Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
File: hqnzrkX3AVCvF-uHiel4iQKe5dM.mft (raw, json)
Hash identifier: wn3PWTT61YjgYuZ+2VG+31ATULP1qJL7AJa+y4eVeFY=
Subject key identifier: 9F:A2:EB:92:AF:87:63:9E:E8:9A:5F:53:D8:54:35:10:61:96:E5:7E
Authority key identifier: 86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
Certificate issuer: /CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Certificate serial: 0197B70ED999A4EC73991FDB602582B9E001
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 15:01:33 +0000
Manifest this update: Sat 28 Jun 2025 15:01:33 +0000
Manifest next update: Sun 29 Jun 2025 15:01:33 +0000
Files and hashes: 1: 6b_z1nYhros0lFsJJ-v5kZEUQbE.roa (hash: lcqP5Znx2EuUXx9SjdDPzhxT49PtsEmnOX0/yWwCL10=)
2: hqnzrkX3AVCvF-uHiel4iQKe5dM.crl (hash: uSz1O5qr4WEvk398CcP9e80J3bvFG/RYNWmsSdkxGMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:d9:99:a4:ec:73:99:1f:db:60:25:82:b9:e0:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Validity
Not Before: Jun 28 15:01:33 2025 GMT
Not After : Jun 29 15:01:33 2025 GMT
Subject: CN=9fa2eb92af87639ee89a5f53d85435106196e57e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f2:f8:af:78:c5:66:78:c0:cc:d4:fe:e9:ba:
c5:18:01:9e:49:f9:8a:97:59:47:f7:1d:99:ca:e0:
72:a8:19:f9:6d:32:95:3c:da:cc:08:ca:85:60:eb:
99:50:7a:1e:13:32:56:23:de:98:a7:a0:bd:fa:6c:
af:93:a5:b6:57:f7:3a:45:2a:88:d4:a2:d1:58:a5:
9a:f9:f7:9e:ec:6f:8e:29:bf:6b:13:f6:60:28:4d:
00:5d:e8:03:9f:74:80:0a:be:80:4e:33:40:e1:8b:
06:af:fa:36:45:af:44:41:bf:ea:1c:82:c6:32:99:
a9:5e:3e:ed:1a:f7:2a:d7:03:cd:69:cb:a1:ce:18:
80:53:d8:5a:31:61:ec:37:ae:df:84:fb:f9:10:61:
dd:9c:aa:9f:46:fc:31:b5:f5:2f:d7:fd:ff:d1:e2:
94:ee:0b:55:45:1b:ab:90:71:25:58:5f:c9:58:c3:
d2:38:93:06:b4:89:59:f1:8a:26:83:a3:06:b4:66:
d5:3a:82:c6:16:e4:55:db:46:6c:c9:88:ba:b1:03:
90:b7:f4:21:42:ce:58:36:8d:15:0a:ae:da:58:9b:
a2:5e:6f:27:74:17:5a:6b:93:c3:09:87:d4:9b:08:
fe:14:5e:c0:77:cc:07:08:09:1e:15:b0:d6:0a:ab:
86:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A2:EB:92:AF:87:63:9E:E8:9A:5F:53:D8:54:35:10:61:96:E5:7E
X509v3 Authority Key Identifier:
keyid:86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:19:c5:2d:b0:df:20:46:fd:1b:cc:56:be:e1:76:b2:5f:b9:
00:f1:8c:00:d5:3b:1a:aa:7c:0a:c4:d1:95:f9:be:f7:7e:a9:
bd:6e:14:1d:42:8d:3f:3f:0b:b5:78:e7:9e:83:bd:ad:bc:1a:
e0:16:d8:ee:f8:a8:94:0e:c0:36:86:5a:10:26:7f:c4:2a:fa:
16:aa:11:7c:42:a0:41:2a:31:2d:53:20:7c:20:6b:2f:35:ed:
11:26:81:f8:11:b4:a2:de:bf:2c:0c:f2:a2:78:80:70:14:80:
46:3c:f9:9f:83:95:62:e6:e9:bf:7e:be:1d:a5:15:c4:65:7e:
fe:55:06:46:6c:d3:4c:bc:92:b9:dd:96:59:ca:02:e5:18:ce:
9c:07:58:f7:15:3d:ea:b5:b0:e8:75:43:52:09:af:1e:1e:fd:
a3:28:26:eb:25:92:24:5e:ec:72:80:6e:58:a4:ac:a3:08:af:
e0:d1:6c:46:60:a3:85:09:4b:fa:4c:1b:f4:6f:dc:a7:83:13:
71:ec:76:92:5a:64:f3:86:f3:dd:59:3f:5f:35:db:19:40:17:
83:17:d0:80:cc:3e:cb:ef:fe:43:4f:f8:d2:70:43:cd:df:15:
80:74:87:5e:94:36:08:8f:6e:e0:6d:ea:0c:ca:4b:e2:f3:d4:
5b:8d:15:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DtmZpOxzmR/bYCWCueABMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YTlmM2FlNDVmNzAxNTBhZjE3ZWI4Nzg5ZTk3ODg5MDI5
ZWU1ZDMwHhcNMjUwNjI4MTUwMTMzWhcNMjUwNjI5MTUwMTMzWjAzMTEwLwYDVQQD
Eyg5ZmEyZWI5MmFmODc2MzllZTg5YTVmNTNkODU0MzUxMDYxOTZlNTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fL4r3jFZnjAzNT+6brFGAGeSfmK
l1lH9x2ZyuByqBn5bTKVPNrMCMqFYOuZUHoeEzJWI96Yp6C9+myvk6W2V/c6RSqI
1KLRWKWa+fee7G+OKb9rE/ZgKE0AXegDn3SACr6ATjNA4YsGr/o2Ra9EQb/qHILG
MpmpXj7tGvcq1wPNacuhzhiAU9haMWHsN67fhPv5EGHdnKqfRvwxtfUv1/3/0eKU
7gtVRRurkHElWF/JWMPSOJMGtIlZ8Yomg6MGtGbVOoLGFuRV20ZsyYi6sQOQt/Qh
Qs5YNo0VCq7aWJuiXm8ndBdaa5PDCYfUmwj+FF7Ad8wHCAkeFbDWCquGpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+i65Kvh2Oe6JpfU9hUNRBhluV+MB8GA1UdIwQY
MBaAFIap865F9wFQrxfrh4npeIkCnuXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xMzEyNzQtNzMzNC00NDZiLWE5MzUt
MzQ4N2FlODJiMjBkLzEvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8xMzEyNzQtNzMzNC00NDZiLWE5MzUtMzQ4N2FlODJiMjBk
LzEvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKxnFLbDf
IEb9G8xWvuF2sl+5APGMANU7Gqp8CsTRlfm+936pvW4UHUKNPz8LtXjnnoO9rbwa
4BbY7violA7ANoZaECZ/xCr6FqoRfEKgQSoxLVMgfCBrLzXtESaB+BG0ot6/LAzy
oniAcBSARjz5n4OVYubpv36+HaUVxGV+/lUGRmzTTLySud2WWcoC5RjOnAdY9xU9
6rWw6HVDUgmvHh79oygm6yWSJF7scoBuWKSsowiv4NFsRmCjhQlL+kwb9G/cp4MT
cex2klpk84bz3Vk/XzXbGUAXgxfQgMw+y+/+Q0/40nBDzd8VgHSHXpQ2CI9u4G3q
DMpL4vPUW40VmA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:44 2025 by rpki-client