Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: p9+TB/tY6Dzfd8Xf4CRy4DmHNmz+yEzAupMUkDwcwUw=
Subject key identifier: 28:89:76:C1:1D:04:E1:2F:81:A3:55:AC:D0:ED:9D:A8:41:E2:F9:C3
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 01988054E7E894DC0679BDF4B391561598A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 05EA
Signing time: Wed 06 Aug 2025 17:01:44 +0000
Manifest this update: Wed 06 Aug 2025 17:01:44 +0000
Manifest next update: Thu 07 Aug 2025 17:01:44 +0000
Files and hashes: 1: DKCys4KRYdnrGXDLl1nVf9nVmRA.roa (hash: IaLK2xfRNIne0nZPaZ2/jfh45tolOprh7fcjo3irVI8=)
2: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: YlzltIuVMVhAkqRnLnhxB4VGYAfzQtRGRcnq6DIBKeA=)
3: NfUK1WerAdsfJiTM68i5Lnvkb2w.roa (hash: ZGezIXFkpMHBb+7ell8DWUCsKtD9DU2fEiI/6174M+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 17:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:e7:e8:94:dc:06:79:bd:f4:b3:91:56:15:98:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Aug 6 17:01:44 2025 GMT
Not After : Aug 7 17:01:44 2025 GMT
Subject: CN=288976c11d04e12f81a355acd0ed9da841e2f9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:89:e1:3d:a8:b3:ef:0b:d6:a5:c6:25:c3:cc:
80:aa:48:27:04:fc:77:84:97:92:0c:c9:44:10:1b:
66:ce:74:d2:36:43:8d:88:b1:e8:fd:17:4e:f6:44:
1c:15:85:14:01:af:cb:cc:b8:fd:a4:4d:9f:a6:05:
08:95:9a:b9:6e:19:34:27:6b:8a:eb:25:f1:87:bf:
4f:fb:0d:02:ba:47:0b:11:f4:0e:0f:69:e8:0d:b5:
04:c9:2e:59:8b:31:cd:fe:87:72:22:e5:87:39:9c:
9d:3f:0a:f3:62:f3:0b:e4:4f:d0:55:3e:95:4f:67:
08:39:3d:19:2a:2d:42:26:3d:b0:ec:c9:48:85:e0:
a1:76:80:dd:4f:65:ab:ab:a7:af:7a:e7:9b:ac:68:
dd:6e:5b:ec:af:c6:2a:91:98:2f:17:ba:9b:5e:57:
c2:0e:4d:e5:dd:29:0c:3d:02:cc:4e:14:db:4b:70:
98:c2:77:39:66:32:b0:a6:a5:af:be:75:e2:f6:f4:
bb:74:3a:5f:5e:9d:5a:10:e8:a3:0b:4b:bd:ff:f8:
b5:3a:93:af:07:c3:ac:4a:14:0c:cf:81:54:24:b3:
60:3e:93:00:84:03:41:58:47:58:cf:c1:03:48:41:
02:83:94:fc:98:62:84:56:c1:26:0e:61:b9:02:2f:
35:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:89:76:C1:1D:04:E1:2F:81:A3:55:AC:D0:ED:9D:A8:41:E2:F9:C3
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e0:27:83:6d:6d:6d:d7:b2:ab:8a:86:ec:95:62:31:d2:cb:
d0:14:bd:5c:af:7d:6b:98:6e:f7:50:7e:a9:63:70:9d:07:3e:
3a:7c:eb:2e:65:4d:21:cc:b7:56:3b:33:32:3c:7d:7f:8c:9c:
7c:79:63:a0:a6:f5:5f:8f:56:17:ee:14:a2:cb:54:03:f3:ae:
df:61:c7:e9:ce:6c:1a:7f:3d:d1:68:5c:42:fb:71:f8:c9:bb:
fa:2d:68:ea:1a:35:6b:87:10:f3:3f:d9:10:3e:8d:f2:61:52:
33:00:78:49:b7:2f:cc:68:38:82:ff:a8:0a:2f:fa:88:4c:48:
d8:99:97:a0:ef:39:48:5b:58:b8:18:c4:8f:ea:50:d5:43:10:
05:bb:05:2a:b0:3b:b2:9c:66:eb:4a:42:79:a0:f7:a0:cd:ab:
a6:36:1c:4b:42:b0:40:21:41:26:fc:5f:82:44:7b:a4:ab:af:
f3:65:75:93:27:03:37:c1:97:e1:e9:6f:e7:14:c1:27:f5:6e:
21:04:a3:2e:ce:af:90:c9:30:ae:a3:c9:7e:59:1f:00:eb:4f:
0f:45:49:f0:87:17:00:96:ed:bb:a7:44:2e:cd:26:7d:b1:1c:
c2:e2:96:3e:ac:f0:fe:56:4f:d4:6e:27:83:78:82:64:6f:a0:
57:d5:51:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAVOfolNwGeb30s5FWFZioMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZDA4NzVjZDAwNTFkMGMwOTI1YWNhMDQxMDM0ZTc4NDBh
Njc3MGIwHhcNMjUwODA2MTcwMTQ0WhcNMjUwODA3MTcwMTQ0WjAzMTEwLwYDVQQD
EygyODg5NzZjMTFkMDRlMTJmODFhMzU1YWNkMGVkOWRhODQxZTJmOWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3onhPaiz7wvWpcYlw8yAqkgnBPx3
hJeSDMlEEBtmznTSNkONiLHo/RdO9kQcFYUUAa/LzLj9pE2fpgUIlZq5bhk0J2uK
6yXxh79P+w0CukcLEfQOD2noDbUEyS5ZizHN/odyIuWHOZydPwrzYvML5E/QVT6V
T2cIOT0ZKi1CJj2w7MlIheChdoDdT2Wrq6eveuebrGjdblvsr8YqkZgvF7qbXlfC
Dk3l3SkMPQLMThTbS3CYwnc5ZjKwpqWvvnXi9vS7dDpfXp1aEOijC0u9//i1OpOv
B8OsShQMz4FUJLNgPpMAhANBWEdYz8EDSEECg5T8mGKEVsEmDmG5Ai816wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCiJdsEdBOEvgaNVrNDtnahB4vnDMB8GA1UdIwQY
MBaAFB/Qh1zQBR0MCSWsoEEDTnhApncLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMt
ZTA4MDJmNDc0NDQ0LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMtZTA4MDJmNDc0NDQ0
LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADeAng21t
bdeyq4qG7JViMdLL0BS9XK99a5hu91B+qWNwnQc+OnzrLmVNIcy3VjszMjx9f4yc
fHljoKb1X49WF+4UostUA/Ou32HH6c5sGn890WhcQvtx+Mm7+i1o6ho1a4cQ8z/Z
ED6N8mFSMwB4SbcvzGg4gv+oCi/6iExI2JmXoO85SFtYuBjEj+pQ1UMQBbsFKrA7
spxm60pCeaD3oM2rpjYcS0KwQCFBJvxfgkR7pKuv82V1kycDN8GX4elv5xTBJ/Vu
IQSjLs6vkMkwrqPJflkfAOtPD0VJ8IcXAJbtu6dELs0mfbEcwuKWPqzw/lZP1G4n
g3iCZG+gV9VR5g==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:52:00 2025 by rpki-client