Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: NrrcMgAlrdBHhjOV+3gkdLcJ3rZPsObQk6vr4TJL/W8=
Subject key identifier: F4:27:27:F4:63:A2:A9:08:48:CD:3B:9F:56:79:19:FC:87:D8:48:3D
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 0197790AADF7C578BF467AD7F3FA9076DD8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 1597
Signing time: Mon 16 Jun 2025 14:00:32 +0000
Manifest this update: Mon 16 Jun 2025 14:00:32 +0000
Manifest next update: Tue 17 Jun 2025 14:00:32 +0000
Files and hashes: 1: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: 86kFX4Cmz/dzawXkLbBDHyighrJ8sYEgjdl3/b1h2wo=)
2: xSS92RJP_9kDYA2uBQZz6tpYK1I.roa (hash: rR5n4U9xDx2H85hw0wOs3NY+BK3tAcVO4QlJE3rUQXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:0a:ad:f7:c5:78:bf:46:7a:d7:f3:fa:90:76:dd:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Jun 16 14:00:32 2025 GMT
Not After : Jun 17 14:00:32 2025 GMT
Subject: CN=f42727f463a2a90848cd3b9f567919fc87d8483d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:dd:9c:81:4d:3c:f7:12:0c:a4:2c:29:45:
7f:28:12:af:58:18:7b:a3:76:a7:4e:dc:d0:43:01:
4a:b5:18:c1:87:2e:a0:85:aa:43:f0:72:47:e9:ef:
5f:07:40:c8:c6:57:9a:e0:0f:6a:1c:3c:47:85:12:
74:6b:21:da:fd:39:28:a8:37:a8:b6:34:36:5e:80:
f1:6f:d5:df:8c:54:7f:ce:2d:2d:4b:4c:10:80:5d:
24:59:1d:15:03:4a:ad:d7:b7:e6:ca:d6:1f:39:93:
8e:37:4a:26:1d:2f:a3:24:f9:9f:5a:33:29:33:0e:
a4:d3:4a:5f:97:14:86:4c:a2:bf:c8:8f:3a:d0:48:
83:f2:db:91:d7:8d:a1:b2:44:96:06:2e:a6:6f:96:
14:18:25:c3:f9:1e:6f:60:77:f6:b7:a4:63:c0:a2:
b4:01:40:8e:28:b1:87:12:58:e0:77:13:1e:f0:34:
20:ed:9f:3f:77:3e:66:a4:f9:8b:8c:e4:78:a6:ea:
0b:43:a1:db:d0:a8:bf:1c:48:35:39:b2:25:26:77:
6f:15:98:e8:17:ce:75:c1:42:ff:86:f8:11:ce:ad:
88:75:84:58:2d:b2:ab:04:4e:4b:d4:1d:06:a8:07:
e7:1c:1d:0a:65:4a:6e:92:85:f3:a9:e8:5b:58:0b:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:27:27:F4:63:A2:A9:08:48:CD:3B:9F:56:79:19:FC:87:D8:48:3D
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:f0:f6:78:e5:d8:fa:75:3d:2c:7d:4d:34:3b:6b:e9:ae:fa:
c5:ca:0b:7f:88:79:8b:2f:1e:b1:eb:7a:22:e3:a9:80:e0:ba:
f7:2f:e4:2b:97:cb:1e:35:a3:41:af:ba:08:21:fa:af:74:0a:
ee:6b:c6:3a:33:24:f3:2e:d6:77:80:35:f2:64:59:52:dc:b9:
8f:0f:72:11:01:17:eb:7a:59:70:99:de:02:7b:90:23:f9:06:
28:c3:cb:17:9e:d7:af:4e:8d:07:f5:ab:26:af:3e:ef:5b:45:
7c:81:be:e4:64:94:a9:43:ea:08:b2:99:69:69:3c:69:de:e2:
94:78:46:31:0e:5d:2d:27:8e:ac:54:fc:e3:9b:3c:d7:4c:9d:
30:b2:1d:e8:db:4d:26:37:fd:47:9e:a9:2a:1b:0c:b6:35:ff:
7c:42:f2:67:a3:2a:fa:e0:5e:0c:cf:22:bd:f6:30:73:57:9b:
46:57:a3:b0:2a:01:d6:96:5a:e9:4e:7a:24:24:70:49:81:46:
cb:8d:9f:fd:0b:84:1c:fb:c2:c7:4f:fe:fd:83:9e:9a:bf:bd:
9a:92:f6:83:9d:c3:e0:63:2b:17:ea:05:60:1c:b2:5c:b2:7e:
33:b5:48:aa:ae:7a:fe:8a:c5:9d:3b:3d:e1:57:81:3c:a5:65:
60:b4:ae:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd5Cq33xXi/RnrX8/qQdt2PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NGFiZDQzNWY4OTlkNTcwYThlNWZiODNiZGFkMTE1MzQ1
NWRlZTAwHhcNMjUwNjE2MTQwMDMyWhcNMjUwNjE3MTQwMDMyWjAzMTEwLwYDVQQD
EyhmNDI3MjdmNDYzYTJhOTA4NDhjZDNiOWY1Njc5MTlmYzg3ZDg0ODNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAos/dnIFNPPcSDKQsKUV/KBKvWBh7
o3anTtzQQwFKtRjBhy6ghapD8HJH6e9fB0DIxlea4A9qHDxHhRJ0ayHa/TkoqDeo
tjQ2XoDxb9XfjFR/zi0tS0wQgF0kWR0VA0qt17fmytYfOZOON0omHS+jJPmfWjMp
Mw6k00pflxSGTKK/yI860EiD8tuR142hskSWBi6mb5YUGCXD+R5vYHf2t6RjwKK0
AUCOKLGHEljgdxMe8DQg7Z8/dz5mpPmLjOR4puoLQ6Hb0Ki/HEg1ObIlJndvFZjo
F851wUL/hvgRzq2IdYRYLbKrBE5L1B0GqAfnHB0KZUpukoXzqehbWAvgjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQnJ/RjoqkISM07n1Z5GfyH2Eg9MB8GA1UdIwQY
MBaAFIZKvUNfiZ1XCo5fuDva0RU0Vd7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGtxOVExLUpuVmNLamwtNE85clJGVFJWM3VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zZjEzM2YtMWM4MS00YTRiLWEyNTUt
M2UzNjQ2NTkxYWEwLzEvaGtxOVExLUpuVmNLamwtNE85clJGVFJWM3VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zZjEzM2YtMWM4MS00YTRiLWEyNTUtM2UzNjQ2NTkxYWEw
LzEvaGtxOVExLUpuVmNLamwtNE85clJGVFJWM3VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABfD2eOXY
+nU9LH1NNDtr6a76xcoLf4h5iy8eset6IuOpgOC69y/kK5fLHjWjQa+6CCH6r3QK
7mvGOjMk8y7Wd4A18mRZUty5jw9yEQEX63pZcJneAnuQI/kGKMPLF57Xr06NB/Wr
Jq8+71tFfIG+5GSUqUPqCLKZaWk8ad7ilHhGMQ5dLSeOrFT845s810ydMLId6NtN
Jjf9R56pKhsMtjX/fELyZ6Mq+uBeDM8ivfYwc1ebRlejsCoB1pZa6U56JCRwSYFG
y42f/QuEHPvCx0/+/YOemr+9mpL2g53D4GMrF+oFYByyXLJ+M7VIqq56/orFnTs9
4VeBPKVlYLSukA==
-----END CERTIFICATE-----
Generated at Tue Jun 17 00:19:03 2025 by rpki-client