Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
File: huGrpgDN5ewxgxmxVZS2irlslWw.mft (raw, json)
Hash identifier: Gt2Wp1DUPvLC7dKvKRVkoHqOI/GNM6lT3r47lwGSYzg=
Subject key identifier: DB:23:01:DB:CB:B9:A0:F9:7B:50:01:9A:15:AA:71:D9:93:8F:6C:34
Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c
Certificate serial: 0197B7EA724D7E7374864D71083583DF866E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
Manifest number: 0EB8
Signing time: Sat 28 Jun 2025 19:01:24 +0000
Manifest this update: Sat 28 Jun 2025 19:01:24 +0000
Manifest next update: Sun 29 Jun 2025 19:01:24 +0000
Files and hashes: 1: Q7vNAscnF-4OhkgVonOsxeJBDjA.roa (hash: 0ioDa0FuPDgR/Y4yLPplBITqL6YDwLS4b5dcomdJX+s=)
2: huGrpgDN5ewxgxmxVZS2irlslWw.crl (hash: lxTCHje4zHuxJOJQBQzMS9gLgaGfZgB2Hkn010OA0jE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:72:4d:7e:73:74:86:4d:71:08:35:83:df:86:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c
Validity
Not Before: Jun 28 19:01:24 2025 GMT
Not After : Jun 29 19:01:24 2025 GMT
Subject: CN=db2301dbcbb9a0f97b50019a15aa71d9938f6c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3a:28:32:78:a9:5d:6b:5c:e2:9f:ed:92:0c:
36:84:bc:d3:18:4b:13:f2:73:dd:d1:55:62:a9:63:
8a:b9:65:ac:21:32:9a:25:8e:e3:32:3a:72:76:22:
7f:78:9b:0a:27:ff:a5:6a:b8:55:ba:46:e9:44:10:
db:41:4d:57:8a:ef:45:b2:b4:8f:9c:5b:ae:74:4f:
02:9b:af:6d:99:2c:49:a0:22:19:1e:f7:e4:97:75:
23:ff:94:af:1b:06:12:f9:0c:4c:d7:2a:60:83:25:
4d:8b:86:5e:2c:07:f2:37:db:4b:1b:e0:9b:22:79:
99:52:21:6d:d9:27:14:27:96:f3:73:50:ff:4e:57:
cf:bd:2a:48:84:c0:b2:5a:c4:bd:0d:87:50:e5:b8:
b8:1e:20:f1:be:b1:a1:06:0d:83:60:72:0a:1e:1d:
3b:89:c5:76:c6:a4:c4:8c:fc:31:30:38:de:61:66:
5c:8a:bc:92:0e:77:77:b2:ee:b7:e7:20:64:f4:5d:
36:25:8e:67:36:5c:ab:da:19:70:1e:76:bb:d3:61:
3f:97:0d:44:d4:75:11:fc:d2:f6:2c:2e:70:83:6a:
73:e5:97:4c:d9:b8:87:4d:a5:52:6c:bb:1b:2c:c5:
40:2a:e0:d2:b6:64:cd:81:1a:e9:80:b5:14:45:71:
3a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:23:01:DB:CB:B9:A0:F9:7B:50:01:9A:15:AA:71:D9:93:8F:6C:34
X509v3 Authority Key Identifier:
keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:aa:c3:8a:a8:4a:d9:0c:f0:18:ca:c1:62:82:bd:6b:13:5c:
27:a2:45:32:00:84:3b:a4:e5:b9:b2:09:ef:4c:d2:f7:55:96:
65:4f:6b:89:66:fa:cf:15:c9:83:83:77:2e:fd:5e:8e:9b:5a:
1a:6e:20:6c:b6:b5:35:fb:51:b4:0f:f9:c0:23:60:f7:74:a2:
0b:08:7a:bb:0e:f1:97:57:4d:14:32:29:ea:24:18:50:4e:27:
39:48:a3:5c:c8:30:75:15:3c:60:71:6e:53:ca:08:63:9e:bc:
2e:ec:f0:7a:24:fd:23:b6:c2:35:e5:22:bf:82:94:a5:89:14:
eb:54:3a:b0:46:5a:38:89:56:b5:22:27:f6:03:08:7f:aa:dc:
a6:09:75:a5:8c:d5:e2:b9:da:50:e2:19:cb:e7:1d:49:e8:f5:
49:2c:c6:2c:e6:16:73:92:54:61:ed:de:13:24:7d:65:64:a8:
bf:27:51:6b:98:42:50:8e:73:47:52:7b:fb:8d:53:13:9f:5d:
db:b8:69:2f:93:a5:ed:fc:f6:bd:95:68:30:75:1e:4d:86:9a:
da:e4:2e:df:6e:ec:f3:5d:e5:7e:ec:71:a9:9b:bd:05:8e:ee:
c5:1b:9d:fc:51:f5:7e:25:ea:e9:9d:76:a5:34:bb:59:7f:cb:
52:5a:28:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36nJNfnN0hk1xCDWD34ZuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZTFhYmE2MDBjZGU1ZWMzMTgzMTliMTU1OTRiNjhhYjk2
Yzk1NmMwHhcNMjUwNjI4MTkwMTI0WhcNMjUwNjI5MTkwMTI0WjAzMTEwLwYDVQQD
EyhkYjIzMDFkYmNiYjlhMGY5N2I1MDAxOWExNWFhNzFkOTkzOGY2YzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjooMnipXWtc4p/tkgw2hLzTGEsT
8nPd0VViqWOKuWWsITKaJY7jMjpydiJ/eJsKJ/+larhVukbpRBDbQU1Xiu9FsrSP
nFuudE8Cm69tmSxJoCIZHvfkl3Uj/5SvGwYS+QxM1ypggyVNi4ZeLAfyN9tLG+Cb
InmZUiFt2ScUJ5bzc1D/TlfPvSpIhMCyWsS9DYdQ5bi4HiDxvrGhBg2DYHIKHh07
icV2xqTEjPwxMDjeYWZcirySDnd3su635yBk9F02JY5nNlyr2hlwHna702E/lw1E
1HUR/NL2LC5wg2pz5ZdM2biHTaVSbLsbLMVAKuDStmTNgRrpgLUURXE60QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNsjAdvLuaD5e1ABmhWqcdmTj2w0MB8GA1UdIwQY
MBaAFIbhq6YAzeXsMYMZsVWUtoq5bJVsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjIt
ZDYwNWM1M2EzNWJlLzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjItZDYwNWM1M2EzNWJl
LzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJKrDiqhK
2QzwGMrBYoK9axNcJ6JFMgCEO6TlubIJ70zS91WWZU9riWb6zxXJg4N3Lv1ejpta
Gm4gbLa1NftRtA/5wCNg93SiCwh6uw7xl1dNFDIp6iQYUE4nOUijXMgwdRU8YHFu
U8oIY568LuzweiT9I7bCNeUiv4KUpYkU61Q6sEZaOIlWtSIn9gMIf6rcpgl1pYzV
4rnaUOIZy+cdSej1SSzGLOYWc5JUYe3eEyR9ZWSovydRa5hCUI5zR1J7+41TE59d
27hpL5Ol7fz2vZVoMHUeTYaa2uQu327s813lfuxxqZu9BY7uxRud/FH1fiXq6Z12
pTS7WX/LUlooWw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 21:20:23 2025 by rpki-client