Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
File: hqnzrkX3AVCvF-uHiel4iQKe5dM.mft (raw, json)
Hash identifier: ccd+MmbK3YDbrMX0G3kmVAlsH3wzqlSSvAURmu3LSrs=
Subject key identifier: 00:44:37:B2:84:0C:74:F4:21:F7:D8:03:56:58:97:35:C2:2B:52:A2
Authority key identifier: 86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
Certificate issuer: /CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Certificate serial: 0196BA11E92EFAFAD6041918D1D7C1F0D28D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 12:00:58 +0000
Manifest this update: Sat 10 May 2025 12:00:58 +0000
Manifest next update: Sun 11 May 2025 12:00:58 +0000
Files and hashes: 1: 6b_z1nYhros0lFsJJ-v5kZEUQbE.roa (hash: lcqP5Znx2EuUXx9SjdDPzhxT49PtsEmnOX0/yWwCL10=)
2: hqnzrkX3AVCvF-uHiel4iQKe5dM.crl (hash: Oikii7EmcyrpW0A6+zNQKCAz4FSzvj7g6fd8Ya1BTng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:e9:2e:fa:fa:d6:04:19:18:d1:d7:c1:f0:d2:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Validity
Not Before: May 10 12:00:58 2025 GMT
Not After : May 11 12:00:58 2025 GMT
Subject: CN=004437b2840c74f421f7d80356589735c22b52a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:76:6c:1e:1d:a2:98:ac:b8:f1:02:c4:03:dd:
41:bc:eb:3d:41:ff:2c:8a:8d:b6:b1:44:38:65:b9:
58:95:8e:10:39:12:6d:c5:9e:03:14:6e:c2:08:88:
33:ea:4e:8c:19:87:73:56:f2:fa:77:6d:c9:46:21:
a2:65:90:9d:3d:07:09:2d:49:86:4d:9b:cd:ac:8d:
0c:a4:ec:45:c5:21:f9:7e:3a:f5:85:14:56:18:68:
78:52:27:66:a1:33:8a:a2:7d:59:ad:01:72:ee:7c:
b9:ea:c1:1a:c6:5d:53:e0:7d:9c:5f:f2:c3:96:64:
95:7c:cd:0b:4d:fd:bf:8b:fe:11:3f:91:7f:d8:e3:
a1:cd:e0:39:a3:15:5e:44:ae:76:29:4d:e5:12:97:
b8:57:34:d4:96:bc:42:23:a8:ad:4a:8a:d3:15:f0:
9b:41:e1:53:b4:3c:fb:74:8e:79:9f:43:d6:fb:67:
1d:2e:b5:a6:13:b1:75:c3:13:c0:50:08:97:5a:49:
15:9d:e3:67:3d:73:0f:2e:b7:d2:39:d3:5e:71:72:
a7:be:a2:dd:e6:81:67:a9:96:7c:41:5e:39:35:5b:
a8:1e:aa:76:80:41:87:18:ec:e2:8a:7a:2c:d1:25:
ea:8a:d6:52:21:8c:1f:65:4d:c0:e9:a7:77:60:fd:
c3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:44:37:B2:84:0C:74:F4:21:F7:D8:03:56:58:97:35:C2:2B:52:A2
X509v3 Authority Key Identifier:
keyid:86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:4b:62:83:56:32:b3:e1:13:2f:45:b9:09:37:d1:b2:2a:ef:
63:7c:90:0c:4b:65:ab:69:3d:32:e7:3d:52:aa:da:d1:02:e9:
15:8a:08:c9:67:1d:4a:b8:19:bf:2e:f1:62:e0:2e:3c:36:bc:
80:11:e0:72:77:3b:8a:d8:1f:ea:bb:50:2d:0a:48:c1:d0:a5:
d3:8d:45:05:35:9b:1b:9c:df:ed:a6:b5:87:1b:54:51:82:d9:
f3:d8:40:3c:6c:7b:97:af:83:29:3b:94:e1:42:8f:74:6f:d8:
05:c0:6e:54:8a:e9:63:55:af:f5:8a:7a:65:16:cf:13:73:d5:
d3:2e:de:22:43:31:95:7c:85:00:9f:0b:a3:cd:0f:30:b9:0d:
34:93:c2:41:b5:b0:d3:5f:93:9a:09:30:f0:98:d2:7f:84:c8:
ad:51:19:a5:95:29:29:0e:14:bf:8b:6d:c2:bd:e3:36:be:81:
b5:2c:26:a2:d4:88:34:5e:73:91:63:dc:6b:b9:25:0e:75:01:
cd:15:3e:85:5f:34:ad:ca:37:f7:6b:17:eb:47:4a:60:63:7a:
76:94:00:b1:e0:51:6e:68:39:2b:d6:c3:8a:ae:f7:e7:0c:23:
48:f9:31:98:a4:9a:46:8a:89:22:b4:ae:af:c2:5a:4a:d3:80:
3e:9c:89:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa6Eeku+vrWBBkY0dfB8NKNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YTlmM2FlNDVmNzAxNTBhZjE3ZWI4Nzg5ZTk3ODg5MDI5
ZWU1ZDMwHhcNMjUwNTEwMTIwMDU4WhcNMjUwNTExMTIwMDU4WjAzMTEwLwYDVQQD
EygwMDQ0MzdiMjg0MGM3NGY0MjFmN2Q4MDM1NjU4OTczNWMyMmI1MmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3ZsHh2imKy48QLEA91BvOs9Qf8s
io22sUQ4ZblYlY4QORJtxZ4DFG7CCIgz6k6MGYdzVvL6d23JRiGiZZCdPQcJLUmG
TZvNrI0MpOxFxSH5fjr1hRRWGGh4UidmoTOKon1ZrQFy7ny56sEaxl1T4H2cX/LD
lmSVfM0LTf2/i/4RP5F/2OOhzeA5oxVeRK52KU3lEpe4VzTUlrxCI6itSorTFfCb
QeFTtDz7dI55n0PW+2cdLrWmE7F1wxPAUAiXWkkVneNnPXMPLrfSOdNecXKnvqLd
5oFnqZZ8QV45NVuoHqp2gEGHGOziinos0SXqitZSIYwfZU3A6ad3YP3DdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFABEN7KEDHT0IffYA1ZYlzXCK1KiMB8GA1UdIwQY
MBaAFIap865F9wFQrxfrh4npeIkCnuXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xMzEyNzQtNzMzNC00NDZiLWE5MzUt
MzQ4N2FlODJiMjBkLzEvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8xMzEyNzQtNzMzNC00NDZiLWE5MzUtMzQ4N2FlODJiMjBk
LzEvaHFuenJrWDNBVkN2Ri11SGllbDRpUUtlNWRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAktig1Yy
s+ETL0W5CTfRsirvY3yQDEtlq2k9Muc9Uqra0QLpFYoIyWcdSrgZvy7xYuAuPDa8
gBHgcnc7itgf6rtQLQpIwdCl041FBTWbG5zf7aa1hxtUUYLZ89hAPGx7l6+DKTuU
4UKPdG/YBcBuVIrpY1Wv9Yp6ZRbPE3PV0y7eIkMxlXyFAJ8Lo80PMLkNNJPCQbWw
01+Tmgkw8JjSf4TIrVEZpZUpKQ4Uv4ttwr3jNr6BtSwmotSINF5zkWPca7klDnUB
zRU+hV80rco392sX60dKYGN6dpQAseBRbmg5K9bDiq735wwjSPkxmKSaRoqJIrSu
r8JaStOAPpyJlw==
-----END CERTIFICATE-----
Generated at Sat May 10 20:40:51 2025 by rpki-client