Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
File: HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft (raw, json)
Hash identifier: t08wu0+cd7oDPdWZZ/1BX3u3b0lJWScU5e1AKaWC678=
Subject key identifier: AA:A3:DF:83:21:C6:41:A0:9B:B0:17:E2:B0:35:8B:E0:50:0A:46:09
Authority key identifier: 1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
Certificate issuer: /CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Certificate serial: 0196CBAA421CABC6B36C5B2130D0D3CC2395
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
Manifest number: 1288
Signing time: Tue 13 May 2025 22:00:55 +0000
Manifest this update: Tue 13 May 2025 22:00:55 +0000
Manifest next update: Wed 14 May 2025 22:00:55 +0000
Files and hashes: 1: HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl (hash: GXE3GwTUCgojrsbpCeweY+JOsTaY4RD58Fth4qDBrIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:aa:42:1c:ab:c6:b3:6c:5b:21:30:d0:d3:cc:23:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c391edd5cbee1a14e0ab3f93d834fae511e4d
Validity
Not Before: May 13 22:00:55 2025 GMT
Not After : May 14 22:00:55 2025 GMT
Subject: CN=aaa3df8321c641a09bb017e2b0358be0500a4609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bc:73:42:ab:cd:1a:d8:3b:94:66:a6:7d:95:
b8:7a:29:ef:1c:ab:67:2b:16:e3:df:c8:f5:d5:3b:
96:e3:8f:4a:4f:bc:71:dc:68:ba:10:3b:56:b5:b7:
bf:cd:93:d9:e1:19:1f:bb:64:46:b7:b1:2e:19:93:
cf:78:65:80:d2:22:6e:85:84:cb:29:8b:37:13:29:
22:9a:12:13:1b:a9:4f:20:34:06:7f:86:85:37:98:
b0:00:f6:3a:19:0d:2d:d3:cb:8a:ae:e2:ab:a3:75:
00:00:86:2e:45:ee:30:93:8d:fa:89:9a:de:5c:e0:
a9:c6:fe:6e:b0:21:87:a0:45:22:b4:fe:eb:4e:4b:
0c:54:97:b0:e4:67:12:d1:44:86:fb:89:a6:17:68:
cc:52:83:39:63:ee:75:02:bd:fe:71:38:d7:e3:99:
e0:b4:e9:d4:35:7a:d0:8b:10:51:df:23:d5:34:a3:
e7:4b:71:54:31:b2:45:e6:fd:6c:25:12:58:97:72:
3d:2f:db:bc:45:bf:c7:96:4e:80:8e:c7:fa:9f:e5:
b5:9f:e3:f6:59:14:be:b0:7b:8a:59:15:00:05:51:
31:ac:b2:ed:0f:5e:cd:cb:3c:70:f2:fa:6e:a5:c3:
d6:7d:b7:3b:9e:19:04:b7:4c:dc:7f:c1:27:9a:9c:
40:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A3:DF:83:21:C6:41:A0:9B:B0:17:E2:B0:35:8B:E0:50:0A:46:09
X509v3 Authority Key Identifier:
keyid:1D:0C:39:1E:DD:5C:BE:E1:A1:4E:0A:B3:F9:3D:83:4F:AE:51:1E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQw5Ht1cvuGhTgqz-T2DT65RHk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2ac633-40ec-4027-af2d-0f899e0c20cd/1/HQw5Ht1cvuGhTgqz-T2DT65RHk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:58:0b:f2:5c:e8:f0:3b:84:aa:a1:15:cc:09:c0:a7:75:91:
f3:b8:c8:1f:85:e6:34:ad:d3:e6:76:5b:dc:12:b7:57:6e:94:
44:fc:a5:43:32:7d:d2:5d:b0:19:c1:09:2c:0a:b1:c4:90:0c:
b4:d6:4f:91:1c:15:90:7f:25:5b:74:87:51:5b:8e:01:0d:ac:
ed:78:99:88:c3:f6:fa:d2:22:27:b2:dd:1b:5c:09:6d:c7:a6:
5e:06:2b:e7:0d:5d:8e:1f:df:4c:a1:6c:6e:88:01:49:89:e2:
a3:a9:5c:8d:b5:3c:fd:aa:b2:2e:21:52:8b:14:e1:7c:b9:08:
23:71:a6:89:66:56:46:03:a7:f0:9c:1a:32:52:b3:0e:43:c4:
1d:c8:ff:da:45:e7:ad:a2:dd:df:7a:06:17:12:bd:ff:e8:f6:
58:8f:23:75:ef:36:43:73:65:62:03:19:d9:95:82:14:1e:68:
97:60:9c:9f:f5:57:02:79:4a:36:06:9d:e2:fb:e4:ed:72:4a:
68:cd:c6:0f:68:47:16:51:ee:46:cd:60:ae:44:25:d7:11:9e:
81:a3:80:9a:7e:5a:51:6e:06:9d:de:7e:c9:32:d9:d0:c9:0e:
f8:e8:8d:90:b2:54:cc:d4:1f:5c:73:70:9e:4d:f2:12:b2:6c:
3d:73:a0:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbLqkIcq8azbFshMNDTzCOVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMGMzOTFlZGQ1Y2JlZTFhMTRlMGFiM2Y5M2Q4MzRmYWU1
MTFlNGQwHhcNMjUwNTEzMjIwMDU1WhcNMjUwNTE0MjIwMDU1WjAzMTEwLwYDVQQD
EyhhYWEzZGY4MzIxYzY0MWEwOWJiMDE3ZTJiMDM1OGJlMDUwMGE0NjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7xzQqvNGtg7lGamfZW4einvHKtn
Kxbj38j11TuW449KT7xx3Gi6EDtWtbe/zZPZ4Rkfu2RGt7EuGZPPeGWA0iJuhYTL
KYs3EykimhITG6lPIDQGf4aFN5iwAPY6GQ0t08uKruKro3UAAIYuRe4wk436iZre
XOCpxv5usCGHoEUitP7rTksMVJew5GcS0USG+4mmF2jMUoM5Y+51Ar3+cTjX45ng
tOnUNXrQixBR3yPVNKPnS3FUMbJF5v1sJRJYl3I9L9u8Rb/Hlk6Ajsf6n+W1n+P2
WRS+sHuKWRUABVExrLLtD17Nyzxw8vpupcPWfbc7nhkEt0zcf8EnmpxARQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqj34MhxkGgm7AX4rA1i+BQCkYJMB8GA1UdIwQY
MBaAFB0MOR7dXL7hoU4Ks/k9g0+uUR5NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQt
MGY4OTllMGMyMGNkLzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8yYWM2MzMtNDBlYy00MDI3LWFmMmQtMGY4OTllMGMyMGNk
LzEvSFF3NUh0MWN2dUdoVGdxei1UMkRUNjVSSGswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWFgL8lzo
8DuEqqEVzAnAp3WR87jIH4XmNK3T5nZb3BK3V26URPylQzJ90l2wGcEJLAqxxJAM
tNZPkRwVkH8lW3SHUVuOAQ2s7XiZiMP2+tIiJ7LdG1wJbcemXgYr5w1djh/fTKFs
bogBSYnio6lcjbU8/aqyLiFSixThfLkII3GmiWZWRgOn8JwaMlKzDkPEHcj/2kXn
raLd33oGFxK9/+j2WI8jde82Q3NlYgMZ2ZWCFB5ol2Ccn/VXAnlKNgad4vvk7XJK
aM3GD2hHFlHuRs1grkQl1xGegaOAmn5aUW4Gnd5+yTLZ0MkO+OiNkLJUzNQfXHNw
nk3yErJsPXOguw==
-----END CERTIFICATE-----
Generated at Wed May 14 02:39:26 2025 by rpki-client