Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
File: HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json)
Hash identifier: 9QBsMqlYkzVKwdxdf+FZtY3Hk62s9HfFUFpN3ghkEB8=
Subject key identifier: 57:E6:6F:BF:6B:55:6B:86:FA:51:97:AF:FA:E3:FC:8E:C7:00:1A:E9
Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
Certificate issuer: /CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Certificate serial: 0197B70E5014FA6E780B7281478A1397A0E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
Manifest number: 15AF
Signing time: Sat 28 Jun 2025 15:00:57 +0000
Manifest this update: Sat 28 Jun 2025 15:00:57 +0000
Manifest next update: Sun 29 Jun 2025 15:00:57 +0000
Files and hashes: 1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: zQO0/odLMk4c4bKKFvmRR7uGY0uJRl7DFk5KlQ5ygok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:50:14:fa:6e:78:0b:72:81:47:8a:13:97:a0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Validity
Not Before: Jun 28 15:00:57 2025 GMT
Not After : Jun 29 15:00:57 2025 GMT
Subject: CN=57e66fbf6b556b86fa5197affae3fc8ec7001ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:57:4f:f3:bc:46:44:af:08:2b:47:31:87:b4:
6d:40:0b:c1:b8:a8:fb:eb:18:33:3b:74:b8:60:c7:
04:58:83:04:3a:82:ca:c6:f2:61:53:22:00:41:d8:
ea:05:55:0b:3f:a3:b6:31:62:9d:f7:e4:cd:59:13:
87:de:94:9c:50:8d:17:b4:2d:7a:ea:7c:9f:78:03:
2c:a5:56:23:fb:59:62:f5:d4:92:11:2b:bc:28:8b:
12:a5:34:db:4e:a3:c3:b1:43:94:6d:25:e2:36:f0:
89:71:22:6b:e8:54:bb:d6:fe:b0:b7:5b:ba:61:1f:
7b:da:7d:43:39:7b:48:16:c3:ec:4b:1e:15:d3:82:
83:e3:ba:4f:8e:ad:59:0d:24:81:c2:c4:1b:94:ac:
e3:39:ba:30:d3:d0:73:70:8c:30:97:f6:4d:9d:fb:
28:00:c2:f2:8e:56:f3:f0:7e:4d:74:6f:70:05:9d:
1e:55:70:f4:88:e5:b8:a8:01:d9:a4:35:73:5e:5c:
7e:16:ed:b3:1e:95:58:57:d3:35:a9:3d:2d:00:11:
2e:03:43:7d:78:d3:b9:ee:b5:e6:96:84:b9:46:16:
b3:02:6c:66:75:75:e5:49:05:7a:a6:16:b8:7f:0e:
f1:b6:d3:75:a5:b5:91:b7:31:24:9f:5b:a6:b5:81:
de:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E6:6F:BF:6B:55:6B:86:FA:51:97:AF:FA:E3:FC:8E:C7:00:1A:E9
X509v3 Authority Key Identifier:
keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:ec:57:95:0f:3f:0a:75:05:ba:0a:ac:75:06:2a:99:90:28:
3f:a0:f4:86:56:47:2b:12:41:ca:98:37:e8:e5:c0:25:43:73:
ac:cb:a0:b2:e9:4c:4f:ab:34:73:27:4b:0d:e9:35:67:7b:ad:
12:42:f2:8b:28:ce:5f:24:25:bc:86:fa:8f:63:0d:ae:2d:b9:
58:38:6b:89:9c:7c:cf:10:6a:bb:89:52:5c:2d:0e:b5:4a:b8:
b2:4d:49:57:6d:a2:57:06:a9:e4:ad:d4:b5:2b:57:03:d0:68:
c1:2e:02:0b:9c:72:e6:89:48:7d:39:7c:6a:a3:54:13:c8:24:
88:d2:a8:e1:17:65:c4:0d:6a:a7:3e:b7:51:18:1a:f0:22:ef:
77:bb:19:d3:6d:c5:98:ed:97:88:70:b1:22:3e:3f:31:32:8b:
47:3d:fb:1b:51:3a:95:dc:d1:d5:f9:39:ef:87:69:05:1e:78:
7a:38:b4:70:5b:1b:2e:a3:9e:df:aa:79:de:28:4a:e7:b0:c0:
59:ad:e5:0c:f5:47:a6:80:6e:ae:d0:39:27:07:1c:7f:9c:e3:
d2:63:e4:72:42:ba:ea:6c:46:74:30:e3:ce:c1:04:a1:b2:6f:
82:c4:d2:56:fd:94:63:ed:20:ed:c6:40:c7:f7:d7:ee:64:c1:
08:14:56:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DlAU+m54C3KBR4oTl6DgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMjVkMGM4ODQ1Yjc5ODg2YzE5OTM0NWI4OTBmNWU4YWNk
NTE2ZDgwHhcNMjUwNjI4MTUwMDU3WhcNMjUwNjI5MTUwMDU3WjAzMTEwLwYDVQQD
Eyg1N2U2NmZiZjZiNTU2Yjg2ZmE1MTk3YWZmYWUzZmM4ZWM3MDAxYWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ldP87xGRK8IK0cxh7RtQAvBuKj7
6xgzO3S4YMcEWIMEOoLKxvJhUyIAQdjqBVULP6O2MWKd9+TNWROH3pScUI0XtC16
6nyfeAMspVYj+1li9dSSESu8KIsSpTTbTqPDsUOUbSXiNvCJcSJr6FS71v6wt1u6
YR972n1DOXtIFsPsSx4V04KD47pPjq1ZDSSBwsQblKzjObow09BzcIwwl/ZNnfso
AMLyjlbz8H5NdG9wBZ0eVXD0iOW4qAHZpDVzXlx+Fu2zHpVYV9M1qT0tABEuA0N9
eNO57rXmloS5RhazAmxmdXXlSQV6pha4fw7xttN1pbWRtzEkn1umtYHeEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfmb79rVWuG+lGXr/rj/I7HABrpMB8GA1UdIwQY
MBaAFB0l0MiEW3mIbBmTRbiQ9eis1RbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy81NTc1MjQtMjk3ZC00ODQ5LWI0YmUt
YzUyZWI1NmJmYTViLzEvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy81NTc1MjQtMjk3ZC00ODQ5LWI0YmUtYzUyZWI1NmJmYTVi
LzEvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYexXlQ8/
CnUFugqsdQYqmZAoP6D0hlZHKxJBypg36OXAJUNzrMugsulMT6s0cydLDek1Z3ut
EkLyiyjOXyQlvIb6j2MNri25WDhriZx8zxBqu4lSXC0OtUq4sk1JV22iVwap5K3U
tStXA9BowS4CC5xy5olIfTl8aqNUE8gkiNKo4RdlxA1qpz63URga8CLvd7sZ023F
mO2XiHCxIj4/MTKLRz37G1E6ldzR1fk574dpBR54eji0cFsbLqOe36p53ihK57DA
Wa3lDPVHpoBurtA5Jwccf5zj0mPkckK66mxGdDDjzsEEobJvgsTSVv2UY+0g7cZA
x/fX7mTBCBRWIA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:13:36 2025 by rpki-client