Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
File: HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft (raw, json)
Hash identifier: izbMvUEcKC0G1VxPAjLTcxsk3vDJSyqJm/pHE6XhMNU=
Subject key identifier: 6A:FB:47:A8:70:92:E4:53:8E:7E:F9:B6:57:9A:59:C2:E3:4C:5C:11
Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Certificate serial: 01976960E5FB37F74ECCA856B86DED921741
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
Manifest number: 0607
Signing time: Fri 13 Jun 2025 13:00:47 +0000
Manifest this update: Fri 13 Jun 2025 13:00:47 +0000
Manifest next update: Sat 14 Jun 2025 13:00:47 +0000
Files and hashes: 1: HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl (hash: RDqVVcKlSWwv/fbwX79UfL9LZHqE5AGOoY13e5qZgK8=)
2: bIBmhUC2WLWBXyi5VaCHLFuHkDs.roa (hash: F54YraMKL44U0jhJwgmaruTpnrxsP2uQrqeXw7OujLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:60:e5:fb:37:f7:4e:cc:a8:56:b8:6d:ed:92:17:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Validity
Not Before: Jun 13 13:00:47 2025 GMT
Not After : Jun 14 13:00:47 2025 GMT
Subject: CN=6afb47a87092e4538e7ef9b6579a59c2e34c5c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2a:25:73:a5:79:2a:f5:7b:81:c7:f2:19:aa:
14:dc:83:5f:a9:87:38:2e:6c:95:41:f0:fa:ff:a5:
cb:a1:cd:96:4d:ca:11:78:bc:e1:cf:e4:f3:95:69:
34:47:5b:00:26:4f:ac:e6:fb:f1:1f:ad:a0:6e:d2:
d2:d1:61:f5:ea:d9:67:92:ef:14:a5:ea:96:d9:fe:
5c:5a:4e:99:3d:5d:c8:c4:35:88:be:bb:c0:b3:d7:
e0:a8:fa:e2:df:c8:7c:4f:c3:20:ff:2b:4c:c7:1b:
ea:da:50:b4:b9:c3:bf:e6:a4:ce:5a:6d:1f:46:70:
97:2b:41:47:ff:d2:0b:c9:1c:98:01:db:b8:38:39:
39:36:8f:2b:22:89:64:66:16:d6:8e:04:c7:e7:79:
41:b0:87:62:50:11:1b:63:8a:7d:5b:aa:82:e9:31:
1d:1e:ae:24:d7:b2:79:b0:e0:31:4b:4e:9b:88:b4:
76:51:7b:f9:43:be:d7:63:c0:d7:bf:65:3b:a9:66:
c6:06:cf:aa:e8:7f:ee:c8:e2:9f:59:c0:a3:8a:a2:
1d:ce:d2:81:2d:93:c1:03:be:49:24:e0:2f:d7:59:
a2:e7:97:2d:21:dc:28:cc:cc:5c:90:7d:01:36:ed:
a6:b0:e6:b0:e3:d4:54:85:8a:63:bd:76:ad:44:25:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FB:47:A8:70:92:E4:53:8E:7E:F9:B6:57:9A:59:C2:E3:4C:5C:11
X509v3 Authority Key Identifier:
keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:0a:de:30:51:d5:3e:79:b6:4c:30:53:13:bf:dd:81:40:d5:
41:c0:6c:bb:8a:d8:56:ca:78:e2:cb:81:72:2d:d6:22:64:44:
fc:31:52:2f:bc:df:5f:fc:0d:10:43:55:1d:0f:e3:a9:d1:1c:
7b:6e:f0:22:c4:4e:21:13:85:8e:b2:05:08:7d:c3:f8:14:0c:
f1:ac:9a:0d:de:44:23:1b:6e:bf:8a:c3:8c:fb:18:18:61:a1:
91:82:b6:58:76:ff:50:4d:d7:0a:44:61:d1:47:26:1f:c2:9f:
ba:f1:77:8b:9b:2a:9f:e7:c6:73:08:1f:f5:23:75:35:af:5f:
12:3b:db:3c:c8:3c:ed:65:7d:9a:0e:be:aa:9b:97:e3:ea:c9:
a4:35:ef:29:e6:08:26:53:46:9b:31:7b:ab:86:49:56:37:0b:
cd:46:7c:fc:ee:52:07:db:16:9f:47:56:d3:dc:71:88:7f:a9:
38:b9:89:3e:c7:de:4b:f9:24:15:9d:8c:e0:21:c4:92:ba:4b:
f9:24:aa:52:51:1a:51:b7:d0:19:16:89:77:31:fe:be:c9:2b:
f1:8c:63:a9:ac:01:5f:11:cd:32:20:a8:a3:f8:61:b3:9c:15:
9e:8f:67:2d:62:4c:4d:d2:a0:b4:44:59:4d:07:aa:f4:7b:51:
df:cd:ba:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpYOX7N/dOzKhWuG3tkhdBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNjNhNDdlY2JmY2ZhYTlmNmNmZWNlMjYxNGM3MGU4YjVh
ZGI4M2UwHhcNMjUwNjEzMTMwMDQ3WhcNMjUwNjE0MTMwMDQ3WjAzMTEwLwYDVQQD
Eyg2YWZiNDdhODcwOTJlNDUzOGU3ZWY5YjY1NzlhNTljMmUzNGM1YzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnColc6V5KvV7gcfyGaoU3INfqYc4
LmyVQfD6/6XLoc2WTcoReLzhz+TzlWk0R1sAJk+s5vvxH62gbtLS0WH16tlnku8U
peqW2f5cWk6ZPV3IxDWIvrvAs9fgqPri38h8T8Mg/ytMxxvq2lC0ucO/5qTOWm0f
RnCXK0FH/9ILyRyYAdu4ODk5No8rIolkZhbWjgTH53lBsIdiUBEbY4p9W6qC6TEd
Hq4k17J5sOAxS06biLR2UXv5Q77XY8DXv2U7qWbGBs+q6H/uyOKfWcCjiqIdztKB
LZPBA75JJOAv11mi55ctIdwozMxckH0BNu2msOaw49RUhYpjvXatRCXgoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGr7R6hwkuRTjn75tleaWcLjTFwRMB8GA1UdIwQY
MBaAFB5jpH7L/Pqp9s/s4mFMcOi1rbg+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy80YTk2YmUtZmJlYi00NTgwLThiYWEt
MzU1YjVjZDVkOTcxLzEvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy80YTk2YmUtZmJlYi00NTgwLThiYWEtMzU1YjVjZDVkOTcx
LzEvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGQreMFHV
Pnm2TDBTE7/dgUDVQcBsu4rYVsp44suBci3WImRE/DFSL7zfX/wNEENVHQ/jqdEc
e27wIsROIROFjrIFCH3D+BQM8ayaDd5EIxtuv4rDjPsYGGGhkYK2WHb/UE3XCkRh
0UcmH8KfuvF3i5sqn+fGcwgf9SN1Na9fEjvbPMg87WV9mg6+qpuX4+rJpDXvKeYI
JlNGmzF7q4ZJVjcLzUZ8/O5SB9sWn0dW09xxiH+pOLmJPsfeS/kkFZ2M4CHEkrpL
+SSqUlEaUbfQGRaJdzH+vskr8YxjqawBXxHNMiCoo/hhs5wVno9nLWJMTdKgtERZ
TQeq9HtR3826wg==
-----END CERTIFICATE-----
Generated at Fri Jun 13 19:15:43 2025 by rpki-client