Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: +Utnof8iu3uvRdm6J4UWQ8HLV/P/3Iw6xDLcJkOehsA=
Subject key identifier: 20:5A:96:DE:8F:9A:2E:58:6D:D1:62:4B:37:9C:80:AA:8D:FF:D8:C2
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 0196760D1C22D12D61221EAFDA3E92FB5EEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 0F8E
Signing time: Sun 27 Apr 2025 07:01:32 +0000
Manifest this update: Sun 27 Apr 2025 07:01:32 +0000
Manifest next update: Mon 28 Apr 2025 07:01:32 +0000
Files and hashes: 1: CJqITen207ZODHzo1XtCMdI_VBo.roa (hash: f1FWG5pswdJQTpL1NXAace6jGLQD4G1flmSN2+tjCMo=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: 8f5ao9UsBOMyaB8GHaVTemOfz5+ngDxY/dMyixlNzfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0d:1c:22:d1:2d:61:22:1e:af:da:3e:92:fb:5e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: Apr 27 07:01:32 2025 GMT
Not After : Apr 28 07:01:32 2025 GMT
Subject: CN=205a96de8f9a2e586dd1624b379c80aa8dffd8c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:81:52:b9:26:b3:a9:c3:7b:9e:6d:b6:b2:d6:
72:2b:92:05:89:79:84:58:69:fd:da:64:0e:00:5b:
99:99:e0:ca:ee:76:11:d2:e9:22:2b:c6:87:74:25:
e1:45:fb:b1:ef:63:c4:2e:f7:57:25:49:ac:10:86:
72:57:c1:ec:d8:71:48:e0:b6:9c:74:78:b8:70:d8:
d4:16:7b:b3:4e:89:42:85:37:79:b7:4b:47:8d:65:
f1:b4:c9:b2:43:3b:85:d2:22:32:a7:41:06:44:aa:
50:81:fc:41:34:69:7d:c3:d3:0c:1b:cb:28:41:b4:
98:9b:b2:0b:fe:d7:45:6c:eb:d1:ad:d6:16:cb:51:
65:3d:5a:b5:b7:ac:e9:eb:4a:67:e1:27:f3:ab:b2:
4d:38:9b:6c:d6:39:77:79:e7:d3:d2:b2:e4:ef:60:
a4:3d:d8:e1:a4:02:2d:d5:bd:94:df:41:f1:ae:54:
43:e0:1b:57:f5:19:69:a9:aa:f3:af:cf:9a:3d:6c:
eb:7d:82:dd:59:b4:51:85:fb:ec:df:8d:ba:15:d7:
d1:f3:99:48:fc:91:d1:dd:d5:e1:ef:e2:1a:35:50:
c7:a6:3e:19:03:3a:3a:96:4d:43:e7:3b:5b:11:b0:
ee:67:1a:5b:09:db:42:45:55:59:be:d6:3b:a0:9d:
0c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5A:96:DE:8F:9A:2E:58:6D:D1:62:4B:37:9C:80:AA:8D:FF:D8:C2
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:4a:33:2c:58:67:24:ba:10:34:8f:85:b3:0d:5c:bf:bd:ef:
0a:bb:b9:d8:d0:e2:f0:e6:bf:7b:d7:30:36:63:9e:eb:cd:37:
f2:24:d8:81:e0:02:39:10:d6:cf:5e:f5:d7:32:c1:ec:2f:a8:
0f:90:6f:cd:58:a1:02:b2:f5:39:3a:b5:5c:3d:85:2b:27:e6:
e9:38:22:8d:d3:ca:c5:5b:e0:42:10:2c:88:0c:94:b0:ad:05:
2e:7a:b5:c0:e6:27:3f:b9:0b:d9:9b:f1:c4:b0:37:98:f7:ad:
47:51:e5:65:ca:85:95:a4:46:73:ec:fd:1e:3e:a2:b2:d5:61:
27:5f:00:42:24:10:66:71:40:d7:58:ba:07:cc:34:f0:bc:12:
81:42:39:de:62:b0:7b:4b:46:10:c1:dd:08:67:ff:e2:77:b2:
de:ea:1c:55:d2:44:4e:64:28:4c:aa:50:6c:52:59:8d:c4:4b:
0d:ab:d8:bb:17:13:f1:9e:9b:9c:c3:d0:f2:54:a9:94:cf:73:
3a:0e:77:47:5b:a1:80:01:c9:3c:b2:9d:34:02:6d:6d:49:8e:
d8:db:13:76:ac:86:a7:4b:a6:28:fa:f4:d9:f0:b7:0b:0a:93:
e9:b3:7c:a1:6f:f7:5a:ac:64:02:04:5c:65:ca:b3:c8:ab:84:
f7:db:d2:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2DRwi0S1hIh6v2j6S+17qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NGM1ZjI5OGQ4MWFjYzU1NzNmZDU5ZmIwNWRkODZmMjBh
YmNiYTgwHhcNMjUwNDI3MDcwMTMyWhcNMjUwNDI4MDcwMTMyWjAzMTEwLwYDVQQD
EygyMDVhOTZkZThmOWEyZTU4NmRkMTYyNGIzNzljODBhYThkZmZkOGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2oFSuSazqcN7nm22stZyK5IFiXmE
WGn92mQOAFuZmeDK7nYR0ukiK8aHdCXhRfux72PELvdXJUmsEIZyV8Hs2HFI4Lac
dHi4cNjUFnuzTolChTd5t0tHjWXxtMmyQzuF0iIyp0EGRKpQgfxBNGl9w9MMG8so
QbSYm7IL/tdFbOvRrdYWy1FlPVq1t6zp60pn4Sfzq7JNOJts1jl3eefT0rLk72Ck
PdjhpAIt1b2U30HxrlRD4BtX9Rlpqarzr8+aPWzrfYLdWbRRhfvs3426FdfR85lI
/JHR3dXh7+IaNVDHpj4ZAzo6lk1D5ztbEbDuZxpbCdtCRVVZvtY7oJ0MrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBalt6Pmi5YbdFiSzecgKqN/9jCMB8GA1UdIwQY
MBaAFIVMXymNgazFVz/Vn7Bd2G8gq8uoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFV4ZktZMkJyTVZYUDlXZnNGM1lieUNyeTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xMjk1ZDAtMzkxMS00YTE4LWE4ZDIt
NzUyZDU5YTA0MmMyLzEvaFV4ZktZMkJyTVZYUDlXZnNGM1lieUNyeTZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8xMjk1ZDAtMzkxMS00YTE4LWE4ZDItNzUyZDU5YTA0MmMy
LzEvaFV4ZktZMkJyTVZYUDlXZnNGM1lieUNyeTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW0ozLFhn
JLoQNI+Fsw1cv73vCru52NDi8Oa/e9cwNmOe68038iTYgeACORDWz1711zLB7C+o
D5BvzVihArL1OTq1XD2FKyfm6TgijdPKxVvgQhAsiAyUsK0FLnq1wOYnP7kL2Zvx
xLA3mPetR1HlZcqFlaRGc+z9Hj6istVhJ18AQiQQZnFA11i6B8w08LwSgUI53mKw
e0tGEMHdCGf/4ney3uocVdJETmQoTKpQbFJZjcRLDavYuxcT8Z6bnMPQ8lSplM9z
Og53R1uhgAHJPLKdNAJtbUmO2NsTdqyGp0umKPr02fC3CwqT6bN8oW/3WqxkAgRc
ZcqzyKuE99vSYQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:49:19 2025 by rpki-client