Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
File: HEwmJz2igh_OJgdaoKbiMB7ISSc.mft (raw, json)
Hash identifier: FBQU6lPIxPDB9IWbFP9P3/LVwKUpwUWh8PyzrAMiVKM=
Subject key identifier: 3E:12:4E:AE:F8:A9:5F:59:31:82:EB:37:10:E0:0E:19:2D:CF:1A:B7
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 01976E87776FF4EB051340271C381913AFC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
Manifest number: 1520
Signing time: Sat 14 Jun 2025 13:01:00 +0000
Manifest this update: Sat 14 Jun 2025 13:01:00 +0000
Manifest next update: Sun 15 Jun 2025 13:01:00 +0000
Files and hashes: 1: 5MK1ewnt7LozxEmddZiWa3omfKc.roa (hash: 7+tCKj1f1iwSFAN/o1/yY8fVwb73KSasEYzwGjDKXO0=)
2: DeHazeP3A9wAumTO_Rmx5RqWaqs.roa (hash: 0hOPuiiQ+UKk5lNFYgiHmEshvjQhpp/6FLqfnT4DM3I=)
3: HEwmJz2igh_OJgdaoKbiMB7ISSc.crl (hash: DkDo/E1Qkcsz5YWoPT5sRHfmPhWi+WdOC5H5wDWjvv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:77:6f:f4:eb:05:13:40:27:1c:38:19:13:af:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Jun 14 13:01:00 2025 GMT
Not After : Jun 15 13:01:00 2025 GMT
Subject: CN=3e124eaef8a95f593182eb3710e00e192dcf1ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:05:18:8a:8f:b4:89:9c:f1:88:66:d8:dc:3a:
d2:3e:28:2d:c5:6a:a2:f4:dd:6b:74:71:c3:93:43:
f5:7f:80:0f:ed:92:14:88:4f:16:ff:7b:78:95:1b:
43:3f:13:d7:3e:c4:b7:55:ba:8d:6d:04:eb:ce:8f:
d9:05:bb:17:be:6a:44:aa:0a:39:eb:d7:a2:10:4d:
63:fe:af:4f:b9:75:4d:13:ba:c6:9f:99:ab:74:7d:
f0:f0:70:1d:60:28:81:e1:ec:7d:34:d0:66:61:5c:
c2:2e:01:3e:0c:25:48:c9:ac:dd:2d:88:46:95:bb:
2c:85:0f:fe:93:3c:b5:70:19:d3:ba:0d:49:44:6d:
f5:e8:9d:39:ef:d4:2d:c7:37:68:6d:27:60:70:2d:
17:1f:4b:d5:56:13:36:12:32:97:a3:b9:a1:59:d8:
04:b3:70:45:81:33:0c:a9:0e:7a:35:ce:75:c3:03:
5c:ff:75:81:82:f2:0c:4a:a3:f3:b7:d3:5c:d0:c6:
66:b5:62:5d:75:be:7c:e8:4c:4b:3f:b0:be:ab:2e:
b5:ac:d3:74:16:e7:6e:1f:ce:87:30:af:1d:07:49:
41:d6:f9:fc:a3:5a:7b:d2:a6:1a:6f:c1:a0:ff:a8:
8d:c3:8a:0b:5f:45:7f:b2:a3:93:e5:f3:2f:e5:d1:
5c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:12:4E:AE:F8:A9:5F:59:31:82:EB:37:10:E0:0E:19:2D:CF:1A:B7
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:96:a9:04:d8:69:21:b8:03:8b:90:1f:ab:56:1a:41:38:c3:
fe:f2:77:fc:5c:1e:9e:d3:6b:e8:17:56:9d:ea:85:4e:e7:58:
72:a4:04:ff:bd:db:79:3b:fa:4c:45:a4:54:c7:79:b5:ab:72:
e1:50:65:f7:b4:77:d8:03:26:d4:14:04:c6:97:be:eb:5d:bb:
8f:6d:4d:8d:8b:26:7d:18:33:cd:c3:c3:e1:f1:13:11:5a:b8:
fe:57:e7:89:06:a0:6b:80:61:f8:73:36:e2:fb:87:56:3b:53:
09:9f:4a:18:e1:ff:b3:3c:c1:bc:aa:a8:b5:af:ba:50:80:d2:
8e:ad:77:8c:37:58:7d:63:a6:f9:66:62:7a:85:4e:0a:10:71:
b2:2d:6a:a7:bd:18:43:a0:c1:fb:99:69:cc:12:71:12:2e:0b:
86:b2:3c:b4:af:fe:4c:b3:ba:f2:52:68:51:f4:23:b3:34:de:
46:5e:a4:3b:c1:d9:fa:ae:8d:89:64:cc:74:e8:1d:41:95:25:
3a:c9:4f:f5:35:71:9b:58:f8:80:71:60:ee:a7:7e:bf:2a:2d:
a6:cf:b6:dc:6e:d2:53:30:98:5a:97:8d:9f:e9:d6:9c:3d:a1:
39:60:7e:42:b0:7f:09:6c:99:e9:84:aa:b9:e4:bf:82:0d:29:
d6:e2:96:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduh3dv9OsFE0AnHDgZE6/BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjNGMyNjI3M2RhMjgyMWZjZTI2MDc1YWEwYTZlMjMwMWVj
ODQ5MjcwHhcNMjUwNjE0MTMwMTAwWhcNMjUwNjE1MTMwMTAwWjAzMTEwLwYDVQQD
EygzZTEyNGVhZWY4YTk1ZjU5MzE4MmViMzcxMGUwMGUxOTJkY2YxYWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwUYio+0iZzxiGbY3DrSPigtxWqi
9N1rdHHDk0P1f4AP7ZIUiE8W/3t4lRtDPxPXPsS3VbqNbQTrzo/ZBbsXvmpEqgo5
69eiEE1j/q9PuXVNE7rGn5mrdH3w8HAdYCiB4ex9NNBmYVzCLgE+DCVIyazdLYhG
lbsshQ/+kzy1cBnTug1JRG316J0579QtxzdobSdgcC0XH0vVVhM2EjKXo7mhWdgE
s3BFgTMMqQ56Nc51wwNc/3WBgvIMSqPzt9Nc0MZmtWJddb586ExLP7C+qy61rNN0
FuduH86HMK8dB0lB1vn8o1p70qYab8Gg/6iNw4oLX0V/sqOT5fMv5dFcnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD4STq74qV9ZMYLrNxDgDhktzxq3MB8GA1UdIwQY
MBaAFBxMJic9ooIfziYHWqCm4jAeyEknMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81NDVjY2UtYWYxMS00ZWY3LTlhNWQt
ZDM1YjQzMGFmMjZkLzEvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS81NDVjY2UtYWYxMS00ZWY3LTlhNWQtZDM1YjQzMGFmMjZk
LzEvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsZapBNhp
IbgDi5Afq1YaQTjD/vJ3/FwentNr6BdWneqFTudYcqQE/73beTv6TEWkVMd5taty
4VBl97R32AMm1BQExpe+6127j21NjYsmfRgzzcPD4fETEVq4/lfniQaga4Bh+HM2
4vuHVjtTCZ9KGOH/szzBvKqota+6UIDSjq13jDdYfWOm+WZieoVOChBxsi1qp70Y
Q6DB+5lpzBJxEi4LhrI8tK/+TLO68lJoUfQjszTeRl6kO8HZ+q6NiWTMdOgdQZUl
OslP9TVxm1j4gHFg7qd+vyotps+23G7SUzCYWpeNn+nWnD2hOWB+QrB/CWyZ6YSq
ueS/gg0p1uKWhg==
-----END CERTIFICATE-----
Generated at Sun Jun 15 00:12:17 2025 by rpki-client