Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json)
Hash identifier: mCwKKqySCAvpZX2alotcD0cJQiWRMnayb5im1B3jkB4=
Subject key identifier: 7A:D7:C9:8A:B1:A9:33:15:C8:CB:97:AE:50:9B:61:69:D2:C8:29:B9
Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Certificate serial: 0197B70F335B4D0E5962CF9951F4E60D242C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
Manifest number: 0E6F
Signing time: Sat 28 Jun 2025 15:01:56 +0000
Manifest this update: Sat 28 Jun 2025 15:01:56 +0000
Manifest next update: Sun 29 Jun 2025 15:01:56 +0000
Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: FOH9dpLGWjNjlxbtztBv7ai4qfGXGn2dSmuXLV6JO+s=)
2: vNstzceOXGplN-vBnPrAujnN1Ks.roa (hash: A1jnUd+2zoPrt/m5wPvY6xxOOy1gAscK2t40BFmGG10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:33:5b:4d:0e:59:62:cf:99:51:f4:e6:0d:24:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1
Validity
Not Before: Jun 28 15:01:56 2025 GMT
Not After : Jun 29 15:01:56 2025 GMT
Subject: CN=7ad7c98ab1a93315c8cb97ae509b6169d2c829b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c4:3d:1c:ad:d3:7d:30:6a:0d:fc:cf:b2:4b:
c9:81:a5:ca:ed:5c:42:97:60:d6:ca:ed:13:62:d0:
55:50:9f:92:85:5a:04:91:34:bd:a7:78:9f:86:af:
8c:76:5b:4c:7e:f3:25:ec:96:5b:9d:aa:fe:f0:d5:
33:bc:53:60:a3:1d:04:eb:f4:12:0a:e5:0c:ea:5b:
58:09:e3:4b:87:c0:0d:cc:16:00:a7:1f:8d:81:7f:
0d:81:a5:42:e9:27:d3:da:1b:1e:61:1e:ae:59:16:
39:26:58:84:3a:88:bb:94:66:3f:da:48:2d:22:a8:
7e:0a:62:df:fc:19:44:1a:8b:58:6a:51:43:c5:aa:
e7:e1:3d:69:9b:98:7c:c1:0b:fc:c5:78:51:c5:2f:
0f:3e:aa:32:a9:1b:1a:8a:f6:48:8a:46:b2:5b:cd:
39:51:5f:40:6e:cd:cc:a1:c1:4a:0f:07:f2:61:43:
c3:16:de:4b:2e:10:9a:95:e3:73:48:82:d9:30:65:
61:36:e3:8e:5b:a0:9a:56:b3:f0:26:b0:e0:82:69:
9c:dd:3f:d6:91:46:66:91:9d:e0:c3:14:d3:44:b3:
40:55:bd:68:d1:bd:94:86:92:fc:cf:24:6d:92:bd:
a1:c7:8b:b7:bc:bb:b3:3b:54:6b:d7:d3:78:c0:af:
07:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D7:C9:8A:B1:A9:33:15:C8:CB:97:AE:50:9B:61:69:D2:C8:29:B9
X509v3 Authority Key Identifier:
keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:82:c7:2a:a2:6c:df:14:91:99:1e:70:5f:1f:45:99:07:b8:
37:13:14:51:ef:00:f3:7e:8b:09:45:41:80:3e:94:ee:16:ec:
f6:b2:48:73:32:a2:a7:95:b2:1e:5a:5d:c6:6f:0c:34:26:a8:
b9:f3:90:9b:6e:8f:b6:03:e2:4c:00:fa:6f:65:54:48:ca:b5:
67:0a:ea:d0:05:84:49:b8:a8:80:0a:87:05:e2:a5:b1:50:4c:
46:e6:8f:7a:64:71:00:d6:de:d1:b9:06:9e:14:dc:d1:73:1d:
35:2a:65:ea:5c:f8:35:98:37:76:5b:5d:f4:56:de:ed:47:96:
3e:fc:95:e5:2c:fa:24:87:87:1c:f2:ec:f1:ac:ee:2e:88:73:
d9:60:bf:ed:a3:d9:88:a3:b8:1b:af:e4:76:17:16:80:b4:76:
78:ed:2d:71:be:74:43:13:72:b1:99:8b:a1:95:5c:e3:79:43:
b4:82:75:e4:5f:85:54:be:b4:41:8b:d8:de:e3:ae:d8:d0:b6:
83:39:b4:fc:b0:8e:66:a5:7e:fe:e0:a7:24:53:75:00:cd:2f:
4e:84:6b:88:ec:da:a2:f6:c6:12:3f:c8:12:d3:72:30:c3:69:
12:81:84:2a:8a:ca:a2:1a:43:96:f6:88:cc:0e:5d:75:a7:d3:
ca:74:4b:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DzNbTQ5ZYs+ZUfTmDSQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNGFmMmI0Nzk4MTVmMDdjZDgyZTlmODJiYWIyZmVhMTNm
YjIxYjEwHhcNMjUwNjI4MTUwMTU2WhcNMjUwNjI5MTUwMTU2WjAzMTEwLwYDVQQD
Eyg3YWQ3Yzk4YWIxYTkzMzE1YzhjYjk3YWU1MDliNjE2OWQyYzgyOWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMQ9HK3TfTBqDfzPskvJgaXK7VxC
l2DWyu0TYtBVUJ+ShVoEkTS9p3ifhq+MdltMfvMl7JZbnar+8NUzvFNgox0E6/QS
CuUM6ltYCeNLh8ANzBYApx+NgX8NgaVC6SfT2hseYR6uWRY5JliEOoi7lGY/2kgt
Iqh+CmLf/BlEGotYalFDxarn4T1pm5h8wQv8xXhRxS8PPqoyqRsaivZIikayW805
UV9Abs3MocFKDwfyYUPDFt5LLhCaleNzSILZMGVhNuOOW6CaVrPwJrDggmmc3T/W
kUZmkZ3gwxTTRLNAVb1o0b2UhpL8zyRtkr2hx4u3vLuzO1Rr19N4wK8HgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHrXyYqxqTMVyMuXrlCbYWnSyCm5MB8GA1UdIwQY
MBaAFB9K8rR5gV8HzYLp+CurL+oT+yGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjIt
MDg2YzE2ZjczNmIxLzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjItMDg2YzE2ZjczNmIx
LzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANYLHKqJs
3xSRmR5wXx9FmQe4NxMUUe8A836LCUVBgD6U7hbs9rJIczKip5WyHlpdxm8MNCao
ufOQm26PtgPiTAD6b2VUSMq1Zwrq0AWESbiogAqHBeKlsVBMRuaPemRxANbe0bkG
nhTc0XMdNSpl6lz4NZg3dltd9Fbe7UeWPvyV5Sz6JIeHHPLs8azuLohz2WC/7aPZ
iKO4G6/kdhcWgLR2eO0tcb50QxNysZmLoZVc43lDtIJ15F+FVL60QYvY3uOu2NC2
gzm0/LCOZqV+/uCnJFN1AM0vToRriOzaovbGEj/IEtNyMMNpEoGEKorKohpDlvaI
zA5ddafTynRL0g==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:28 2025 by rpki-client