Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
File: HyAOBxBBRee6mHap0-55Kgc2TTY.mft (raw, json)
Hash identifier: k3NOKhHi3Zpf1hS+u7eG2t+lTTSb25teL7h1t0Kxmsk=
Subject key identifier: D2:02:E5:84:AF:72:6D:20:66:18:EE:D5:51:04:08:F2:92:57:EC:B0
Authority key identifier: 1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
Certificate issuer: /CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Certificate serial: 0197B6A16A2B437B2A72D3322E7FF5F78E5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
Manifest number: 02DB
Signing time: Sat 28 Jun 2025 13:02:01 +0000
Manifest this update: Sat 28 Jun 2025 13:02:01 +0000
Manifest next update: Sun 29 Jun 2025 13:02:01 +0000
Files and hashes: 1: HyAOBxBBRee6mHap0-55Kgc2TTY.crl (hash: 8HTfts2NGMW7r4tmxbynrQQZsEyVv78MdQ5hYE13aVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:6a:2b:43:7b:2a:72:d3:32:2e:7f:f5:f7:8e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f200e07104145e7ba9876a9d3ee792a07364d36
Validity
Not Before: Jun 28 13:02:01 2025 GMT
Not After : Jun 29 13:02:01 2025 GMT
Subject: CN=d202e584af726d206618eed5510408f29257ecb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:26:5e:c2:81:84:f3:47:1a:25:90:09:9f:62:
28:64:de:a9:ec:93:c3:53:5f:50:f3:b3:aa:94:83:
7c:d7:38:a0:cd:69:9b:c5:2f:24:53:58:ae:54:44:
03:58:6d:06:21:0e:c3:cc:3f:5e:6f:e5:3d:cc:df:
22:40:b8:16:2e:37:bd:17:be:cb:90:de:b8:1b:02:
4a:e3:d6:43:ed:02:c3:87:13:7c:aa:b0:e9:cd:48:
f3:17:12:3e:4d:7d:48:95:45:9b:7e:9b:db:c3:86:
af:8e:aa:a7:88:f9:69:e3:65:0a:6d:ce:92:50:57:
6e:66:29:38:1e:81:49:5f:7c:7e:5f:fd:0a:2f:ec:
d4:35:ff:a3:42:9a:15:6e:5b:b0:42:f6:7a:15:68:
f0:f5:73:19:9e:e6:f0:e4:d0:74:b7:e7:a0:99:a4:
0a:04:2a:86:47:90:8e:59:f4:31:e0:d4:f4:79:3e:
6c:5c:4c:03:db:ae:4f:ba:9a:93:f1:f5:bd:47:41:
25:79:81:26:cb:4c:5c:39:85:fc:c7:3d:2b:41:25:
d9:5a:1c:2e:e8:74:51:c4:4d:5e:e6:1c:db:86:8f:
3f:92:56:35:32:44:51:e3:db:ad:63:32:12:95:e1:
b6:9e:a1:bb:05:8d:bf:9e:c6:31:bb:51:29:6b:eb:
f1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:02:E5:84:AF:72:6D:20:66:18:EE:D5:51:04:08:F2:92:57:EC:B0
X509v3 Authority Key Identifier:
keyid:1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:ee:2d:31:21:f3:c3:97:38:d8:b8:0a:34:70:53:b9:40:78:
2e:13:6d:4e:d9:56:04:98:3a:cf:10:cd:c2:91:bc:ca:86:1d:
0f:a8:2c:5f:7e:f8:db:e2:b0:3d:90:28:99:e1:37:3b:ed:4b:
a9:01:e8:6c:bb:a4:f0:8d:d7:cc:35:d5:5a:5f:88:25:16:f2:
ee:2f:91:89:86:bb:3a:e2:93:63:3c:5e:b5:50:87:c9:ff:fb:
9b:3c:f5:3a:56:76:2b:69:37:74:2e:3d:c0:0c:b9:24:a5:c2:
50:14:86:50:39:9b:33:2d:9a:55:6a:b3:f6:4f:93:ed:29:4d:
e8:09:28:28:ae:d8:4b:9e:3b:a8:dd:7f:13:63:e7:92:66:86:
a3:9a:40:f7:b4:77:6f:f6:55:9c:e0:98:ff:c9:16:82:07:72:
6b:45:cf:9e:b3:6f:ea:47:8f:f9:df:f4:9c:66:90:b7:1b:cf:
95:74:33:86:de:92:59:eb:64:92:6a:80:22:95:b3:04:b6:36:
3c:98:c7:84:3f:92:de:46:b2:35:23:8d:8d:e4:e2:05:58:ca:
49:66:18:61:95:52:61:50:48:55:e6:65:01:5c:a1:96:94:20:
d1:7a:4a:19:9a:05:58:25:8f:f3:ef:ee:ca:58:c8:36:c1:c4:
39:53:da:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oWorQ3sqctMyLn/1945eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjAwZTA3MTA0MTQ1ZTdiYTk4NzZhOWQzZWU3OTJhMDcz
NjRkMzYwHhcNMjUwNjI4MTMwMjAxWhcNMjUwNjI5MTMwMjAxWjAzMTEwLwYDVQQD
EyhkMjAyZTU4NGFmNzI2ZDIwNjYxOGVlZDU1MTA0MDhmMjkyNTdlY2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSZewoGE80caJZAJn2IoZN6p7JPD
U19Q87OqlIN81zigzWmbxS8kU1iuVEQDWG0GIQ7DzD9eb+U9zN8iQLgWLje9F77L
kN64GwJK49ZD7QLDhxN8qrDpzUjzFxI+TX1IlUWbfpvbw4avjqqniPlp42UKbc6S
UFduZik4HoFJX3x+X/0KL+zUNf+jQpoVbluwQvZ6FWjw9XMZnubw5NB0t+egmaQK
BCqGR5COWfQx4NT0eT5sXEwD265PupqT8fW9R0EleYEmy0xcOYX8xz0rQSXZWhwu
6HRRxE1e5hzbho8/klY1MkRR49utYzISleG2nqG7BY2/nsYxu1Epa+vxEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNIC5YSvcm0gZhju1VEECPKSV+ywMB8GA1UdIwQY
MBaAFB8gDgcQQUXnuph2qdPueSoHNk02MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUt
Nzc1YTdlYzFjYTMzLzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUtNzc1YTdlYzFjYTMz
LzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQu4tMSHz
w5c42LgKNHBTuUB4LhNtTtlWBJg6zxDNwpG8yoYdD6gsX3742+KwPZAomeE3O+1L
qQHobLuk8I3XzDXVWl+IJRby7i+RiYa7OuKTYzxetVCHyf/7mzz1OlZ2K2k3dC49
wAy5JKXCUBSGUDmbMy2aVWqz9k+T7SlN6AkoKK7YS547qN1/E2PnkmaGo5pA97R3
b/ZVnOCY/8kWggdya0XPnrNv6keP+d/0nGaQtxvPlXQzht6SWetkkmqAIpWzBLY2
PJjHhD+S3kayNSONjeTiBVjKSWYYYZVSYVBIVeZlAVyhlpQg0XpKGZoFWCWP8+/u
yljINsHEOVPakQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:55 2025 by rpki-client