Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json)
Hash identifier: Rh0ngfT/0Vf0NvmKvtPR+eOSKa+A+TJ5qp7qDGofdkg=
Subject key identifier: 29:39:BA:9B:7A:18:48:1F:C2:F1:22:D0:13:9C:17:F9:B6:91:79:90
Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Certificate serial: 01987298C3491148B888C309A27004CD4F3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
Manifest number: 0599
Signing time: Mon 04 Aug 2025 01:01:10 +0000
Manifest this update: Mon 04 Aug 2025 01:01:10 +0000
Manifest next update: Tue 05 Aug 2025 01:01:10 +0000
Files and hashes: 1: GNR7fo6zYUZ0aZ61h9x_BF8llVA.roa (hash: CFopZ6dmtVSvrmIdzz/ovM49rlPrGJS+jY6gLGQSqVo=)
2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: 0KxGiX1Mt3SOQTA/IPdR4C10umRH1V4PriNRG1eCOz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:c3:49:11:48:b8:88:c3:09:a2:70:04:cd:4f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282
Validity
Not Before: Aug 4 01:01:10 2025 GMT
Not After : Aug 5 01:01:10 2025 GMT
Subject: CN=2939ba9b7a18481fc2f122d0139c17f9b6917990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:56:17:d7:9a:cf:53:39:dc:5d:29:d2:63:6a:
fb:4a:7e:0d:aa:b1:96:77:ed:4f:d3:0e:1f:ce:19:
90:0e:39:e1:12:85:44:57:55:fc:a1:ae:ac:d1:a9:
12:21:3a:51:a2:96:85:26:c5:5b:3d:e1:d4:d4:44:
2a:75:d2:25:80:9e:dd:b3:6a:90:c6:b5:5a:da:83:
13:df:fc:96:d8:66:4f:9d:03:5b:5d:89:94:88:cc:
c0:98:b0:97:c3:bd:f5:ec:4a:05:9f:44:85:b5:3f:
de:8d:99:a9:cb:6b:3d:6e:21:d4:64:9e:13:28:db:
84:41:9c:de:7b:8b:5e:c4:a2:8f:50:76:ab:d2:01:
b4:60:7a:4a:8c:bb:14:a7:b3:fd:87:91:7a:64:97:
7f:10:5a:6b:2c:f7:68:1c:37:74:bd:98:d6:0f:b3:
71:1c:60:a0:9a:9b:07:5c:9a:71:ff:eb:5a:34:0d:
5c:66:fe:ba:71:02:40:ce:1a:2e:22:da:44:b0:2c:
ee:ea:8f:19:1d:ce:c2:b7:17:b4:9b:a4:e0:de:45:
5a:df:2a:6b:bb:19:2c:a3:7a:ef:ef:f2:87:0f:03:
24:1e:c9:87:a5:8d:e4:a2:66:17:82:37:b7:25:28:
5e:cc:44:37:06:9b:04:31:4e:70:b2:1b:fd:93:08:
68:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:39:BA:9B:7A:18:48:1F:C2:F1:22:D0:13:9C:17:F9:B6:91:79:90
X509v3 Authority Key Identifier:
keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:08:c9:35:a0:70:89:43:05:15:bc:4b:60:2d:49:fe:2a:41:
95:ce:c0:47:06:da:10:7c:73:4a:91:ae:76:e8:98:0f:3a:ea:
3b:17:ae:2b:da:02:c1:58:b4:de:55:8e:b0:fd:32:f7:a5:e4:
a3:82:1d:bf:af:c4:a7:17:e2:50:db:29:dc:07:3c:e0:bf:f3:
d7:ed:ff:79:60:bf:97:61:3d:50:43:e8:6f:9e:68:83:26:70:
e5:04:f6:7c:e9:8d:cc:de:7d:fe:70:0a:8c:70:01:e9:d6:4d:
9f:90:d3:ee:a6:76:65:1d:52:38:61:97:e0:7e:e6:13:02:e3:
7b:e8:33:0f:23:1c:45:6b:cf:c7:ff:cd:b6:cd:d3:1c:a1:05:
7e:f8:cf:e3:0b:fd:73:86:24:88:d7:88:90:94:2a:7e:42:84:
98:9d:25:34:22:85:90:46:ad:e6:c9:58:38:3b:a8:34:45:d3:
40:39:1b:0b:6e:d0:2a:b4:b5:22:0f:96:d0:31:7d:42:03:fd:
99:63:cc:b6:cd:75:cc:fb:7f:d2:83:ba:3f:fa:1e:ee:1b:8b:
63:e1:56:71:9e:cf:22:8e:d7:1b:96:75:52:40:67:17:98:11:
a8:a4:98:e3:97:11:e5:ed:fb:00:37:f9:cd:8c:f1:13:4d:e5:
d7:f1:01:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhymMNJEUi4iMMJonAEzU86MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1YWNmYjlhZDNhNTBjZTE1MzMxY2ZmNGViYTg4YmNjMDdi
N2EyODIwHhcNMjUwODA0MDEwMTEwWhcNMjUwODA1MDEwMTEwWjAzMTEwLwYDVQQD
EygyOTM5YmE5YjdhMTg0ODFmYzJmMTIyZDAxMzljMTdmOWI2OTE3OTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFYX15rPUzncXSnSY2r7Sn4NqrGW
d+1P0w4fzhmQDjnhEoVEV1X8oa6s0akSITpRopaFJsVbPeHU1EQqddIlgJ7ds2qQ
xrVa2oMT3/yW2GZPnQNbXYmUiMzAmLCXw7317EoFn0SFtT/ejZmpy2s9biHUZJ4T
KNuEQZzee4texKKPUHar0gG0YHpKjLsUp7P9h5F6ZJd/EFprLPdoHDd0vZjWD7Nx
HGCgmpsHXJpx/+taNA1cZv66cQJAzhouItpEsCzu6o8ZHc7Ctxe0m6Tg3kVa3ypr
uxkso3rv7/KHDwMkHsmHpY3komYXgje3JShezEQ3BpsEMU5wshv9kwho5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCk5upt6GEgfwvEi0BOcF/m2kXmQMB8GA1UdIwQY
MBaAFIWs+5rTpQzhUzHP9Ouoi8wHt6KCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgt
NmQ3N2YwNjVhMmMzLzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgtNmQ3N2YwNjVhMmMz
LzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbQjJNaBw
iUMFFbxLYC1J/ipBlc7ARwbaEHxzSpGuduiYDzrqOxeuK9oCwVi03lWOsP0y96Xk
o4Idv6/EpxfiUNsp3Ac84L/z1+3/eWC/l2E9UEPob55ogyZw5QT2fOmNzN59/nAK
jHAB6dZNn5DT7qZ2ZR1SOGGX4H7mEwLje+gzDyMcRWvPx//Nts3THKEFfvjP4wv9
c4YkiNeIkJQqfkKEmJ0lNCKFkEat5slYODuoNEXTQDkbC27QKrS1Ig+W0DF9QgP9
mWPMts11zPt/0oO6P/oe7huLY+FWcZ7PIo7XG5Z1UkBnF5gRqKSY45cR5e37ADf5
zYzxE03l1/EBvA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:40 2025 by rpki-client