Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: HGcGDyjxIcxRaQRXtKDA2zQrFol3d37UIzRyBWCtRBU=
Subject key identifier: CA:6B:29:69:B2:67:15:8B:9B:49:EA:A6:79:5C:C4:49:5C:07:2D:45
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 0196741DFE0CD170E6FC1A1206F56AF5813B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 02D6
Signing time: Sat 26 Apr 2025 22:00:44 +0000
Manifest this update: Sat 26 Apr 2025 22:00:44 +0000
Manifest next update: Sun 27 Apr 2025 22:00:44 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: zNUwBCm/WLlo52GhLbG1fdaoFmw+faOjMzOACmKUjmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 22:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:fe:0c:d1:70:e6:fc:1a:12:06:f5:6a:f5:81:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Apr 26 22:00:44 2025 GMT
Not After : Apr 27 22:00:44 2025 GMT
Subject: CN=ca6b2969b267158b9b49eaa6795cc4495c072d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3d:1c:50:72:b0:20:16:8f:28:18:3a:17:f1:
e1:ca:29:d9:e2:50:35:93:3b:4f:fa:20:82:5b:e3:
44:dc:35:70:b9:d7:3c:0d:22:e2:c5:5b:99:11:1d:
2a:56:24:6e:e3:47:fd:ec:15:1b:6c:65:8a:56:11:
9a:1c:cd:96:b3:79:41:cf:6f:48:b7:a8:a0:19:6f:
5a:9b:21:ae:66:05:7f:19:6c:4d:46:31:ce:53:0a:
f2:85:e3:5e:d5:31:2f:f3:3a:ac:9e:63:70:a2:4a:
5e:e6:3e:42:be:da:28:7b:1d:93:1f:a8:04:5d:58:
ed:d1:53:a3:1a:10:82:24:f0:38:95:96:c5:41:95:
ed:e7:99:5c:b4:c7:db:a0:31:c2:6f:30:f2:04:76:
8d:07:9e:ef:17:bf:4a:f8:01:90:0e:61:d7:67:d9:
93:27:b7:db:bf:0a:7e:c7:eb:f7:9e:10:2d:30:85:
33:47:e2:7e:d4:b3:e9:d3:24:d5:ff:6d:88:74:2f:
6b:73:13:47:fe:97:b6:fc:62:04:69:35:b7:9a:02:
bb:f6:f1:be:a7:97:6d:e5:41:02:e0:2a:9b:8b:32:
8e:fc:4f:b6:22:02:a7:22:9d:91:83:2e:40:2e:91:
f6:dd:17:1d:df:98:b0:49:b1:a1:8f:f1:5d:13:a9:
65:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6B:29:69:B2:67:15:8B:9B:49:EA:A6:79:5C:C4:49:5C:07:2D:45
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:31:8b:8c:e5:8b:40:4d:2a:a8:63:48:84:6e:50:e6:68:3b:
28:e2:30:23:80:4b:6f:06:35:e8:32:56:96:02:4f:17:53:29:
05:6e:e1:1b:59:51:df:0b:87:05:9e:df:13:91:32:b5:08:42:
8d:df:8f:5e:32:80:4e:5f:d7:14:5d:ea:65:c0:52:c8:db:5b:
1d:df:c7:f3:a3:52:29:9e:ee:7e:63:db:ff:b9:aa:82:20:78:
94:ad:9f:3d:d3:e8:6c:35:7a:ed:f7:a1:6a:e4:d7:d3:83:8e:
3a:d6:e7:76:cb:6d:8c:91:ef:8c:54:d5:cb:3a:0a:1e:74:f2:
8d:dd:38:63:39:1d:7c:06:fe:21:f0:36:f4:b9:3e:b5:cf:16:
cb:be:ee:d6:b7:a5:b7:a7:7f:6d:ca:cf:0b:88:48:a0:ab:b5:
54:59:07:a5:b8:b7:10:c8:d9:cf:c6:86:fb:75:18:4b:37:8e:
6a:13:f9:f6:6d:e7:5d:b8:c1:23:e5:e3:09:d0:ea:13:d1:54:
3b:3b:53:cc:37:b2:36:b7:de:2b:23:2a:f6:2e:fa:cc:c4:ee:
cd:9d:48:fb:dc:72:2c:d2:95:2e:ef:7e:a1:f5:86:ac:44:02:
88:83:e1:a6:2c:02:41:5a:26:1a:07:5c:f8:95:7a:f6:af:ec:
4a:8a:a5:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ0Hf4M0XDm/BoSBvVq9YE7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx
ZjA1NDEwHhcNMjUwNDI2MjIwMDQ0WhcNMjUwNDI3MjIwMDQ0WjAzMTEwLwYDVQQD
EyhjYTZiMjk2OWIyNjcxNThiOWI0OWVhYTY3OTVjYzQ0OTVjMDcyZDQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsT0cUHKwIBaPKBg6F/HhyinZ4lA1
kztP+iCCW+NE3DVwudc8DSLixVuZER0qViRu40f97BUbbGWKVhGaHM2Ws3lBz29I
t6igGW9amyGuZgV/GWxNRjHOUwryheNe1TEv8zqsnmNwokpe5j5Cvtooex2TH6gE
XVjt0VOjGhCCJPA4lZbFQZXt55lctMfboDHCbzDyBHaNB57vF79K+AGQDmHXZ9mT
J7fbvwp+x+v3nhAtMIUzR+J+1LPp0yTV/22IdC9rcxNH/pe2/GIEaTW3mgK79vG+
p5dt5UEC4CqbizKO/E+2IgKnIp2Rgy5ALpH23Rcd35iwSbGhj/FdE6llxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMprKWmyZxWLm0nqpnlcxElcBy1FMB8GA1UdIwQY
MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt
M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm
LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYzGLjOWL
QE0qqGNIhG5Q5mg7KOIwI4BLbwY16DJWlgJPF1MpBW7hG1lR3wuHBZ7fE5EytQhC
jd+PXjKATl/XFF3qZcBSyNtbHd/H86NSKZ7ufmPb/7mqgiB4lK2fPdPobDV67feh
auTX04OOOtbndsttjJHvjFTVyzoKHnTyjd04YzkdfAb+IfA29Lk+tc8Wy77u1rel
t6d/bcrPC4hIoKu1VFkHpbi3EMjZz8aG+3UYSzeOahP59m3nXbjBI+XjCdDqE9FU
OztTzDeyNrfeKyMq9i76zMTuzZ1I+9xyLNKVLu9+ofWGrEQCiIPhpiwCQVomGgdc
+JV69q/sSoqlaA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 06:41:47 2025 by rpki-client