Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json)
Hash identifier: AZNh2tjC3W2CRcLRcOE2WlB3sMPFpKbkrBRzP2QfSaQ=
Subject key identifier: 55:EF:28:B2:70:D4:F6:BC:CB:DA:E4:4E:BA:F9:97:8E:3F:5F:08:C3
Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Certificate serial: 0196BEC9FB4DAC48F95C9D3D10DCBC9DFEA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
Manifest number: 09E9
Signing time: Sun 11 May 2025 10:00:30 +0000
Manifest this update: Sun 11 May 2025 10:00:30 +0000
Manifest next update: Mon 12 May 2025 10:00:30 +0000
Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: NUI5JpqvJVSzcCBToCWgSWFsH2lG7ca4Y3btL0/JLEc=)
2: uzOfDn3na_0H4FMYAvULbyI0B6c.roa (hash: uAuwh9KcLGGG4HeIvB3vA//BXxot+F12ayTtv/6riqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:c9:fb:4d:ac:48:f9:5c:9d:3d:10:dc:bc:9d:fe:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Validity
Not Before: May 11 10:00:30 2025 GMT
Not After : May 12 10:00:30 2025 GMT
Subject: CN=55ef28b270d4f6bccbdae44ebaf9978e3f5f08c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9c:15:35:43:4d:06:78:b1:bd:e1:7a:4d:c6:
8a:53:b4:a9:c8:43:02:65:93:37:a5:a1:cd:0b:ad:
7a:6c:50:dd:be:9b:25:ee:e6:4f:e2:1b:34:42:04:
e6:cd:cd:9a:b5:f5:27:46:91:01:cd:90:87:21:97:
28:e9:44:39:bb:c7:ca:24:c8:94:83:08:3d:44:6c:
bc:7f:59:6b:1a:b0:b4:c3:d4:f7:54:f0:7d:11:31:
e2:e7:57:9a:f0:0a:4a:f8:be:0e:17:90:45:a3:1c:
ea:70:f8:84:03:2d:1c:ff:f7:92:47:73:0f:4a:1e:
41:84:0a:c0:33:a3:bc:40:cd:1f:e5:dd:3e:1a:48:
e1:d5:97:f7:a2:f3:b4:e5:07:4f:9f:69:b1:00:09:
eb:f2:d3:c5:65:46:a9:ea:3f:68:7b:7b:ea:d6:20:
3f:b4:e7:0f:11:65:b8:1e:0d:50:c4:e6:1e:f8:56:
4c:a1:ea:de:ce:31:73:40:68:94:e0:98:3d:d4:ee:
fb:5b:0f:1d:6e:41:5d:15:59:8f:80:88:b7:96:e1:
0e:bd:64:af:28:9e:c0:d3:57:a4:63:19:03:c0:5d:
a0:04:70:76:9e:5d:b7:93:9f:86:d9:5e:90:0c:a4:
c4:12:ed:20:d7:8f:5b:d3:d8:4b:95:f2:27:9f:b3:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:EF:28:B2:70:D4:F6:BC:CB:DA:E4:4E:BA:F9:97:8E:3F:5F:08:C3
X509v3 Authority Key Identifier:
keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:de:56:06:e1:ae:0a:95:18:33:b4:6d:45:d6:99:54:e4:33:
ca:ed:50:1e:3e:d5:ba:ae:28:7d:f5:60:4a:d0:5a:58:5b:f7:
bd:8b:35:bc:a1:7b:3e:8f:d9:ab:7a:93:eb:9f:a2:4d:cc:90:
8f:e1:e9:e2:3b:e3:95:23:3f:4e:6e:81:96:2e:ab:ee:3f:e1:
9b:21:2d:4b:ee:40:a0:05:56:ca:31:2e:c5:21:e8:6e:5a:06:
fb:e0:e4:72:19:e8:e7:49:4c:72:2b:f3:fd:cc:e1:57:46:05:
b8:34:92:6a:69:b7:94:2d:86:8d:4b:b0:ab:7f:5c:fa:ed:95:
d6:52:af:8c:bc:67:69:b8:7d:bb:7f:19:8e:ee:87:d5:87:c6:
ae:d1:3b:b5:96:4f:7f:8d:f5:80:ac:f9:a3:c3:c6:4f:24:aa:
5f:86:37:65:ee:85:fa:57:ad:b7:65:f1:fc:de:2f:af:e6:8a:
2e:ee:bc:1b:f6:38:aa:27:1a:14:bd:3b:bc:52:69:2c:f6:7c:
c2:dc:b4:31:46:20:b1:77:01:cb:bb:15:7c:f3:f9:c9:92:9e:
35:ae:9c:71:9b:d7:cc:ea:b2:0b:70:37:0a:6e:84:65:3d:8b:
bd:8d:7f:bd:79:39:a9:a4:14:d8:31:e3:9c:57:77:f6:e9:3e:
0f:be:17:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa+yftNrEj5XJ09ENy8nf6lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0NzQwNmY0OTgyYjYxODI0YzhmZDQ0YjgxZWRlMGE5OWZj
NzI0ZTAwHhcNMjUwNTExMTAwMDMwWhcNMjUwNTEyMTAwMDMwWjAzMTEwLwYDVQQD
Eyg1NWVmMjhiMjcwZDRmNmJjY2JkYWU0NGViYWY5OTc4ZTNmNWYwOGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJwVNUNNBnixveF6TcaKU7SpyEMC
ZZM3paHNC616bFDdvpsl7uZP4hs0QgTmzc2atfUnRpEBzZCHIZco6UQ5u8fKJMiU
gwg9RGy8f1lrGrC0w9T3VPB9ETHi51ea8ApK+L4OF5BFoxzqcPiEAy0c//eSR3MP
Sh5BhArAM6O8QM0f5d0+Gkjh1Zf3ovO05QdPn2mxAAnr8tPFZUap6j9oe3vq1iA/
tOcPEWW4Hg1QxOYe+FZMoerezjFzQGiU4Jg91O77Ww8dbkFdFVmPgIi3luEOvWSv
KJ7A01ekYxkDwF2gBHB2nl23k5+G2V6QDKTEEu0g149b09hLlfInn7P6JwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFXvKLJw1Pa8y9rkTrr5l44/XwjDMB8GA1UdIwQY
MBaAFOR0BvSYK2GCTI/US4Ht4KmfxyTgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUt
NzExOGY4Mzg0Yzc3LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUtNzExOGY4Mzg0Yzc3
LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAON5WBuGu
CpUYM7RtRdaZVOQzyu1QHj7Vuq4offVgStBaWFv3vYs1vKF7Po/Zq3qT65+iTcyQ
j+Hp4jvjlSM/Tm6Bli6r7j/hmyEtS+5AoAVWyjEuxSHobloG++Dkchno50lMcivz
/czhV0YFuDSSamm3lC2GjUuwq39c+u2V1lKvjLxnabh9u38Zju6H1YfGrtE7tZZP
f431gKz5o8PGTySqX4Y3Ze6F+lett2Xx/N4vr+aKLu68G/Y4qicaFL07vFJpLPZ8
wty0MUYgsXcBy7sVfPP5yZKeNa6ccZvXzOqyC3A3Cm6EZT2LvY1/vXk5qaQU2DHj
nFd39uk+D74Xvw==
-----END CERTIFICATE-----
Generated at Sun May 11 16:01:20 2025 by rpki-client