Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: uA1i73vUQ6cz488s1Y4AtAb8ObN0Sgf5xJvqJ3+3dpY=
Subject key identifier: DF:0D:DB:E1:AB:B3:37:83:56:9B:C2:A9:50:5E:5E:D8:52:76:B5:D4
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019768F326E394270EEC9DF67E156151AD0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0AAE
Signing time: Fri 13 Jun 2025 11:00:55 +0000
Manifest this update: Fri 13 Jun 2025 11:00:55 +0000
Manifest next update: Sat 14 Jun 2025 11:00:55 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: u7jgELP+WQSNjWuVXAJfV1huy4NK5h3g4k+MajsfQ7c=)
2: cnFeqHBw9aaza2RenBeNwJKndxs.roa (hash: kjgI4uTxYMi7MCfdj3M5XWKqSFRmZG0IxbqIvN1jC7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f3:26:e3:94:27:0e:ec:9d:f6:7e:15:61:51:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Jun 13 11:00:55 2025 GMT
Not After : Jun 14 11:00:55 2025 GMT
Subject: CN=df0ddbe1abb33783569bc2a9505e5ed85276b5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:32:10:cb:4d:0d:28:44:70:44:ca:71:c6:14:
82:f3:a0:a9:2d:59:1a:19:d4:fa:ac:c5:4e:8b:42:
14:d7:0a:c1:a8:3a:1a:57:8d:a0:47:7f:26:f1:33:
b7:c6:be:f3:7c:8b:32:8d:04:00:f5:11:75:71:06:
d8:83:28:07:68:ff:09:3e:ed:ce:c6:d4:f9:90:d1:
ff:6b:06:c8:ca:cb:75:71:da:ff:c2:e5:46:b1:64:
fc:bd:18:d0:43:5d:f7:b4:fd:95:3c:7e:f5:97:0a:
b6:e9:69:1e:77:86:20:bd:37:a9:e8:e5:6d:82:56:
ef:d2:cb:0c:0f:a2:94:ff:29:49:14:53:f9:47:dd:
e0:88:6b:43:06:00:89:86:f1:e3:c2:ed:46:4a:cb:
e4:66:34:d4:95:74:5e:8f:2e:91:2d:29:23:3d:ef:
a8:9c:f5:65:bf:c5:a8:09:6e:bd:db:99:4f:ef:e1:
18:ef:05:b1:77:75:98:2d:9f:1f:2e:e6:b3:84:fd:
26:12:39:ac:ca:e7:81:22:66:0e:29:13:b1:47:43:
9c:f8:d3:23:28:85:b6:42:8c:de:31:c5:02:09:2c:
3b:6e:39:40:58:f3:d4:19:0a:a5:70:71:20:97:13:
67:8f:c5:2d:12:2e:3d:26:da:9d:b7:91:34:d6:dc:
47:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:0D:DB:E1:AB:B3:37:83:56:9B:C2:A9:50:5E:5E:D8:52:76:B5:D4
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:d9:a5:9c:f1:1f:a6:06:c5:f2:4b:53:bb:4f:60:de:37:49:
00:37:a7:8c:bd:c9:8e:05:06:ac:d0:13:8e:65:46:57:79:7e:
09:7f:c1:cf:80:49:d7:4d:6f:31:74:0e:a2:18:84:ba:8d:dc:
48:d7:5f:b5:e4:d7:13:e0:0f:2f:12:d9:b0:d4:3f:fd:e5:a1:
9f:42:36:ad:03:76:df:1e:3c:c6:53:29:ab:34:f6:4a:d7:da:
f5:5e:91:ec:e8:f1:01:8d:ba:90:5d:01:05:83:7b:60:3d:b5:
08:81:34:8c:31:2a:ee:bb:84:be:fa:66:1f:b2:be:ce:39:a3:
ea:1f:b8:1e:8f:16:51:cc:94:b2:a0:8f:91:a7:dd:0b:ef:43:
11:7a:59:90:17:ce:bf:2d:f4:00:eb:d3:aa:f2:35:37:9b:6e:
e2:bd:24:7a:ac:2e:f0:1d:b5:85:90:c7:bc:cf:df:8d:f7:cf:
d2:47:04:fb:11:50:18:7f:56:d1:df:0b:22:92:42:47:48:18:
11:b4:de:13:40:d6:f1:c5:b3:16:bc:94:8f:b3:f9:5d:22:b6:
ee:14:2f:b6:2b:70:a6:b7:0f:99:9e:94:81:b0:3b:46:a3:9c:
a2:63:d3:88:c0:48:60:d7:15:74:38:70:35:e6:1d:b7:0e:35:
b0:59:78:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdo8ybjlCcO7J32fhVhUa0MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMDI2MDQwNmU4MzdhZTM4MzgwZmNjOGQ5OTJiOTNkMGRl
MWE4M2IwHhcNMjUwNjEzMTEwMDU1WhcNMjUwNjE0MTEwMDU1WjAzMTEwLwYDVQQD
EyhkZjBkZGJlMWFiYjMzNzgzNTY5YmMyYTk1MDVlNWVkODUyNzZiNWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DIQy00NKERwRMpxxhSC86CpLVka
GdT6rMVOi0IU1wrBqDoaV42gR38m8TO3xr7zfIsyjQQA9RF1cQbYgygHaP8JPu3O
xtT5kNH/awbIyst1cdr/wuVGsWT8vRjQQ133tP2VPH71lwq26Wked4YgvTep6OVt
glbv0ssMD6KU/ylJFFP5R93giGtDBgCJhvHjwu1GSsvkZjTUlXRejy6RLSkjPe+o
nPVlv8WoCW6925lP7+EY7wWxd3WYLZ8fLuazhP0mEjmsyueBImYOKROxR0Oc+NMj
KIW2QozeMcUCCSw7bjlAWPPUGQqlcHEglxNnj8UtEi49Jtqdt5E01txHpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN8N2+GrszeDVpvCqVBeXthSdrXUMB8GA1UdIwQY
MBaAFB0CYEBug3rjg4D8yNmSuT0N4ag7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zNDAwMzEtMzY1Yi00ZmQyLTg3MzIt
OGMwZmFjYTNjYmQ4LzEvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8zNDAwMzEtMzY1Yi00ZmQyLTg3MzItOGMwZmFjYTNjYmQ4
LzEvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAItmlnPEf
pgbF8ktTu09g3jdJADenjL3JjgUGrNATjmVGV3l+CX/Bz4BJ101vMXQOohiEuo3c
SNdfteTXE+APLxLZsNQ//eWhn0I2rQN23x48xlMpqzT2Stfa9V6R7OjxAY26kF0B
BYN7YD21CIE0jDEq7ruEvvpmH7K+zjmj6h+4Ho8WUcyUsqCPkafdC+9DEXpZkBfO
vy30AOvTqvI1N5tu4r0keqwu8B21hZDHvM/fjffP0kcE+xFQGH9W0d8LIpJCR0gY
EbTeE0DW8cWzFryUj7P5XSK27hQvtitwprcPmZ6UgbA7RqOcomPTiMBIYNcVdDhw
NeYdtw41sFl4BQ==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:22:39 2025 by rpki-client