Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
File: hps2AP1zjmmNEv7yDhBuapTjtnQ.mft (raw, json)
Hash identifier: vC/awCG33p089DJDc4e2j1zavC7LrFSuFu27PnK31mM=
Subject key identifier: 54:CC:B2:99:35:8D:2F:EA:85:0C:3A:51:68:CD:CF:11:13:77:F8:8B
Authority key identifier: 86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
Certificate issuer: /CN=869b3600fd738e698d12fef20e106e6a94e3b674
Certificate serial: 01967FEADCD9E2925E79B51A984D1B8457C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
Manifest number: 0A05
Signing time: Tue 29 Apr 2025 05:00:20 +0000
Manifest this update: Tue 29 Apr 2025 05:00:20 +0000
Manifest next update: Wed 30 Apr 2025 05:00:20 +0000
Files and hashes: 1: hps2AP1zjmmNEv7yDhBuapTjtnQ.crl (hash: h+r+iraWONAIeIKD6VPp73GRDXgxWxcoOAYoBrg1t2o=)
2: wWq59skVXk0ZG4IFLK9dggmPZBc.roa (hash: G7C47jomjQ8yRWntSox+zS/AjFvrINeu+2AEHacLP1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:ea:dc:d9:e2:92:5e:79:b5:1a:98:4d:1b:84:57:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869b3600fd738e698d12fef20e106e6a94e3b674
Validity
Not Before: Apr 29 05:00:20 2025 GMT
Not After : Apr 30 05:00:20 2025 GMT
Subject: CN=54ccb299358d2fea850c3a5168cdcf111377f88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3e:be:95:84:36:13:81:7d:8d:74:e6:a3:4b:
fe:91:c6:69:3d:5e:89:d8:4c:d5:08:f1:f5:15:53:
08:b3:c5:a3:53:59:05:73:74:fe:30:96:b3:b1:59:
91:18:75:00:dc:96:98:3f:b5:98:22:e2:8c:a8:93:
b7:ca:f4:7e:10:12:d5:f1:c4:96:6a:20:f4:aa:06:
c8:04:19:f6:a5:7e:01:47:1e:35:9f:0b:7d:93:e0:
62:ee:3d:ff:24:9f:6d:c3:59:af:2c:18:59:7b:46:
08:24:de:70:e1:4b:9c:71:e1:80:f6:0a:a1:2a:0c:
a9:3a:c1:77:b7:ca:69:f4:06:09:0b:97:79:27:26:
17:ec:db:8f:19:2b:94:ec:2e:f1:95:ed:84:bf:bc:
63:af:4d:42:56:e6:32:76:95:21:3b:a8:c3:ad:f6:
01:74:2c:f2:92:5b:2e:38:41:e3:83:eb:fe:e5:2e:
b7:40:c7:eb:34:e4:de:c5:1e:09:d5:19:dd:8b:98:
4b:c4:b9:fc:04:68:40:44:38:c8:8a:2d:62:13:a8:
8a:1e:ee:3f:83:e0:40:bf:16:c8:94:55:7e:7d:d6:
5b:38:f3:b6:7d:a3:a0:69:77:0e:ab:ae:7f:b3:dc:
85:be:b5:22:b2:32:fa:1a:19:4a:ee:f9:24:ed:28:
1c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:CC:B2:99:35:8D:2F:EA:85:0C:3A:51:68:CD:CF:11:13:77:F8:8B
X509v3 Authority Key Identifier:
keyid:86:9B:36:00:FD:73:8E:69:8D:12:FE:F2:0E:10:6E:6A:94:E3:B6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hps2AP1zjmmNEv7yDhBuapTjtnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/609976-1ace-444f-bcb5-4243e88bd76c/1/hps2AP1zjmmNEv7yDhBuapTjtnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:ba:b5:46:64:4e:fd:4a:cf:68:d9:5b:0f:91:34:82:6c:25:
b5:c9:15:d1:3a:a3:88:8c:54:a1:b2:e5:0f:be:8e:f5:34:6b:
0e:d6:e8:e0:7d:9d:d5:47:98:f0:5d:f5:87:d1:46:ad:64:57:
23:04:1c:be:0d:69:d3:78:f4:2b:7c:2e:5d:c8:22:6c:17:67:
e2:f9:5f:46:5d:1e:d4:47:0a:ed:c0:86:9f:bd:fb:98:90:b7:
32:70:d7:c3:39:91:bb:f9:53:a5:fa:22:fa:8c:b0:49:73:a0:
44:6d:35:d5:58:c2:c9:b2:25:2f:e5:61:d7:f5:46:a5:2b:5e:
0c:a1:ae:a1:24:b7:4c:ce:9b:ca:e7:45:58:1d:18:f4:6c:81:
c7:69:54:f2:78:52:61:a4:fd:1b:40:78:7a:11:28:f5:d7:16:
44:ef:55:5f:61:aa:1e:74:4a:f0:ec:55:1f:c4:0b:ec:50:69:
c4:83:90:59:78:34:ce:b9:0d:fc:e3:0e:f6:78:10:17:9f:81:
84:6a:79:ed:ef:7e:38:d6:1f:b2:f4:36:7f:05:54:30:4e:04:
e9:f2:12:f8:fc:32:8a:51:ad:88:07:ea:0f:55:46:35:74:57:
26:a6:ea:cf:35:0a:91:99:1a:ec:d3:aa:e6:6f:e7:e7:55:e2:
32:90:1d:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ/6tzZ4pJeebUamE0bhFfGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OWIzNjAwZmQ3MzhlNjk4ZDEyZmVmMjBlMTA2ZTZhOTRl
M2I2NzQwHhcNMjUwNDI5MDUwMDIwWhcNMjUwNDMwMDUwMDIwWjAzMTEwLwYDVQQD
Eyg1NGNjYjI5OTM1OGQyZmVhODUwYzNhNTE2OGNkY2YxMTEzNzdmODhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvT6+lYQ2E4F9jXTmo0v+kcZpPV6J
2EzVCPH1FVMIs8WjU1kFc3T+MJazsVmRGHUA3JaYP7WYIuKMqJO3yvR+EBLV8cSW
aiD0qgbIBBn2pX4BRx41nwt9k+Bi7j3/JJ9tw1mvLBhZe0YIJN5w4UucceGA9gqh
KgypOsF3t8pp9AYJC5d5JyYX7NuPGSuU7C7xle2Ev7xjr01CVuYydpUhO6jDrfYB
dCzyklsuOEHjg+v+5S63QMfrNOTexR4J1Rndi5hLxLn8BGhARDjIii1iE6iKHu4/
g+BAvxbIlFV+fdZbOPO2faOgaXcOq65/s9yFvrUisjL6GhlK7vkk7SgchQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFTMspk1jS/qhQw6UWjNzxETd/iLMB8GA1UdIwQY
MBaAFIabNgD9c45pjRL+8g4QbmqU47Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUt
NDI0M2U4OGJkNzZjLzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy82MDk5NzYtMWFjZS00NDRmLWJjYjUtNDI0M2U4OGJkNzZj
LzEvaHBzMkFQMXpqbW1ORXY3eURoQnVhcFRqdG5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUbq1RmRO
/UrPaNlbD5E0gmwltckV0TqjiIxUobLlD76O9TRrDtbo4H2d1UeY8F31h9FGrWRX
IwQcvg1p03j0K3wuXcgibBdn4vlfRl0e1EcK7cCGn737mJC3MnDXwzmRu/lTpfoi
+oywSXOgRG011VjCybIlL+Vh1/VGpSteDKGuoSS3TM6byudFWB0Y9GyBx2lU8nhS
YaT9G0B4ehEo9dcWRO9VX2GqHnRK8OxVH8QL7FBpxIOQWXg0zrkN/OMO9ngQF5+B
hGp57e9+ONYfsvQ2fwVUME4E6fIS+PwyilGtiAfqD1VGNXRXJqbqzzUKkZka7NOq
5m/n51XiMpAdKw==
-----END CERTIFICATE-----
Generated at Tue Apr 29 16:22:21 2025 by rpki-client