Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json)
Hash identifier: XVV3C3KfGUdjn/ZncRo698AQpVkhrKNz61t50e5HskI=
Subject key identifier: 1A:7B:2D:C4:8E:05:12:2C:0C:9B:D1:BF:26:68:39:D7:0A:FA:A7:ED
Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Certificate serial: 019688497E5316976C6F5897889D6F5A1C31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
Manifest number: 1520
Signing time: Wed 30 Apr 2025 20:00:39 +0000
Manifest this update: Wed 30 Apr 2025 20:00:39 +0000
Manifest next update: Thu 01 May 2025 20:00:39 +0000
Files and hashes: 1: 1a8VrRBxuEM9gIitWA-MTYGiH6k.roa (hash: o75BqB590sV6r1bb5EcguY1B6QE3rDYfVkZNGdgh7Sw=)
2: 5xOfslnPq8-oHcDS47I_csGpD8Q.roa (hash: 4dFQELulj6P8yjTGdV2+DXhC0ieIeLQi8X9meQWips0=)
3: DCocrInE23WH5yhpx0FXxrNY7_Y.roa (hash: O6VU1JCrRAIS6a+yNeHmYk7E8wYytQ8Lu8b/Fc+fOqI=)
4: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: n9Sdmaee0GpGidwhac0InRJScsDAPtkNfIrGg//Q5t8=)
5: du6DBdKlb1Cr5Z5mqlctF2rW68k.roa (hash: XaoP28uRsMgk856VCX7c/74Lo2ezwg/z+6hQ43OafIc=)
6: gvR46ytTmKrRi4maCYGnQqf4WI8.roa (hash: ViNC6FNBy9cckM8WILnCXIRpeOOtSFGRhOo8i05WQf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:49:7e:53:16:97:6c:6f:58:97:88:9d:6f:5a:1c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Validity
Not Before: Apr 30 20:00:39 2025 GMT
Not After : May 1 20:00:39 2025 GMT
Subject: CN=1a7b2dc48e05122c0c9bd1bf266839d70afaa7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d7:55:76:11:36:88:ac:0f:b7:2e:65:89:49:
bc:0e:ae:2a:e9:af:23:6f:cb:dd:3b:68:83:ba:ed:
89:b7:7b:11:b2:c1:32:d0:82:c6:f5:73:3b:ff:bf:
2c:5b:7d:d9:a8:a4:c9:1f:d0:d9:47:e0:3e:55:7f:
9e:23:9e:95:99:c2:7e:94:5b:fd:01:22:1b:33:be:
10:35:a4:fa:ba:f6:30:90:57:fa:81:80:c9:4b:dd:
84:90:10:95:bc:da:b7:09:69:59:0b:d0:0f:d8:e1:
77:84:cf:1b:e4:26:cf:f1:d2:d9:06:93:3b:7e:17:
9e:17:d7:33:4c:ae:81:60:45:b1:d9:a8:e6:2a:25:
bb:25:ed:f2:0f:bc:cd:ec:53:84:ec:e8:fd:15:b4:
f1:6d:ae:92:d1:2b:ed:7e:4c:f6:d5:92:e9:1d:14:
9e:3d:38:fd:fd:5d:e7:01:a1:ee:c4:a1:27:ab:91:
e3:77:f4:a4:af:c7:ce:34:f7:3e:12:20:33:fa:09:
eb:6a:9a:d2:0f:cc:fe:0d:30:a0:02:06:0d:fd:f4:
26:00:2d:66:ec:81:29:5a:0b:3f:d8:8b:9b:75:9f:
62:07:6b:c7:e6:44:e5:91:69:23:e8:f6:7c:11:29:
47:24:3a:18:08:91:4f:dd:aa:28:b9:43:e9:a4:70:
d5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7B:2D:C4:8E:05:12:2C:0C:9B:D1:BF:26:68:39:D7:0A:FA:A7:ED
X509v3 Authority Key Identifier:
keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:70:0a:07:10:dd:54:12:76:c2:46:1b:1e:37:64:1e:bb:21:
0c:d2:f1:14:6a:b8:ab:c9:0e:d9:ed:1c:c9:4c:55:1d:1f:63:
fc:47:39:e6:b5:be:4b:84:76:4a:64:0b:ca:09:45:6b:80:5f:
6c:01:cd:f8:7a:27:5c:64:00:84:28:d2:4f:9c:53:3a:67:38:
78:04:a6:28:15:ec:1c:0f:4b:b9:88:83:0e:8e:51:ef:0d:9b:
9e:3d:ef:ff:51:f6:b2:59:77:38:40:3d:a6:63:01:f8:48:f9:
66:bf:19:68:53:c5:db:f4:23:79:d5:82:49:a7:b8:da:7c:27:
22:d4:43:6f:db:98:b9:ca:cb:4d:7a:5b:43:86:8b:2f:1f:62:
81:30:89:26:56:a3:9d:ea:ba:48:16:00:bb:d1:71:3c:0c:ed:
7f:35:21:ac:e6:c8:5d:bd:f3:fa:2d:d2:d6:46:59:3b:d7:de:
04:55:b5:95:37:7a:08:c2:ea:4e:17:bd:a9:2d:95:a5:a5:4b:
6c:b5:66:f9:3c:90:89:da:76:1a:e8:4d:8a:b8:c6:7c:64:c1:
10:e7:68:18:40:96:97:58:90:27:24:5c:b2:8d:fb:40:de:35:
f1:8f:96:2f:34:1d:3e:a6:21:a6:bc:17:f6:ab:40:1a:29:22:
73:d8:2a:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaISX5TFpdsb1iXiJ1vWhwxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkODYyNjc0OWNiZjg0YmNmNDJlYmIyOTg1Yjg2ZGVlODMw
ZTVjMTQwHhcNMjUwNDMwMjAwMDM5WhcNMjUwNTAxMjAwMDM5WjAzMTEwLwYDVQQD
EygxYTdiMmRjNDhlMDUxMjJjMGM5YmQxYmYyNjY4MzlkNzBhZmFhN2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjddVdhE2iKwPty5liUm8Dq4q6a8j
b8vdO2iDuu2Jt3sRssEy0ILG9XM7/78sW33ZqKTJH9DZR+A+VX+eI56VmcJ+lFv9
ASIbM74QNaT6uvYwkFf6gYDJS92EkBCVvNq3CWlZC9AP2OF3hM8b5CbP8dLZBpM7
fheeF9czTK6BYEWx2ajmKiW7Je3yD7zN7FOE7Oj9FbTxba6S0Svtfkz21ZLpHRSe
PTj9/V3nAaHuxKEnq5Hjd/Skr8fONPc+EiAz+gnraprSD8z+DTCgAgYN/fQmAC1m
7IEpWgs/2IubdZ9iB2vH5kTlkWkj6PZ8ESlHJDoYCJFP3aoouUPppHDVkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBp7LcSOBRIsDJvRvyZoOdcK+qftMB8GA1UdIwQY
MBaAFB2GJnScv4S89C67KYW4be6DDlwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYt
MGJmYmFkNDg0OWNkLzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYtMGJmYmFkNDg0OWNk
LzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbHAKBxDd
VBJ2wkYbHjdkHrshDNLxFGq4q8kO2e0cyUxVHR9j/Ec55rW+S4R2SmQLyglFa4Bf
bAHN+HonXGQAhCjST5xTOmc4eASmKBXsHA9LuYiDDo5R7w2bnj3v/1H2sll3OEA9
pmMB+Ej5Zr8ZaFPF2/QjedWCSae42nwnItRDb9uYucrLTXpbQ4aLLx9igTCJJlaj
neq6SBYAu9FxPAztfzUhrObIXb3z+i3S1kZZO9feBFW1lTd6CMLqThe9qS2VpaVL
bLVm+TyQidp2GuhNirjGfGTBEOdoGECWl1iQJyRcso37QN418Y+WLzQdPqYhprwX
9qtAGikic9gq6w==
-----END CERTIFICATE-----
Generated at Thu May 1 05:29:41 2025 by rpki-client