Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json)
Hash identifier: Mj1MBnfDI3E1Co4JTQjWvxq4IxM/7dvBkmCt+QSD+mc=
Subject key identifier: D0:F2:9E:E8:1F:3F:2F:FE:22:5E:22:84:C9:B9:ED:F6:D9:C2:6C:4F
Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1
Certificate serial: 0196B25837A41E288304C9AABF700D60A798
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
Manifest number: 1167
Signing time: Fri 09 May 2025 00:00:47 +0000
Manifest this update: Fri 09 May 2025 00:00:47 +0000
Manifest next update: Sat 10 May 2025 00:00:47 +0000
Files and hashes: 1: V4HzyqT3UdFuM-GyIseILy4xTfQ.roa (hash: 1TwXBA5f5XgP5uZG5yeFX6kZqTX4W9t72jbcfsBpAgw=)
2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: myVGXglavHQNpYqRrFDQyDgN9JNfE40naDzzgCEOnys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:37:a4:1e:28:83:04:c9:aa:bf:70:0d:60:a7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8402924861cbc088c655a872535a903108a07bf1
Validity
Not Before: May 9 00:00:47 2025 GMT
Not After : May 10 00:00:47 2025 GMT
Subject: CN=d0f29ee81f3f2ffe225e2284c9b9edf6d9c26c4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:01:c1:2e:16:93:bc:d9:90:b2:23:c1:f3:54:
d8:12:9d:5c:38:50:7a:b1:56:bf:52:de:54:8d:f0:
0d:7b:c6:34:2c:71:11:8b:79:ef:8e:57:69:08:3c:
0e:55:22:92:7f:46:ad:e1:8f:1a:91:41:1f:c3:3f:
2e:f4:8c:fe:01:21:44:2f:e8:d7:d8:ae:a3:10:b2:
db:15:b5:97:65:42:49:7c:d1:77:a7:fd:61:03:f0:
4a:2f:22:29:19:5a:b2:bc:14:55:54:37:1e:ff:09:
f6:63:cd:3a:cc:19:76:b3:93:e9:31:96:0e:42:d7:
54:08:dd:cd:3f:aa:e4:21:a4:4a:12:c6:27:1d:60:
ba:fd:f0:1a:85:dd:03:8c:1d:52:14:e6:5c:8a:72:
d9:e6:d2:93:68:30:15:ed:a6:e2:ab:60:4d:9a:b1:
2e:c2:d3:f2:56:b4:87:c6:44:9c:93:a7:5d:20:d5:
06:57:9d:19:8a:bc:6b:2c:46:1a:59:8d:ed:22:e4:
e6:f8:21:f2:d0:df:2e:2b:f8:05:43:41:9e:88:c8:
ef:21:4a:4d:77:30:ae:0c:f2:f6:0f:76:c6:65:8a:
6d:44:c1:cc:cc:bf:5c:72:e8:94:f6:1f:6c:43:76:
fb:a6:bc:69:54:25:37:59:5d:28:ae:fa:d8:21:6f:
80:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F2:9E:E8:1F:3F:2F:FE:22:5E:22:84:C9:B9:ED:F6:D9:C2:6C:4F
X509v3 Authority Key Identifier:
keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:25:1d:bd:fc:15:a8:98:95:d1:07:d7:3e:09:a2:e8:a1:2c:
8b:de:99:7b:73:c9:25:a4:c5:3f:cb:e4:f5:66:e4:a5:f9:54:
8d:ed:89:52:0f:4b:56:71:71:5e:95:31:0e:45:a5:e1:f1:4c:
a4:9f:ea:14:9e:79:4a:1c:81:1b:7b:bf:ce:4a:37:80:6a:33:
df:f5:47:64:f4:f6:e5:fc:18:d7:59:8a:0b:a3:b7:01:07:40:
89:73:50:45:4d:3b:f8:81:ec:0d:c8:51:ab:6c:1d:c9:15:63:
bc:91:15:06:51:35:23:c3:6d:e8:0f:db:31:87:ed:50:c9:38:
9e:9d:fa:52:23:a9:c2:69:69:9f:02:4a:86:3c:95:c3:96:1e:
44:61:8a:0e:df:fc:22:18:1e:51:d1:3d:7e:1b:1a:d8:e8:a3:
51:85:96:bb:45:f0:71:1b:6c:81:a5:57:cf:f7:d7:fb:0c:1c:
8a:bf:f6:6b:2f:a0:b4:c0:fc:ae:0c:22:78:4f:6c:17:f1:e6:
f8:ed:2d:a7:29:15:fb:13:91:06:da:f0:ae:de:b2:b8:73:fb:
f4:21:ea:ca:e6:54:6c:7b:65:bf:2a:57:fe:a6:2f:16:f7:36:
3d:3c:85:68:e5:bc:61:58:9d:86:fd:d0:22:77:26:23:05:e0:
aa:eb:09:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZayWDekHiiDBMmqv3ANYKeYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0MDI5MjQ4NjFjYmMwODhjNjU1YTg3MjUzNWE5MDMxMDhh
MDdiZjEwHhcNMjUwNTA5MDAwMDQ3WhcNMjUwNTEwMDAwMDQ3WjAzMTEwLwYDVQQD
EyhkMGYyOWVlODFmM2YyZmZlMjI1ZTIyODRjOWI5ZWRmNmQ5YzI2YzRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogHBLhaTvNmQsiPB81TYEp1cOFB6
sVa/Ut5UjfANe8Y0LHERi3nvjldpCDwOVSKSf0at4Y8akUEfwz8u9Iz+ASFEL+jX
2K6jELLbFbWXZUJJfNF3p/1hA/BKLyIpGVqyvBRVVDce/wn2Y806zBl2s5PpMZYO
QtdUCN3NP6rkIaRKEsYnHWC6/fAahd0DjB1SFOZcinLZ5tKTaDAV7abiq2BNmrEu
wtPyVrSHxkSck6ddINUGV50ZirxrLEYaWY3tIuTm+CHy0N8uK/gFQ0GeiMjvIUpN
dzCuDPL2D3bGZYptRMHMzL9ccuiU9h9sQ3b7prxpVCU3WV0orvrYIW+AywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNDynugfPy/+Il4ihMm57fbZwmxPMB8GA1UdIwQY
MBaAFIQCkkhhy8CIxlWoclNakDEIoHvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUt
MGFjOWIzYmFlNmY1LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUtMGFjOWIzYmFlNmY1
LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnCUdvfwV
qJiV0QfXPgmi6KEsi96Ze3PJJaTFP8vk9WbkpflUje2JUg9LVnFxXpUxDkWl4fFM
pJ/qFJ55ShyBG3u/zko3gGoz3/VHZPT25fwY11mKC6O3AQdAiXNQRU07+IHsDchR
q2wdyRVjvJEVBlE1I8Nt6A/bMYftUMk4np36UiOpwmlpnwJKhjyVw5YeRGGKDt/8
IhgeUdE9fhsa2OijUYWWu0XwcRtsgaVXz/fX+wwcir/2ay+gtMD8rgwieE9sF/Hm
+O0tpykV+xORBtrwrt6yuHP79CHqyuZUbHtlvypX/qYvFvc2PTyFaOW8YVidhv3Q
IncmIwXgqusJhg==
-----END CERTIFICATE-----
Generated at Fri May 9 03:15:25 2025 by rpki-client