Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
File: HMIQHIyT1FjSXDElyMm8ya8TKHE.mft (raw, json)
Hash identifier: WFQqB5ZZkoTPQnuvKCSMBg05MMilu0VEeLNgonENeXA=
Subject key identifier: 35:CF:8B:17:6D:E3:AE:B6:65:29:B1:6A:47:67:C9:A7:8F:A3:C0:78
Authority key identifier: 1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
Certificate issuer: /CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Certificate serial: 01976D06B4B0DD735B37ECB18E574A5C865C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
Manifest number: 03C3
Signing time: Sat 14 Jun 2025 06:00:45 +0000
Manifest this update: Sat 14 Jun 2025 06:00:45 +0000
Manifest next update: Sun 15 Jun 2025 06:00:45 +0000
Files and hashes: 1: HMIQHIyT1FjSXDElyMm8ya8TKHE.crl (hash: 79aHpRVtO+3aehimLwuuR4KMBTsjBnL7h34dlS8weNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:06:b4:b0:dd:73:5b:37:ec:b1:8e:57:4a:5c:86:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cc2101c8c93d458d25c3125c8c9bcc9af132871
Validity
Not Before: Jun 14 06:00:45 2025 GMT
Not After : Jun 15 06:00:45 2025 GMT
Subject: CN=35cf8b176de3aeb66529b16a4767c9a78fa3c078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:cd:d2:1d:1a:05:12:ff:1c:93:18:a6:66:60:
6e:d1:c6:0c:10:19:17:b3:8c:1e:3b:38:02:33:4c:
59:ce:f9:7e:01:ce:96:f0:37:e2:b1:be:bf:5a:24:
04:ca:6b:4f:f4:e8:8a:a0:79:2a:d4:83:f2:a5:60:
54:bb:9d:cd:c8:15:7c:ad:b0:22:db:44:dc:25:f1:
27:2b:da:ef:6a:76:ac:11:49:2c:e0:85:92:26:c1:
9a:6a:b7:e3:b6:f3:a5:29:92:8f:1e:db:86:a6:51:
71:7a:0b:05:96:24:a4:43:5d:db:26:8d:d4:1a:2d:
5f:67:8f:b7:58:bf:3b:5f:6c:90:af:5b:11:ed:43:
08:7a:63:a5:60:5b:5d:89:7d:cd:1f:94:06:9d:bf:
c7:d7:c0:c6:14:83:f6:7b:a6:ed:3c:19:3f:a4:e5:
53:09:8e:0e:9a:a0:09:6c:81:a3:33:74:f4:14:52:
89:c6:49:8d:e4:49:81:d4:85:77:3f:ab:70:92:56:
10:b2:56:b2:77:22:64:bd:b6:b0:82:63:b9:35:b8:
80:1e:3a:22:bf:81:c8:95:a5:3d:5f:28:d2:8f:65:
27:0e:c3:df:36:eb:26:ee:ee:8a:61:11:b8:71:17:
e6:80:43:f1:c6:6f:2c:d7:23:3e:50:6f:b5:03:4c:
61:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:CF:8B:17:6D:E3:AE:B6:65:29:B1:6A:47:67:C9:A7:8F:A3:C0:78
X509v3 Authority Key Identifier:
keyid:1C:C2:10:1C:8C:93:D4:58:D2:5C:31:25:C8:C9:BC:C9:AF:13:28:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HMIQHIyT1FjSXDElyMm8ya8TKHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3c293f-789d-4695-b57f-6aaf5496065e/1/HMIQHIyT1FjSXDElyMm8ya8TKHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:e3:13:c6:55:37:ea:5b:bc:3c:92:89:b8:12:76:26:23:2c:
f5:31:1b:e0:cf:9d:1d:28:ba:cc:9a:96:d9:d5:29:db:17:7c:
1e:49:ab:2b:63:21:69:6f:54:32:d5:34:a1:a8:ac:94:92:fa:
67:eb:e8:3d:a7:77:f2:bd:73:27:bb:0a:28:97:e2:58:3f:d0:
a1:17:0f:66:29:57:33:56:a1:9d:75:f0:76:43:b9:ea:4a:4d:
86:c2:2e:eb:6f:b5:60:01:88:0f:cb:13:6d:94:55:ca:14:a0:
e6:34:bc:0c:e0:7a:6e:c3:b9:ba:24:68:e6:da:cb:e4:ca:d9:
8d:63:2e:88:64:0b:ca:d3:a1:7f:6e:8f:a5:e3:92:71:f3:bf:
1d:0d:83:7f:46:f8:ea:1f:e0:eb:e3:41:2a:a4:ce:11:da:fd:
d8:2e:7b:78:c4:7e:c5:42:44:bc:02:59:24:1f:15:f4:52:3b:
01:bd:0e:25:8c:74:fc:05:d8:fa:fa:f2:95:0a:31:33:16:de:
c0:bc:23:3e:e8:19:c9:53:ee:72:96:51:ca:37:49:04:6b:64:
30:42:71:96:6b:9a:e7:ec:1b:b8:41:65:0c:c2:69:13:00:77:
2f:50:70:54:77:43:17:aa:8a:ab:45:8e:7d:49:24:71:3b:a3:
23:f9:34:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtBrSw3XNbN+yxjldKXIZcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYzIxMDFjOGM5M2Q0NThkMjVjMzEyNWM4YzliY2M5YWYx
MzI4NzEwHhcNMjUwNjE0MDYwMDQ1WhcNMjUwNjE1MDYwMDQ1WjAzMTEwLwYDVQQD
EygzNWNmOGIxNzZkZTNhZWI2NjUyOWIxNmE0NzY3YzlhNzhmYTNjMDc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9s3SHRoFEv8ckximZmBu0cYMEBkX
s4weOzgCM0xZzvl+Ac6W8Dfisb6/WiQEymtP9OiKoHkq1IPypWBUu53NyBV8rbAi
20TcJfEnK9rvanasEUks4IWSJsGaarfjtvOlKZKPHtuGplFxegsFliSkQ13bJo3U
Gi1fZ4+3WL87X2yQr1sR7UMIemOlYFtdiX3NH5QGnb/H18DGFIP2e6btPBk/pOVT
CY4OmqAJbIGjM3T0FFKJxkmN5EmB1IV3P6twklYQslaydyJkvbawgmO5NbiAHjoi
v4HIlaU9XyjSj2UnDsPfNusm7u6KYRG4cRfmgEPxxm8s1yM+UG+1A0xhzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDXPixdt4662ZSmxakdnyaePo8B4MB8GA1UdIwQY
MBaAFBzCEByMk9RY0lwxJcjJvMmvEyhxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSE1JUUhJeVQxRmpTWERFbHlNbTh5YThUS0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8zYzI5M2YtNzg5ZC00Njk1LWI1N2Yt
NmFhZjU0OTYwNjVlLzEvSE1JUUhJeVQxRmpTWERFbHlNbTh5YThUS0hFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8zYzI5M2YtNzg5ZC00Njk1LWI1N2YtNmFhZjU0OTYwNjVl
LzEvSE1JUUhJeVQxRmpTWERFbHlNbTh5YThUS0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMOMTxlU3
6lu8PJKJuBJ2JiMs9TEb4M+dHSi6zJqW2dUp2xd8HkmrK2MhaW9UMtU0oaislJL6
Z+voPad38r1zJ7sKKJfiWD/QoRcPZilXM1ahnXXwdkO56kpNhsIu62+1YAGID8sT
bZRVyhSg5jS8DOB6bsO5uiRo5trL5MrZjWMuiGQLytOhf26PpeOScfO/HQ2Df0b4
6h/g6+NBKqTOEdr92C57eMR+xUJEvAJZJB8V9FI7Ab0OJYx0/AXY+vrylQoxMxbe
wLwjPugZyVPucpZRyjdJBGtkMEJxlmua5+wbuEFlDMJpEwB3L1BwVHdDF6qKq0WO
fUkkcTujI/k03g==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:30:12 2025 by rpki-client