Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
File: H2fPHKLeoy_NlwLdJRDra_K2hhA.mft (raw, json)
Hash identifier: XYlDpxg+WRSXVUUBm5p8d3S++GeL6vqaXFQL0a8ugFw=
Subject key identifier: 1F:8F:ED:81:B1:1F:EC:64:FC:01:6A:11:95:D8:7A:5B:6E:12:A6:41
Authority key identifier: 1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
Certificate issuer: /CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Certificate serial: 0197733F78DA75E3E6BDCE74E60F3C01C945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
Manifest number: 0534
Signing time: Sun 15 Jun 2025 11:00:28 +0000
Manifest this update: Sun 15 Jun 2025 11:00:28 +0000
Manifest next update: Mon 16 Jun 2025 11:00:28 +0000
Files and hashes: 1: 39yFNcs_aiMECPSY8yer3c7rqfs.roa (hash: kt8DxoHHJV7b65racNqYI0+ZGEt7nNXcd8uoIQ2X++s=)
2: H2fPHKLeoy_NlwLdJRDra_K2hhA.crl (hash: bDIK41dxY4N2ePFObOLD/gQaQyChCEhNL27PzJNGgUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 11:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:3f:78:da:75:e3:e6:bd:ce:74:e6:0f:3c:01:c9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f67cf1ca2dea32fcd9702dd2510eb6bf2b68610
Validity
Not Before: Jun 15 11:00:28 2025 GMT
Not After : Jun 16 11:00:28 2025 GMT
Subject: CN=1f8fed81b11fec64fc016a1195d87a5b6e12a641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:84:bf:f3:e1:b4:1f:9c:12:50:e7:25:bc:f6:
8d:2f:e9:25:f2:8c:18:ce:9f:45:a0:ba:22:c9:52:
e0:6a:9e:0c:37:2c:de:9e:96:83:6b:6c:38:80:38:
c7:e7:a1:3f:12:07:e6:0e:ea:9b:62:00:72:b5:03:
38:f4:96:f5:fb:57:88:51:05:b8:56:e7:23:4c:ed:
8c:ef:89:c0:c0:54:89:85:40:55:38:00:f4:89:35:
a8:67:68:81:7e:5a:d1:53:01:5e:a5:c6:b9:ed:4a:
f1:c4:26:89:4b:a1:a9:57:14:d9:1f:00:12:29:6d:
7c:1f:d5:06:84:82:2e:69:8b:e3:14:f3:46:62:d5:
21:e3:6c:f7:4f:3c:a0:fe:b8:6b:9f:70:1f:c9:67:
9d:78:6f:86:e2:b2:03:9d:73:03:77:93:a4:de:63:
5e:01:c6:83:df:5d:86:fd:0e:e0:4f:9d:41:3d:dc:
a5:8f:8c:5e:5d:b6:33:c4:e5:8d:d1:1b:72:bd:11:
28:fa:73:0b:f1:a5:5c:d6:0a:dc:9a:da:e3:dc:fb:
f8:59:81:c5:75:80:f9:9b:2b:cb:39:32:92:19:f4:
57:7d:5d:21:41:68:3e:82:b7:a4:2a:0a:db:7d:6c:
7c:2f:1c:4d:7f:62:6f:1f:06:1b:49:6b:d0:1e:90:
14:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8F:ED:81:B1:1F:EC:64:FC:01:6A:11:95:D8:7A:5B:6E:12:A6:41
X509v3 Authority Key Identifier:
keyid:1F:67:CF:1C:A2:DE:A3:2F:CD:97:02:DD:25:10:EB:6B:F2:B6:86:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2fPHKLeoy_NlwLdJRDra_K2hhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3cb4d6-f32c-4130-ae0e-badbe840977e/1/H2fPHKLeoy_NlwLdJRDra_K2hhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:6b:ea:1b:df:4f:da:73:fe:fc:13:20:de:99:57:3a:c6:f2:
f0:dc:6d:ba:2e:82:ab:2c:fc:c3:72:85:97:d8:d9:05:a8:52:
76:48:eb:f9:80:aa:eb:17:01:e1:53:65:70:05:d6:7f:89:d6:
7d:c6:86:3e:f4:aa:cc:6a:91:61:9b:0e:18:c7:ab:65:85:56:
3f:bc:29:e7:d7:bc:ae:f1:89:b8:55:7e:ea:a1:f5:9e:8c:ea:
ea:20:c4:80:da:c1:7d:76:21:88:f5:4d:4a:e8:5e:e1:2d:eb:
cd:7d:42:24:5d:ec:01:01:93:e0:a9:7f:ae:7d:3b:4f:65:75:
9e:b7:07:49:8d:f9:d1:83:29:39:f5:66:7c:57:af:78:0d:a5:
f2:f4:01:44:80:e9:a3:77:20:94:3c:70:5b:9d:bd:a8:8d:fd:
7e:75:df:2d:cc:4a:5a:97:7a:df:3a:be:e6:68:a1:c3:8b:16:
76:43:d6:cb:1e:11:31:b6:88:3e:7f:a3:bc:0a:ff:fd:42:a9:
4f:84:0f:ec:45:06:9e:2f:07:22:7c:82:08:b5:0a:d0:06:41:
14:a5:06:e1:c4:e0:25:91:27:48:76:58:95:53:a0:f5:0e:76:
b0:cc:9b:40:23:21:4e:af:e0:92:e4:cf:22:14:67:e2:35:41:
e1:30:2e:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdzP3jadePmvc505g88AclFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjdjZjFjYTJkZWEzMmZjZDk3MDJkZDI1MTBlYjZiZjJi
Njg2MTAwHhcNMjUwNjE1MTEwMDI4WhcNMjUwNjE2MTEwMDI4WjAzMTEwLwYDVQQD
EygxZjhmZWQ4MWIxMWZlYzY0ZmMwMTZhMTE5NWQ4N2E1YjZlMTJhNjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoS/8+G0H5wSUOclvPaNL+kl8owY
zp9FoLoiyVLgap4MNyzenpaDa2w4gDjH56E/EgfmDuqbYgBytQM49Jb1+1eIUQW4
VucjTO2M74nAwFSJhUBVOAD0iTWoZ2iBflrRUwFepca57UrxxCaJS6GpVxTZHwAS
KW18H9UGhIIuaYvjFPNGYtUh42z3Tzyg/rhrn3AfyWedeG+G4rIDnXMDd5Ok3mNe
AcaD312G/Q7gT51BPdylj4xeXbYzxOWN0RtyvREo+nML8aVc1grcmtrj3Pv4WYHF
dYD5myvLOTKSGfRXfV0hQWg+grekKgrbfWx8LxxNf2JvHwYbSWvQHpAU5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB+P7YGxH+xk/AFqEZXYeltuEqZBMB8GA1UdIwQY
MBaAFB9nzxyi3qMvzZcC3SUQ62vytoYQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8zY2I0ZDYtZjMyYy00MTMwLWFlMGUt
YmFkYmU4NDA5NzdlLzEvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8zY2I0ZDYtZjMyYy00MTMwLWFlMGUtYmFkYmU4NDA5Nzdl
LzEvSDJmUEhLTGVveV9ObHdMZEpSRHJhX0syaGhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs2vqG99P
2nP+/BMg3plXOsby8Nxtui6Cqyz8w3KFl9jZBahSdkjr+YCq6xcB4VNlcAXWf4nW
fcaGPvSqzGqRYZsOGMerZYVWP7wp59e8rvGJuFV+6qH1nozq6iDEgNrBfXYhiPVN
Suhe4S3rzX1CJF3sAQGT4Kl/rn07T2V1nrcHSY350YMpOfVmfFeveA2l8vQBRIDp
o3cglDxwW529qI39fnXfLcxKWpd63zq+5mihw4sWdkPWyx4RMbaIPn+jvAr//UKp
T4QP7EUGni8HInyCCLUK0AZBFKUG4cTgJZEnSHZYlVOg9Q52sMybQCMhTq/gkuTP
IhRn4jVB4TAu/w==
-----END CERTIFICATE-----
Generated at Sun Jun 15 20:06:28 2025 by rpki-client