Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: 2Q/azH20hqE2yHFWnOYqhUIQcqe465ys3dDucAIW7sU=
Subject key identifier: 43:2A:0D:20:5A:44:F0:8E:86:41:B4:A7:43:13:1A:C1:C9:C6:5B:5D
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 01976F9A0023FC3605355680311FD9847C42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 18:00:52 +0000
Manifest this update: Sat 14 Jun 2025 18:00:52 +0000
Manifest next update: Sun 15 Jun 2025 18:00:52 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: lJBkLLrO4qHEfa6cPCKg2M/xFL4l1id0i5d4uEAHmPw=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:9a:00:23:fc:36:05:35:56:80:31:1f:d9:84:7c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Jun 14 18:00:52 2025 GMT
Not After : Jun 15 18:00:52 2025 GMT
Subject: CN=432a0d205a44f08e8641b4a743131ac1c9c65b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:53:a5:c9:f0:35:6c:78:a2:d6:b0:e1:91:
d3:90:64:6c:75:7c:cc:b1:17:dc:ae:57:be:55:aa:
0c:3c:82:02:6e:33:67:39:e5:87:d6:28:12:67:07:
d3:48:6f:39:99:ae:29:a9:6f:64:d1:52:ec:24:d9:
d1:25:d4:89:57:85:c1:b6:de:b9:1f:15:24:b6:97:
c0:3c:8a:94:e9:e3:a2:7a:f8:43:73:a9:f6:8f:0f:
59:c3:cb:f7:28:dd:43:21:90:9e:ec:f4:e4:dc:fb:
a6:85:74:7d:15:28:2c:fa:77:a7:e5:a9:e3:b4:d2:
25:7a:79:eb:14:5b:19:78:bd:7e:47:d0:f9:98:5a:
aa:2c:2c:b7:ca:55:ba:3a:7f:82:40:3e:68:2a:4d:
b0:b6:51:27:ff:f3:45:14:33:d2:34:c4:d9:60:e7:
f0:c6:b7:ca:e9:c9:6a:b4:60:cb:26:f8:02:c1:19:
a3:d1:d0:23:59:03:b8:b0:bd:8e:35:1f:9f:db:97:
c9:cd:b1:ad:43:8c:c2:c0:d0:ec:a1:d1:98:f5:db:
11:8d:96:d3:9c:f8:af:26:5f:61:75:40:af:bf:54:
99:0f:05:bf:f4:e6:82:71:ec:ec:9e:43:c4:bf:69:
ed:86:d3:8d:22:17:9d:36:e1:83:3f:2c:58:5a:d8:
42:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2A:0D:20:5A:44:F0:8E:86:41:B4:A7:43:13:1A:C1:C9:C6:5B:5D
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:79:a4:1b:df:48:7d:59:cf:b4:b6:3c:0a:08:d1:21:4a:3b:
f0:cc:a3:44:36:64:d6:11:8e:3b:5e:69:f0:8e:8a:50:43:51:
60:a5:26:13:a5:10:46:63:9e:22:6a:77:10:19:39:9e:23:b8:
04:d4:39:1b:10:61:f7:86:7e:11:c9:af:c8:39:0f:d4:64:da:
97:7d:ad:bc:eb:d5:86:54:c1:c9:19:bc:1a:64:b4:75:82:5d:
21:b6:00:d6:13:e1:95:01:9d:39:ce:83:8a:fe:80:7b:c1:cb:
e1:ab:95:b7:d1:b7:2c:72:f4:e9:eb:a1:23:f8:dc:83:61:17:
52:2b:a6:89:d6:46:4c:c4:28:c5:16:8c:25:a7:1e:c0:39:3f:
ed:19:f5:b1:bb:c2:af:bc:0b:f1:c8:19:bb:fb:81:80:6f:52:
b8:18:32:da:dd:bb:55:5d:b6:9e:ff:60:9f:d5:ae:8c:a1:39:
59:52:fd:5e:e6:3e:b6:86:36:ae:10:fa:98:ff:29:eb:2d:38:
fb:31:e7:48:fd:a8:6f:d6:56:8a:bf:4e:62:88:43:52:31:0e:
92:7b:21:47:50:63:d3:88:80:80:6a:c7:65:e4:1b:c6:7c:9e:
57:9e:61:ca:b1:71:38:96:e1:20:ef:15:b5:93:22:e0:97:30:
91:fe:b4:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvmgAj/DYFNVaAMR/ZhHxCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTU4YmE2NjFjNDM1Y2NkMjVjMjA2MDQ2MmVmNjAwZDI3
MTllZTAwHhcNMjUwNjE0MTgwMDUyWhcNMjUwNjE1MTgwMDUyWjAzMTEwLwYDVQQD
Eyg0MzJhMGQyMDVhNDRmMDhlODY0MWI0YTc0MzEzMWFjMWM5YzY1YjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJZTpcnwNWx4otaw4ZHTkGRsdXzM
sRfcrle+VaoMPIICbjNnOeWH1igSZwfTSG85ma4pqW9k0VLsJNnRJdSJV4XBtt65
HxUktpfAPIqU6eOievhDc6n2jw9Zw8v3KN1DIZCe7PTk3PumhXR9FSgs+nen5anj
tNIlennrFFsZeL1+R9D5mFqqLCy3ylW6On+CQD5oKk2wtlEn//NFFDPSNMTZYOfw
xrfK6clqtGDLJvgCwRmj0dAjWQO4sL2ONR+f25fJzbGtQ4zCwNDsodGY9dsRjZbT
nPivJl9hdUCvv1SZDwW/9OaCcezsnkPEv2nthtONIhedNuGDPyxYWthCpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMqDSBaRPCOhkG0p0MTGsHJxltdMB8GA1UdIwQY
MBaAFIeVi6ZhxDXM0lwgYEYu9gDScZ7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82NWNmMGEtYWRlMy00MGIxLTk5ODct
OGMzNGU0Y2Y5MDI2LzEvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni82NWNmMGEtYWRlMy00MGIxLTk5ODctOGMzNGU0Y2Y5MDI2
LzEvaDVXTHBtSEVOY3pTWENCZ1JpNzJBTkp4bnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC3mkG99I
fVnPtLY8CgjRIUo78MyjRDZk1hGOO15p8I6KUENRYKUmE6UQRmOeImp3EBk5niO4
BNQ5GxBh94Z+EcmvyDkP1GTal32tvOvVhlTByRm8GmS0dYJdIbYA1hPhlQGdOc6D
iv6Ae8HL4auVt9G3LHL06euhI/jcg2EXUiumidZGTMQoxRaMJacewDk/7Rn1sbvC
r7wL8cgZu/uBgG9SuBgy2t27VV22nv9gn9WujKE5WVL9XuY+toY2rhD6mP8p6y04
+zHnSP2ob9ZWir9OYohDUjEOknshR1Bj04iAgGrHZeQbxnyeV55hyrFxOJbhIO8V
tZMi4Jcwkf608A==
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:04:48 2025 by rpki-client