:f6:55:2d:ac:71:90:
35:a4:8d:b2:43:c2:8c:61:40:c9:44:c6:af:2e:2c:
14:30:55:d7:43:2b:a9:5c:62:ae:37:4e:db:33:de:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:4F:EB:BC:C5:06:D3:D7:41:F8:1A:C2:24:9F:C9:B5:47:02:30:B3
X509v3 Authority Key Identifier:
keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:95:8a:44:e5:1f:b6:9d:e1:9d:7a:ec:9a:1e:3c:f4:64:0e:
85:06:f5:ef:d1:60:ae:e9:b8:56:48:2c:be:c7:0d:f1:0c:2e:
2c:7e:bd:dc:0d:c3:b4:39:c1:5d:b1:56:da:08:8d:23:99:4f:
4a:8f:84:65:0e:4a:e6:6e:b8:b6:56:08:f2:17:c8:54:5d:7c:
d1:b5:85:27:ec:5f:da:f1:07:85:22:c8:c3:33:90:87:c8:7f:
b6:fd:45:8c:b3:fd:56:50:a9:75:bd:29:2b:eb:1a:17:e7:b1:
5a:6a:b6:14:5e:37:5d:d7:5e:c9:2b:8a:da:02:02:55:90:e9:
87:cc:d6:13:48:99:51:0e:35:89:c3:bb:14:07:f0:02:b4:f1:
43:d1:02:39:d3:78:ed:ea:55:08:01:17:52:9a:81:ae:c9:78:
eb:94:84:43:5b:7d:0d:46:25:d8:c6:44:c9:44:21:6b:ea:6f:
5f:87:2c:a9:27:8c:2d:33:c3:02:63:02:f6:f0:26:12:00:6c:
dc:23:05:b0:6f:f2:dd:6d:b3:8f:ed:1d:6e:66:46:22:7f:7a:
0b:ac:e3:46:78:92:80:40:bf:56:46:12:bc:8b:81:9a:f1:d3:
41:97:74:27:77:ef:66:d0:02:7d:34:e6:d6:06:e9:1a:d8:f1:
87:84:16:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQ4pH+uxg923gqRcmzodhjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NTJiMDNlMWIwMTcwOTYzODk0MGQ5NTkyOTgzY2RlNzdl
Y2FiNzcwHhcNMjUxMTA0MjIwMDE3WhcNMjUxMTA1MjIwMDE3WjAzMTEwLwYDVQQD
EyhkZTRmZWJiY2M1MDZkM2Q3NDFmODFhYzIyNDlmYzliNTQ3MDIzMGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdbJknVHQE6VMRU50wxDbawE89T3
d2oIpRKswiV9sJfsegaKYHievq3baAkq16TvN0+b7TIqeCyLWms9buhlF9oGkhgw
TU8A1F56jcwaVBCo0j/mpQXMPfRuAbnMKQi3cdRH4/GF5vbMUX5F2sRf5pKxg6c/
7waLaiSlp0BRHxEEOKuPMyS6KQAbqPpxlURaAmBHmUCH3rpFtYePv8ApDY29xNCg
rDfApoJrNenRUicLZTSpd1Zpz+UHu1HVe6kvIo8L1xxQDPA1fuvQisUSMp6J+MqV
BFR/5U/2VS2scZA1pI2yQ8KMYUDJRMavLiwUMFXXQyupXGKuN07bM95hZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN5P67zFBtPXQfgawiSfybVHAjCzMB8GA1UdIwQY
MBaAFIRSsD4bAXCWOJQNlZKYPN537Kt3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQt
MjAwZmMyNzRjYjAxLzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQtMjAwZmMyNzRjYjAx
LzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyJWKROUf
tp3hnXrsmh489GQOhQb179Fgrum4VkgsvscN8QwuLH693A3DtDnBXbFW2giNI5lP
So+EZQ5K5m64tlYI8hfIVF180bWFJ+xf2vEHhSLIwzOQh8h/tv1FjLP9VlCpdb0p
K+saF+exWmq2FF43XddeySuK2gICVZDph8zWE0iZUQ41icO7FAfwArTxQ9ECOdN4
7epVCAEXUpqBrsl465SEQ1t9DUYl2MZEyUQha+pvX4csqSeMLTPDAmMC9vAmEgBs
3CMFsG/y3W2zj+0dbmZGIn96C6zjRniSgEC/VkYSvIuBmvHTQZd0J3fvZtACfTTm
1gbpGtjxh4QWVQ==
-----END CERTIFICATE-----
Generated at Tue Nov 4 23:54:46 2025 by rpki-client