Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
File: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft (raw, json)
Hash identifier: M6UhZu8wxmhXXfj0WfNIVWg1gG+iDbIPsyXzTymVda8=
Subject key identifier: C9:CF:A1:C3:9A:1B:CD:A3:99:D3:BE:B4:3E:94:6E:6B:F9:C8:C2:06
Authority key identifier: 85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
Certificate issuer: /CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Certificate serial: 019769298B04736066104C67DFF323B69E86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
Manifest number: 1591
Signing time: Fri 13 Jun 2025 12:00:19 +0000
Manifest this update: Fri 13 Jun 2025 12:00:19 +0000
Manifest next update: Sat 14 Jun 2025 12:00:19 +0000
Files and hashes: 1: PbEykFk95Qp-GzLhGQEzPuqSxmk.roa (hash: Hvk7rTnua0DJqMwP5Nyh8b4Zk2rUSg2r4snTzFoJ1wk=)
2: hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl (hash: Kk3pnjWsZPPejuBRzS0GHJBR+mVEYshvy/cvb1IxG38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:8b:04:73:60:66:10:4c:67:df:f3:23:b6:9e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=859d5177077b90818c6f90ae4e44332d8cacbb74
Validity
Not Before: Jun 13 12:00:19 2025 GMT
Not After : Jun 14 12:00:19 2025 GMT
Subject: CN=c9cfa1c39a1bcda399d3beb43e946e6bf9c8c206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:28:45:67:0a:0c:97:3b:76:56:e5:f0:1a:33:
db:cd:86:2e:b1:b3:92:f5:1e:9f:43:91:0f:52:73:
33:15:8a:ac:38:47:06:73:19:8f:66:94:b1:34:57:
86:2b:f1:31:f4:7b:7b:d8:6a:90:d1:89:ca:9b:da:
3a:d2:52:92:b1:2f:34:4e:ed:4a:ea:8d:fd:5a:05:
db:24:7d:80:7f:15:d6:33:e4:c8:15:59:87:f8:7c:
a7:08:f8:78:11:ce:13:d4:81:31:59:a8:1d:a8:b8:
aa:30:d4:39:e2:40:a2:30:67:a6:4d:e8:88:41:2b:
f0:70:a2:4b:8b:32:58:d1:97:c8:21:e1:e2:27:8a:
eb:11:92:c9:81:3f:d5:8b:a0:8e:f5:b3:80:7a:90:
3b:23:d7:aa:77:14:58:00:d0:3c:ab:22:75:3d:d9:
8b:d1:9e:a9:86:82:71:d6:68:a3:d5:ba:a2:e4:02:
0c:e6:e2:f4:29:df:af:74:00:ec:57:26:ca:f8:a6:
00:cc:12:9c:75:85:00:26:e4:e5:10:45:c1:53:8f:
a2:59:04:98:56:e7:33:8b:df:1e:d4:fd:95:22:24:
65:24:89:34:35:aa:81:18:8f:56:7d:c2:3b:26:9b:
fb:3f:4b:7b:fd:7f:5f:c8:9b:38:b8:09:39:ce:7f:
ae:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CF:A1:C3:9A:1B:CD:A3:99:D3:BE:B4:3E:94:6E:6B:F9:C8:C2:06
X509v3 Authority Key Identifier:
keyid:85:9D:51:77:07:7B:90:81:8C:6F:90:AE:4E:44:33:2D:8C:AC:BB:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/faea43-f333-4509-a6db-3ac96be285e0/1/hZ1Rdwd7kIGMb5CuTkQzLYysu3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:55:66:38:c0:9c:6e:6e:45:93:1b:3b:58:2d:c0:52:b0:5c:
68:7e:76:f1:0f:bb:21:7c:d4:12:df:96:ff:5b:4b:f2:7f:b5:
83:17:12:04:d8:41:a3:99:ea:14:4d:9b:33:d5:53:52:78:36:
52:43:14:5e:0b:41:3a:ab:94:23:3e:06:a7:c8:f9:1c:1f:1a:
d1:28:15:e6:99:80:39:6a:af:51:90:77:91:25:b3:a0:b3:6c:
84:b9:c0:2b:a2:18:c7:96:57:dc:a7:a3:7a:78:b3:0b:7a:02:
8b:9f:bc:d0:8f:af:c9:02:cf:4a:3b:00:db:e8:7b:0e:0c:65:
e6:fd:36:b5:b3:3d:1a:8b:3f:a9:7d:92:0d:bd:da:de:b2:62:
1b:22:f5:0d:71:9d:e9:7d:55:05:12:72:5d:e8:95:73:dd:39:
c6:a7:9c:6b:cc:9a:99:55:b5:13:ff:21:04:e8:0f:7a:bf:4f:
49:af:4d:df:84:b2:b5:81:57:a7:ed:83:af:88:d2:65:59:32:
27:46:c9:26:b0:53:fe:55:31:24:de:22:39:73:0c:ca:3c:eb:
f5:98:a6:87:3d:ae:39:be:04:4f:30:06:eb:96:93:50:9d:a0:
49:77:79:50:3c:34:73:c4:51:96:ee:fd:98:2d:4f:b1:4c:c4:
09:94:32:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpKYsEc2BmEExn3/Mjtp6GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1OWQ1MTc3MDc3YjkwODE4YzZmOTBhZTRlNDQzMzJkOGNh
Y2JiNzQwHhcNMjUwNjEzMTIwMDE5WhcNMjUwNjE0MTIwMDE5WjAzMTEwLwYDVQQD
EyhjOWNmYTFjMzlhMWJjZGEzOTlkM2JlYjQzZTk0NmU2YmY5YzhjMjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlihFZwoMlzt2VuXwGjPbzYYusbOS
9R6fQ5EPUnMzFYqsOEcGcxmPZpSxNFeGK/Ex9Ht72GqQ0YnKm9o60lKSsS80Tu1K
6o39WgXbJH2AfxXWM+TIFVmH+HynCPh4Ec4T1IExWagdqLiqMNQ54kCiMGemTeiI
QSvwcKJLizJY0ZfIIeHiJ4rrEZLJgT/Vi6CO9bOAepA7I9eqdxRYANA8qyJ1PdmL
0Z6phoJx1mij1bqi5AIM5uL0Kd+vdADsVybK+KYAzBKcdYUAJuTlEEXBU4+iWQSY
Vuczi98e1P2VIiRlJIk0NaqBGI9WfcI7Jpv7P0t7/X9fyJs4uAk5zn+uOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMnPocOaG82jmdO+tD6Ubmv5yMIGMB8GA1UdIwQY
MBaAFIWdUXcHe5CBjG+Qrk5EMy2MrLt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9mYWVhNDMtZjMzMy00NTA5LWE2ZGIt
M2FjOTZiZTI4NWUwLzEvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9mYWVhNDMtZjMzMy00NTA5LWE2ZGItM2FjOTZiZTI4NWUw
LzEvaFoxUmR3ZDdrSUdNYjVDdVRrUXpMWXlzdTNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADFVmOMCc
bm5Fkxs7WC3AUrBcaH528Q+7IXzUEt+W/1tL8n+1gxcSBNhBo5nqFE2bM9VTUng2
UkMUXgtBOquUIz4Gp8j5HB8a0SgV5pmAOWqvUZB3kSWzoLNshLnAK6IYx5ZX3Kej
enizC3oCi5+80I+vyQLPSjsA2+h7Dgxl5v02tbM9Gos/qX2SDb3a3rJiGyL1DXGd
6X1VBRJyXeiVc905xqeca8yamVW1E/8hBOgPer9PSa9N34SytYFXp+2Dr4jSZVky
J0bJJrBT/lUxJN4iOXMMyjzr9Zimhz2uOb4ETzAG65aTUJ2gSXd5UDw0c8RRlu79
mC1PsUzECZQyFw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:51 2025 by rpki-client