Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json)
Hash identifier: /k/Pvw52M4EVaKCkHqEfL7wjItPv2ekBcGeXjB0ReTk=
Subject key identifier: 78:24:D0:88:EE:9E:A9:C2:05:44:97:4B:DD:43:87:2C:7B:5F:2D:D1
Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Certificate serial: 01968F281B21CB08A73FAA832BCCA1BF4D5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
Manifest number: 140C
Signing time: Fri 02 May 2025 04:01:32 +0000
Manifest this update: Fri 02 May 2025 04:01:32 +0000
Manifest next update: Sat 03 May 2025 04:01:32 +0000
Files and hashes: 1: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: PI7UIw+L8Mu9DUTG1Z6yr0EK95Lk6lzPJYUN+0yDzZM=)
2: W-OtDTrcD4enIHqlL53Q8gJVqVg.roa (hash: MIoWyZfzBnM9tbFHcQ1uCgLljDFhySK8a9b/Bqx5jVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 04:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:28:1b:21:cb:08:a7:3f:aa:83:2b:cc:a1:bf:4d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Validity
Not Before: May 2 04:01:32 2025 GMT
Not After : May 3 04:01:32 2025 GMT
Subject: CN=7824d088ee9ea9c20544974bdd43872c7b5f2dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:fe:be:27:ea:f5:2a:17:e7:53:c8:b2:8b:dc:
31:5b:cc:5a:10:2c:59:fd:81:30:87:70:e0:a5:07:
5d:6f:d0:05:df:28:d3:b2:3b:9f:d8:55:dc:13:1b:
2b:55:b7:34:94:17:4c:bb:9c:3c:7b:fb:53:f3:47:
52:45:75:1c:37:c5:67:17:26:84:d0:85:ad:a5:11:
3d:4c:81:d4:97:99:22:84:40:dc:bb:65:93:e6:0d:
c4:f1:e0:b3:4a:10:60:1a:cd:fe:0e:1c:62:2b:1c:
51:3f:66:e7:e9:f9:c2:12:c4:cb:0a:5f:77:b4:a7:
72:b2:df:b6:e8:f8:c7:84:01:61:7c:9b:e9:96:0b:
66:16:5a:36:a6:6e:d8:de:75:7c:4d:16:66:d1:f9:
ba:34:2c:dd:a5:ed:d1:8b:12:98:27:b8:f7:ca:6e:
d7:39:50:c4:2a:02:44:45:14:61:21:19:1e:e4:52:
f8:9a:40:9a:61:40:35:e4:0c:0d:06:87:be:d0:cc:
09:a8:11:37:ba:a2:c8:f2:c0:d9:47:5b:f6:ec:6a:
18:46:11:ef:72:71:95:02:bc:8d:87:de:66:85:c8:
ac:d4:b6:26:1c:e3:a2:93:d1:85:d7:c3:58:ac:4c:
cd:51:f5:98:d4:de:7f:6c:15:33:fd:ff:30:55:22:
fb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:24:D0:88:EE:9E:A9:C2:05:44:97:4B:DD:43:87:2C:7B:5F:2D:D1
X509v3 Authority Key Identifier:
keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:14:ed:18:de:58:76:ed:45:25:a3:e2:e7:fb:01:86:05:be:
dc:48:35:41:39:11:82:27:9c:2f:69:9e:96:3a:9f:54:9f:8e:
9b:15:8b:4f:ec:86:2b:d2:c5:8c:91:8c:71:ea:44:bf:b0:5b:
cf:52:b1:da:c2:95:53:e8:27:f3:75:69:c8:69:14:d3:30:a2:
9e:32:84:a5:b7:81:83:b9:d9:4a:3e:6f:24:ed:22:92:35:d0:
99:ed:76:68:1e:33:83:48:e2:a9:63:8c:8a:f1:b6:9e:68:ff:
e7:43:06:07:f6:7e:c2:29:f0:77:67:55:82:b3:35:91:a3:ef:
bf:bb:7c:76:62:19:bf:d6:0c:b9:1d:fa:cb:9f:9d:20:f1:fc:
89:57:85:86:6e:57:58:f7:4c:cc:14:b9:39:f5:68:5a:f6:a4:
d2:d0:c2:fe:4a:07:61:1d:40:7e:44:d8:6e:00:79:90:fa:d1:
a3:f5:8d:5d:79:92:1f:8d:21:db:d4:47:0e:ed:40:a5:3c:d2:
a5:f2:08:38:9e:31:fd:2c:4c:7e:82:c8:0f:ea:b6:53:4c:3b:
45:19:a4:62:b8:3d:ba:95:1c:6d:b1:ae:92:f9:b5:c9:b7:5f:
45:ea:6b:a3:ca:13:b2:dd:0c:62:9a:c4:b9:48:84:31:15:5b:
84:6f:3e:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaPKBshywinP6qDK8yhv01aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYjQ2NGJhMDM4YmMwYmJiZWU0MDBmM2U5MDhkZjUxNDgy
YzUxYmIwHhcNMjUwNTAyMDQwMTMyWhcNMjUwNTAzMDQwMTMyWjAzMTEwLwYDVQQD
Eyg3ODI0ZDA4OGVlOWVhOWMyMDU0NDk3NGJkZDQzODcyYzdiNWYyZGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9f6+J+r1KhfnU8iyi9wxW8xaECxZ
/YEwh3DgpQddb9AF3yjTsjuf2FXcExsrVbc0lBdMu5w8e/tT80dSRXUcN8VnFyaE
0IWtpRE9TIHUl5kihEDcu2WT5g3E8eCzShBgGs3+DhxiKxxRP2bn6fnCEsTLCl93
tKdyst+26PjHhAFhfJvplgtmFlo2pm7Y3nV8TRZm0fm6NCzdpe3RixKYJ7j3ym7X
OVDEKgJERRRhIRke5FL4mkCaYUA15AwNBoe+0MwJqBE3uqLI8sDZR1v27GoYRhHv
cnGVAryNh95mhcis1LYmHOOik9GF18NYrEzNUfWY1N5/bBUz/f8wVSL7hwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHgk0IjunqnCBUSXS91Dhyx7Xy3RMB8GA1UdIwQY
MBaAFBy0ZLoDi8C7vuQA8+kI31FILFG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEt
YmIyNjE0M2M1ZWRjLzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEtYmIyNjE0M2M1ZWRj
LzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcxTtGN5Y
du1FJaPi5/sBhgW+3Eg1QTkRgiecL2meljqfVJ+OmxWLT+yGK9LFjJGMcepEv7Bb
z1Kx2sKVU+gn83VpyGkU0zCinjKEpbeBg7nZSj5vJO0ikjXQme12aB4zg0jiqWOM
ivG2nmj/50MGB/Z+winwd2dVgrM1kaPvv7t8dmIZv9YMuR36y5+dIPH8iVeFhm5X
WPdMzBS5OfVoWvak0tDC/koHYR1AfkTYbgB5kPrRo/WNXXmSH40h29RHDu1ApTzS
pfIIOJ4x/SxMfoLID+q2U0w7RRmkYrg9upUcbbGukvm1ybdfRepro8oTst0MYprE
uUiEMRVbhG8+aA==
-----END CERTIFICATE-----
Generated at Fri May 2 13:35:21 2025 by rpki-client