Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
File: hkl2gukwfEaHk1AIFzFH0TKijGQ.mft (raw, json)
Hash identifier: tlNxl8Ssn40S2Z3Gcck5wdbmY3j30HfP0RVpa+/eS5o=
Subject key identifier: 80:AD:3C:B9:04:9D:6E:AF:E6:D0:B5:C6:A5:79:80:00:84:5C:07:ED
Authority key identifier: 86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
Certificate issuer: /CN=86497682e9307c4687935008173147d132a28c64
Certificate serial: 0197CE71F35E460FC1854A88007A2AE6E0B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
Manifest number: 118E
Signing time: Thu 03 Jul 2025 04:01:03 +0000
Manifest this update: Thu 03 Jul 2025 04:01:03 +0000
Manifest next update: Fri 04 Jul 2025 04:01:03 +0000
Files and hashes: 1: BO3NQSZ4VV4Ik2Xgm0m98xsd8Po.roa (hash: zwimVc6fdY5wMVCx/Pfq1/VebJPothW3yZi++5QRFE0=)
2: hkl2gukwfEaHk1AIFzFH0TKijGQ.crl (hash: uIU49ZinS4EPZWtG1IaTflaxH/8IRNLzjbYqeVcBkS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:71:f3:5e:46:0f:c1:85:4a:88:00:7a:2a:e6:e0:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86497682e9307c4687935008173147d132a28c64
Validity
Not Before: Jul 3 04:01:03 2025 GMT
Not After : Jul 4 04:01:03 2025 GMT
Subject: CN=80ad3cb9049d6eafe6d0b5c6a5798000845c07ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:11:7f:bf:41:c9:c8:58:1c:67:53:0c:7b:c9:
7e:ef:d3:a5:32:28:14:d8:7c:e9:65:d6:37:ed:b7:
11:62:1e:47:6c:b2:6f:e9:21:57:91:19:fe:48:17:
16:8d:78:79:9f:08:48:ab:c3:3f:6d:dc:a5:6c:aa:
ce:49:c1:05:5c:57:e9:91:68:7e:ed:86:50:d5:19:
6c:4a:bd:5d:61:02:d0:d0:bc:c6:04:78:11:83:9b:
7e:2e:46:33:6e:c1:ce:da:a6:8f:4a:2f:95:52:d9:
ad:c8:bb:b7:d8:55:47:fc:83:3c:b3:5f:7e:98:bb:
ca:ed:52:8f:85:e3:55:be:d3:56:9f:fa:5a:f7:3a:
62:40:8d:d6:4f:d8:e5:3d:44:1a:8c:e2:cf:92:28:
72:55:85:bb:6e:69:f0:d5:4c:15:e5:ee:9e:25:ca:
e3:00:cc:50:a8:64:5e:00:4e:5f:f9:29:b8:5d:df:
0b:8a:92:ed:5f:ae:bd:b4:74:76:c9:42:bf:21:e3:
7a:0d:50:ea:ff:fa:04:00:2a:e0:e7:db:d8:c2:2a:
9e:21:c5:99:97:2c:a6:60:e4:aa:27:45:69:5d:69:
38:08:a6:3d:38:d3:e7:06:9f:84:01:f2:51:79:9a:
91:e5:23:67:9a:ce:24:72:ea:fc:a9:74:18:eb:56:
23:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AD:3C:B9:04:9D:6E:AF:E6:D0:B5:C6:A5:79:80:00:84:5C:07:ED
X509v3 Authority Key Identifier:
keyid:86:49:76:82:E9:30:7C:46:87:93:50:08:17:31:47:D1:32:A2:8C:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkl2gukwfEaHk1AIFzFH0TKijGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/c1a754-1f96-4500-8102-91140f329eaa/1/hkl2gukwfEaHk1AIFzFH0TKijGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:65:b0:43:80:14:ae:59:30:4b:27:d8:90:25:4f:eb:3a:7f:
ff:6e:58:12:7f:90:bd:72:ce:92:17:63:2a:72:33:6f:10:35:
38:f7:ca:58:82:55:20:34:21:b0:99:37:dd:1e:fa:c6:dd:af:
42:12:c1:0c:13:a8:c8:00:0c:61:82:00:30:d8:40:37:49:0b:
4f:fb:f3:bf:06:bb:39:d5:5e:93:c7:c4:b5:f1:bf:e8:40:26:
20:de:7d:d0:2c:d7:a8:bc:08:05:15:25:62:e7:44:f3:52:30:
97:de:58:00:ad:16:32:2d:3b:f7:de:82:5b:e6:9b:a1:74:94:
73:38:c5:32:a9:3b:10:76:68:8a:71:a6:3a:f1:e7:a5:09:cc:
3e:b9:18:d5:37:f9:08:cd:c2:cc:30:4e:45:62:b0:43:4d:b6:
66:e6:56:ff:f9:01:3e:71:2c:c6:13:01:df:ab:43:5a:b2:c4:
8e:49:8b:30:49:94:d2:d2:cd:f5:00:38:00:6e:6c:b3:f9:2d:
2e:dd:db:28:96:c3:00:c6:eb:fb:72:88:76:da:1d:68:95:69:
58:af:f6:d5:45:bb:1a:56:73:5d:d6:e4:7d:9b:e7:45:a6:2f:
1f:aa:56:c5:b2:c3:de:d5:d0:5c:fe:97:1d:f4:77:2a:af:03:
a9:49:ab:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfOcfNeRg/BhUqIAHoq5uCyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NDk3NjgyZTkzMDdjNDY4NzkzNTAwODE3MzE0N2QxMzJh
MjhjNjQwHhcNMjUwNzAzMDQwMTAzWhcNMjUwNzA0MDQwMTAzWjAzMTEwLwYDVQQD
Eyg4MGFkM2NiOTA0OWQ2ZWFmZTZkMGI1YzZhNTc5ODAwMDg0NWMwN2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRF/v0HJyFgcZ1MMe8l+79OlMigU
2HzpZdY37bcRYh5HbLJv6SFXkRn+SBcWjXh5nwhIq8M/bdylbKrOScEFXFfpkWh+
7YZQ1RlsSr1dYQLQ0LzGBHgRg5t+LkYzbsHO2qaPSi+VUtmtyLu32FVH/IM8s19+
mLvK7VKPheNVvtNWn/pa9zpiQI3WT9jlPUQajOLPkihyVYW7bmnw1UwV5e6eJcrj
AMxQqGReAE5f+Sm4Xd8LipLtX669tHR2yUK/IeN6DVDq//oEACrg59vYwiqeIcWZ
lyymYOSqJ0VpXWk4CKY9ONPnBp+EAfJReZqR5SNnms4kcur8qXQY61Yj7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFICtPLkEnW6v5tC1xqV5gACEXAftMB8GA1UdIwQY
MBaAFIZJdoLpMHxGh5NQCBcxR9EyooxkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGtsMmd1a3dmRWFIazFBSUZ6RkgwVEtpakdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9jMWE3NTQtMWY5Ni00NTAwLTgxMDIt
OTExNDBmMzI5ZWFhLzEvaGtsMmd1a3dmRWFIazFBSUZ6RkgwVEtpakdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9jMWE3NTQtMWY5Ni00NTAwLTgxMDItOTExNDBmMzI5ZWFh
LzEvaGtsMmd1a3dmRWFIazFBSUZ6RkgwVEtpakdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjGWwQ4AU
rlkwSyfYkCVP6zp//25YEn+QvXLOkhdjKnIzbxA1OPfKWIJVIDQhsJk33R76xt2v
QhLBDBOoyAAMYYIAMNhAN0kLT/vzvwa7OdVek8fEtfG/6EAmIN590CzXqLwIBRUl
YudE81Iwl95YAK0WMi07996CW+aboXSUczjFMqk7EHZoinGmOvHnpQnMPrkY1Tf5
CM3CzDBORWKwQ022ZuZW//kBPnEsxhMB36tDWrLEjkmLMEmU0tLN9QA4AG5ss/kt
Lt3bKJbDAMbr+3KIdtodaJVpWK/21UW7GlZzXdbkfZvnRaYvH6pWxbLD3tXQXP6X
HfR3Kq8DqUmrvQ==
-----END CERTIFICATE-----
Generated at Thu Jul 3 10:05:09 2025 by rpki-client