Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: fPgNolWDJuHFH+g3I7oMUeToG/krSYyS2uxNFPfeSII=
Subject key identifier: E3:FF:90:7C:32:8F:0C:26:68:A8:0C:1C:2E:87:80:DB:D6:BB:FD:74
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 0196AAD582CC0296BFA7B29D2889E35C7BCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 07BA
Signing time: Wed 07 May 2025 13:00:41 +0000
Manifest this update: Wed 07 May 2025 13:00:41 +0000
Manifest next update: Thu 08 May 2025 13:00:41 +0000
Files and hashes: 1: 5iC1C_l2xnIVtV_ynL6awoKgYMQ.roa (hash: c0Zm1e9RjgR5PBfasK6Q1TzGKpfYhKyszQz9aW+gUGA=)
2: K2099PO4iAtvBzGlnwl1axWP2hE.roa (hash: 6aTZlr/sfRYyJqs+vE8kRpR5W2QDPbSiPNBoLmmWJlA=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: Kz7YjI8/T/6GYccJWiqH0x3tJa/+MzxgC2SoFD7nu5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:d5:82:cc:02:96:bf:a7:b2:9d:28:89:e3:5c:7b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: May 7 13:00:41 2025 GMT
Not After : May 8 13:00:41 2025 GMT
Subject: CN=e3ff907c328f0c2668a80c1c2e8780dbd6bbfd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:60:b9:d2:c7:b0:df:f5:ad:ef:38:cd:fa:a6:
d1:bc:8b:ae:b2:7a:ef:e5:29:40:01:1f:bd:58:8e:
5d:a5:35:15:4c:8c:d1:53:09:9d:f0:50:79:d1:4a:
05:d9:08:be:9a:b1:4f:5f:3a:2d:d8:ac:44:ee:3a:
fc:ae:47:dc:50:fe:6b:dc:bf:c3:dc:be:94:e7:24:
fc:7a:46:2c:c7:56:03:37:40:c4:fe:87:ce:8d:75:
1d:f2:8b:b4:55:e1:5f:62:02:b6:77:7d:10:86:66:
a8:16:a7:08:bb:82:62:91:5a:e7:95:92:bf:1f:ee:
90:21:cc:43:04:d1:5e:94:e3:91:97:a0:21:75:26:
0d:38:8f:79:bd:50:66:1d:4d:3f:ae:3c:f6:69:81:
09:62:97:bc:bf:d0:b9:bd:65:bf:73:81:24:3a:44:
88:73:c6:97:4c:4f:66:26:37:3f:1d:20:2c:2b:ce:
3a:b3:c5:1d:d4:b2:4b:e4:02:ba:25:e9:dc:e4:41:
1e:99:f3:1e:04:c5:de:97:76:9a:85:20:7c:8a:4f:
96:4b:40:f0:ba:7e:b5:05:96:84:cc:f7:2b:0a:36:
2d:bc:0f:ed:f3:e7:46:18:9a:7a:b8:c9:dd:1b:05:
5c:e7:6e:1c:f1:5e:04:41:eb:cb:03:b2:44:e6:7f:
00:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FF:90:7C:32:8F:0C:26:68:A8:0C:1C:2E:87:80:DB:D6:BB:FD:74
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:ce:48:88:c1:77:0b:5b:a1:5d:cf:07:f8:53:43:44:c0:e7:
00:2a:1b:5f:a8:11:ad:f5:1a:e5:16:2e:73:a0:34:cf:4b:7c:
e5:d6:7d:6e:1a:fc:4b:f1:21:52:0d:9f:e6:57:f4:59:b2:d5:
e8:f2:23:a0:47:dd:b1:88:be:77:05:4c:cd:0e:d0:ee:a0:ee:
b0:5c:ec:ba:3f:0e:cd:a8:69:0a:bf:3c:ff:d4:90:a1:44:ce:
3d:70:7c:7d:b1:34:68:3f:03:f6:2d:34:74:64:b1:59:60:aa:
b1:7d:4b:66:ed:0e:cb:fd:9c:26:18:f1:23:3c:fa:0f:f9:53:
3b:3f:fb:5c:17:88:fb:e5:04:77:8c:1c:41:83:77:1a:fa:1b:
29:50:72:32:20:bd:c3:27:43:7c:01:e4:21:5a:34:0f:9d:87:
8d:cf:88:de:a3:01:51:15:ff:d9:c8:e7:f5:46:5b:69:24:e5:
fb:18:1b:e9:9c:de:59:80:05:92:0b:75:1a:73:16:cb:09:a8:
8d:40:86:fb:72:7d:e2:45:7a:47:a3:65:a3:9a:da:4c:de:dc:
24:63:51:43:88:5a:d7:cb:95:0f:5d:1d:2b:31:37:ff:83:69:
c0:8d:11:f1:7f:ed:f3:45:12:57:e1:66:af:14:5f:5f:32:f8:
59:62:34:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaq1YLMApa/p7KdKInjXHvMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZmI4NWFkZDA5ZjQ4NzZlYTZhYWE4OGQ0ZDg4YzgxY2Ni
NmIxMGEwHhcNMjUwNTA3MTMwMDQxWhcNMjUwNTA4MTMwMDQxWjAzMTEwLwYDVQQD
EyhlM2ZmOTA3YzMyOGYwYzI2NjhhODBjMWMyZTg3ODBkYmQ2YmJmZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmC50sew3/Wt7zjN+qbRvIuusnrv
5SlAAR+9WI5dpTUVTIzRUwmd8FB50UoF2Qi+mrFPXzot2KxE7jr8rkfcUP5r3L/D
3L6U5yT8ekYsx1YDN0DE/ofOjXUd8ou0VeFfYgK2d30QhmaoFqcIu4JikVrnlZK/
H+6QIcxDBNFelOORl6AhdSYNOI95vVBmHU0/rjz2aYEJYpe8v9C5vWW/c4EkOkSI
c8aXTE9mJjc/HSAsK846s8Ud1LJL5AK6Jenc5EEemfMeBMXel3aahSB8ik+WS0Dw
un61BZaEzPcrCjYtvA/t8+dGGJp6uMndGwVc524c8V4EQevLA7JE5n8A3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOP/kHwyjwwmaKgMHC6HgNvWu/10MB8GA1UdIwQY
MBaAFIX7ha3Qn0h26mqqiNTYjIHMtrEKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2It
YzYxNjFjZTM5NWFmLzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2ItYzYxNjFjZTM5NWFm
LzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc85IiMF3
C1uhXc8H+FNDRMDnACobX6gRrfUa5RYuc6A0z0t85dZ9bhr8S/EhUg2f5lf0WbLV
6PIjoEfdsYi+dwVMzQ7Q7qDusFzsuj8OzahpCr88/9SQoUTOPXB8fbE0aD8D9i00
dGSxWWCqsX1LZu0Oy/2cJhjxIzz6D/lTOz/7XBeI++UEd4wcQYN3GvobKVByMiC9
wydDfAHkIVo0D52Hjc+I3qMBURX/2cjn9UZbaSTl+xgb6ZzeWYAFkgt1GnMWywmo
jUCG+3J94kV6R6Nlo5raTN7cJGNRQ4ha18uVD10dKzE3/4NpwI0R8X/t80USV+Fm
rxRfXzL4WWI0qg==
-----END CERTIFICATE-----
Generated at Wed May 7 16:45:16 2025 by rpki-client