Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: KGBF5a60ZsItyrWp3gw7BNwA7LkKPDTVfD6xets5jKI=
Subject key identifier: 85:0D:16:9A:8D:D4:76:B6:DB:0B:83:1F:7D:A3:59:C1:F5:03:D7:9E
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 01976C61C33D85D99FF47F5FFAAAA1F1D6BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 1522
Signing time: Sat 14 Jun 2025 03:00:35 +0000
Manifest this update: Sat 14 Jun 2025 03:00:35 +0000
Manifest next update: Sun 15 Jun 2025 03:00:35 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: ffABVqEgVbed4LqeXEPliwguygfc5f54h5nlBvf2F6s=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:c3:3d:85:d9:9f:f4:7f:5f:fa:aa:a1:f1:d6:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Jun 14 03:00:35 2025 GMT
Not After : Jun 15 03:00:35 2025 GMT
Subject: CN=850d169a8dd476b6db0b831f7da359c1f503d79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:73:bb:a6:c8:74:e4:3e:8f:89:0e:f1:e4:
36:df:e9:de:42:34:34:12:54:a8:01:bf:e5:66:dd:
a8:03:e4:85:b4:68:45:e0:7f:f9:76:67:0c:c2:34:
07:2e:cc:98:ea:67:b8:49:3a:50:e9:50:5e:22:be:
c5:3f:6d:f1:a9:93:22:10:c5:c2:f4:f5:8f:5c:2c:
7d:fb:4e:21:9b:b1:c3:6e:9c:6d:23:cb:b2:b9:59:
4f:91:31:79:cb:c6:1c:2b:1d:5f:ac:c7:bf:90:2d:
95:d1:69:df:29:9c:38:b1:c0:95:43:9c:23:9a:c8:
4a:2d:21:31:b9:39:08:50:bc:1a:9a:06:eb:f0:bd:
b9:e7:02:88:32:42:e4:1b:30:97:c1:ea:e0:35:77:
9d:28:31:53:82:8d:85:dd:24:76:e7:0b:48:ab:c8:
32:2d:11:d7:08:96:c9:0b:be:c5:f5:c3:0e:1f:88:
e9:b0:19:06:a0:71:47:4d:81:9a:04:cd:7d:5d:20:
9a:95:6f:6f:5d:7d:aa:b7:f9:69:18:c4:3e:1d:c7:
fa:30:b8:9e:2c:b3:1b:e4:92:8d:2a:b3:8b:ce:89:
fc:02:bd:f2:7c:94:cf:b7:b7:2f:00:cb:f5:06:8b:
d9:73:22:1e:c2:f9:c7:7b:4d:b9:d1:e2:8b:c3:e4:
19:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0D:16:9A:8D:D4:76:B6:DB:0B:83:1F:7D:A3:59:C1:F5:03:D7:9E
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:6b:ee:bf:04:c9:99:e1:64:51:87:aa:51:9d:f3:04:28:b7:
a7:49:87:86:19:b5:48:ce:19:e4:8c:14:f5:ce:7e:d2:1e:03:
9c:02:58:7f:6a:9d:a9:eb:3f:b3:07:c4:41:4f:75:9e:5a:0e:
4e:09:53:94:07:3b:71:4a:1e:c2:16:bd:12:4e:f3:21:5c:7f:
48:12:71:f5:94:c7:43:4c:11:f8:7c:5c:e7:cc:81:3d:7f:20:
2e:25:dd:04:b1:8d:e8:3f:08:33:18:23:ed:34:bb:77:be:db:
72:b5:0b:09:62:ea:30:f6:ad:c5:5b:ce:24:47:fa:f1:7f:d8:
ce:4e:0d:9c:c4:71:45:9b:9d:30:d0:1c:fc:88:4a:2f:6c:0e:
76:a3:13:52:2a:bf:ce:65:c5:05:62:fc:96:91:83:ca:22:ee:
72:db:78:73:92:14:f8:c9:04:11:65:b0:ec:0a:c8:7c:a7:df:
2e:fd:e1:4e:7c:38:e4:52:d1:d5:a0:8c:a7:5f:6f:79:42:09:
39:ee:96:86:8c:8a:a1:c6:3f:45:2d:5c:b6:35:7a:8a:9a:1e:
80:6c:a5:4f:0c:87:85:be:95:6f:1a:32:f4:a2:db:5f:72:ce:
eb:41:27:a3:92:d8:ba:de:75:12:0d:03:8f:da:d9:d9:32:28:
8c:ce:ac:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsYcM9hdmf9H9f+qqh8da7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMWM1MmYxNTUyZjZlYTBmMDY0ZDdhM2I3OWRiNWMxY2Yx
NjZiZDAwHhcNMjUwNjE0MDMwMDM1WhcNMjUwNjE1MDMwMDM1WjAzMTEwLwYDVQQD
Eyg4NTBkMTY5YThkZDQ3NmI2ZGIwYjgzMWY3ZGEzNTljMWY1MDNkNzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUNzu6bIdOQ+j4kO8eQ23+neQjQ0
ElSoAb/lZt2oA+SFtGhF4H/5dmcMwjQHLsyY6me4STpQ6VBeIr7FP23xqZMiEMXC
9PWPXCx9+04hm7HDbpxtI8uyuVlPkTF5y8YcKx1frMe/kC2V0WnfKZw4scCVQ5wj
mshKLSExuTkIULwamgbr8L255wKIMkLkGzCXwergNXedKDFTgo2F3SR25wtIq8gy
LRHXCJbJC77F9cMOH4jpsBkGoHFHTYGaBM19XSCalW9vXX2qt/lpGMQ+Hcf6MLie
LLMb5JKNKrOLzon8Ar3yfJTPt7cvAMv1BovZcyIewvnHe0250eKLw+QZCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIUNFpqN1Ha22wuDH32jWcH1A9eeMB8GA1UdIwQY
MBaAFB0cUvFVL26g8GTXo7edtcHPFmvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82NGY1MzktZmVkYS00OWZjLWE5MjIt
MjAxZDVhOWJiOGFhLzEvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82NGY1MzktZmVkYS00OWZjLWE5MjItMjAxZDVhOWJiOGFh
LzEvSFJ4UzhWVXZicUR3Wk5lanQ1MjF3YzhXYTlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaWvuvwTJ
meFkUYeqUZ3zBCi3p0mHhhm1SM4Z5IwU9c5+0h4DnAJYf2qdqes/swfEQU91nloO
TglTlAc7cUoewha9Ek7zIVx/SBJx9ZTHQ0wR+Hxc58yBPX8gLiXdBLGN6D8IMxgj
7TS7d77bcrULCWLqMPatxVvOJEf68X/Yzk4NnMRxRZudMNAc/IhKL2wOdqMTUiq/
zmXFBWL8lpGDyiLuctt4c5IU+MkEEWWw7ArIfKffLv3hTnw45FLR1aCMp19veUIJ
Oe6WhoyKocY/RS1ctjV6ipoegGylTwyHhb6Vbxoy9KLbX3LO60Eno5LYut51Eg0D
j9rZ2TIojM6sHw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:09:17 2025 by rpki-client