Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier: J7aSweeWzHvOliVKWz4TgBelOTYzkGIqaABhcDsxeqM=
Subject key identifier: F5:B9:F7:A1:71:F6:68:97:FA:EC:C2:0B:27:63:B7:89:C4:84:9F:67
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial: 019776E60B2FB1FA3ED76C390EAF837A4CA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number: 08C6
Signing time: Mon 16 Jun 2025 04:01:16 +0000
Manifest this update: Mon 16 Jun 2025 04:01:16 +0000
Manifest next update: Tue 17 Jun 2025 04:01:16 +0000
Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: kDIyyQb4rOuu2Ms7V62VO1K6eWsu0E8s7GuNXCkXBxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:e6:0b:2f:b1:fa:3e:d7:6c:39:0e:af:83:7a:4c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Validity
Not Before: Jun 16 04:01:16 2025 GMT
Not After : Jun 17 04:01:16 2025 GMT
Subject: CN=f5b9f7a171f66897faecc20b2763b789c4849f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:97:d5:64:aa:62:37:f5:b4:5b:01:86:2c:8c:
02:eb:53:22:20:7b:c9:cd:3b:44:82:bb:90:03:99:
36:d7:f4:0d:22:3d:70:b6:b1:49:03:a8:78:7c:07:
bf:f5:2e:18:71:2e:89:11:09:d5:8a:73:a8:14:3e:
68:9c:99:10:d3:bc:b8:2a:0e:8e:18:02:27:ab:ba:
6d:c5:b8:40:0e:b7:f0:e2:b7:da:af:1c:52:76:6d:
f5:6f:14:61:8f:7a:86:84:27:4d:98:05:3e:aa:7d:
92:6b:73:27:11:51:fa:ed:58:bc:19:98:fb:25:4f:
8d:32:55:c0:c5:7a:be:98:29:6f:e0:94:e4:48:a5:
10:f2:49:55:9b:26:b9:34:05:18:23:7f:d2:4d:12:
b2:00:f6:8e:87:c2:2a:f9:84:99:6b:b1:82:a9:6b:
c1:cf:ca:0f:95:6e:71:e3:fe:bf:18:8e:d4:b1:d8:
f3:66:3d:dc:ab:4e:38:b5:26:eb:90:9e:0d:f8:ef:
7c:d7:2b:84:ba:43:59:11:f7:a6:3c:fb:1b:22:e8:
66:38:40:df:ae:7f:65:03:02:b6:5c:6e:2c:3a:11:
23:18:0c:4d:b6:80:1f:66:64:b0:10:a4:d4:d4:a8:
f2:10:36:98:e8:50:3f:ba:82:c8:31:53:b3:7c:c6:
fd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B9:F7:A1:71:F6:68:97:FA:EC:C2:0B:27:63:B7:89:C4:84:9F:67
X509v3 Authority Key Identifier:
keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:8e:fe:8d:59:c8:44:37:28:fa:a2:89:db:35:87:d4:17:58:
37:37:72:30:df:e9:ca:27:92:5f:24:87:9c:cc:ed:f1:61:e2:
89:d2:dc:73:69:fd:93:f2:7c:3c:14:1f:d4:1e:8e:60:75:63:
47:9b:7d:d7:68:a5:f0:a4:ed:fc:e6:7a:48:ac:5f:6e:64:4b:
8b:db:21:d2:e7:79:9d:0b:68:52:df:ab:c4:c2:48:3c:84:2d:
cd:cd:dd:51:3b:a4:1b:4e:9b:aa:4f:f4:73:7e:3a:96:3f:0a:
f3:95:b4:d1:a3:a9:40:9d:f8:7a:44:8b:52:9e:ce:65:1a:03:
27:85:55:d3:91:6b:be:ac:17:22:a0:ba:c3:44:05:30:b8:e8:
38:63:71:ad:ef:05:d5:15:0a:0d:f7:26:d5:9d:67:3d:a9:41:
ba:53:88:d8:51:a4:f8:cf:b2:fb:94:ad:5d:4d:33:2d:48:c8:
19:86:38:17:76:98:2e:50:be:e2:2d:33:a7:49:b0:c5:39:dd:
8d:91:56:73:db:d0:2c:29:53:d6:2f:ef:06:bc:6a:ea:e6:f7:
61:fa:f9:b6:bb:f4:17:f1:56:8f:ef:0d:0e:ee:e1:c1:8d:09:
d6:ed:46:d8:fd:3d:45:dc:d6:f1:4e:81:1c:ba:0a:b5:cf:04:
f0:23:90:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd25gsvsfo+12w5Dq+DekygMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMDFhNjdiMGNkMWIyOTUxNTg5NGVjZTk2YjUyZWFjYmUw
NDFiZDQwHhcNMjUwNjE2MDQwMTE2WhcNMjUwNjE3MDQwMTE2WjAzMTEwLwYDVQQD
EyhmNWI5ZjdhMTcxZjY2ODk3ZmFlY2MyMGIyNzYzYjc4OWM0ODQ5ZjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpfVZKpiN/W0WwGGLIwC61MiIHvJ
zTtEgruQA5k21/QNIj1wtrFJA6h4fAe/9S4YcS6JEQnVinOoFD5onJkQ07y4Kg6O
GAInq7ptxbhADrfw4rfarxxSdm31bxRhj3qGhCdNmAU+qn2Sa3MnEVH67Vi8GZj7
JU+NMlXAxXq+mClv4JTkSKUQ8klVmya5NAUYI3/STRKyAPaOh8Iq+YSZa7GCqWvB
z8oPlW5x4/6/GI7UsdjzZj3cq044tSbrkJ4N+O981yuEukNZEfemPPsbIuhmOEDf
rn9lAwK2XG4sOhEjGAxNtoAfZmSwEKTU1KjyEDaY6FA/uoLIMVOzfMb9tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPW596Fx9miX+uzCCydjt4nEhJ9nMB8GA1UdIwQY
MBaAFB8BpnsM0bKVFYlOzpa1Lqy+BBvUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHdHbWV3elJzcFVWaVU3T2xyVXVyTDRFRzlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lYTJlOTMtMzFkMC00OGFkLTg3ZWMt
YmRjMTE3MTIyZWZiLzEvSHdHbWV3elJzcFVWaVU3T2xyVXVyTDRFRzlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9lYTJlOTMtMzFkMC00OGFkLTg3ZWMtYmRjMTE3MTIyZWZi
LzEvSHdHbWV3elJzcFVWaVU3T2xyVXVyTDRFRzlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMo7+jVnI
RDco+qKJ2zWH1BdYNzdyMN/pyieSXySHnMzt8WHiidLcc2n9k/J8PBQf1B6OYHVj
R5t912il8KTt/OZ6SKxfbmRLi9sh0ud5nQtoUt+rxMJIPIQtzc3dUTukG06bqk/0
c346lj8K85W00aOpQJ34ekSLUp7OZRoDJ4VV05FrvqwXIqC6w0QFMLjoOGNxre8F
1RUKDfcm1Z1nPalBulOI2FGk+M+y+5StXU0zLUjIGYY4F3aYLlC+4i0zp0mwxTnd
jZFWc9vQLClT1i/vBrxq6ub3Yfr5trv0F/FWj+8NDu7hwY0J1u1G2P09RdzW8U6B
HLoKtc8E8COQwA==
-----END CERTIFICATE-----
Generated at Mon Jun 16 10:33:25 2025 by rpki-client