Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
File: hUxfKY2BrMVXP9WfsF3YbyCry6g.mft (raw, json)
Hash identifier: FoN/cAEkcaalQ8qv31XiTThIEb6i7Gcd7ZQJQg2UlOQ=
Subject key identifier: 06:68:A6:6C:DC:D3:64:31:7C:58:DA:FA:AD:2B:9B:3B:FC:03:38:FB
Authority key identifier: 85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
Certificate issuer: /CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Certificate serial: 01969CAC86C9D7EFA1E20269CC4A43790870
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
Manifest number: 0FA2
Signing time: Sun 04 May 2025 19:01:14 +0000
Manifest this update: Sun 04 May 2025 19:01:14 +0000
Manifest next update: Mon 05 May 2025 19:01:14 +0000
Files and hashes: 1: CJqITen207ZODHzo1XtCMdI_VBo.roa (hash: f1FWG5pswdJQTpL1NXAace6jGLQD4G1flmSN2+tjCMo=)
2: hUxfKY2BrMVXP9WfsF3YbyCry6g.crl (hash: LjZ5lQdwYsSSPxlUHFTnQfaqqvwFwVabGnlLwYKHE8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 19:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:ac:86:c9:d7:ef:a1:e2:02:69:cc:4a:43:79:08:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c5f298d81acc5573fd59fb05dd86f20abcba8
Validity
Not Before: May 4 19:01:14 2025 GMT
Not After : May 5 19:01:14 2025 GMT
Subject: CN=0668a66cdcd364317c58dafaad2b9b3bfc0338fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:33:a2:09:0e:1b:69:df:a9:4b:2d:6e:a4:af:
44:9b:61:cb:f1:8e:2d:e2:80:97:85:3c:b4:2a:76:
ec:17:a3:8a:1f:07:c5:95:c2:6b:6f:da:c5:4f:2f:
fb:5b:4a:60:5c:7e:9f:b4:6d:55:2c:3a:70:f7:5e:
a1:33:17:d9:68:f0:28:37:3c:2c:dd:58:bd:54:ef:
3b:aa:d4:90:85:2d:29:fa:88:fd:ad:aa:87:9f:5d:
b4:47:88:b9:83:9a:b5:4c:c0:ac:da:05:8c:4e:d7:
74:9b:c3:31:db:e5:18:d0:d6:97:9a:a5:7b:5c:b3:
5a:f2:31:11:03:d9:b4:6a:b3:b4:62:a1:28:11:ef:
9c:73:51:29:f6:cd:4f:6d:f7:0c:bb:7b:ec:06:b4:
18:8e:fd:47:ef:f0:0e:5f:ae:14:1d:4b:12:9e:67:
64:04:1d:2f:8b:82:53:e6:7f:99:c3:c5:c5:94:56:
94:c0:0c:48:4e:f4:05:ef:c0:8e:c7:4e:3a:66:33:
dd:c8:f8:9c:93:db:9f:56:d8:ef:ab:2c:82:c3:09:
35:a4:39:47:41:41:cd:f8:f4:a4:43:a2:cb:9b:8d:
91:1c:79:18:81:93:94:5f:ed:e3:17:30:91:49:d4:
93:4d:80:d1:04:58:01:67:7c:75:4a:e9:82:75:ae:
33:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:68:A6:6C:DC:D3:64:31:7C:58:DA:FA:AD:2B:9B:3B:FC:03:38:FB
X509v3 Authority Key Identifier:
keyid:85:4C:5F:29:8D:81:AC:C5:57:3F:D5:9F:B0:5D:D8:6F:20:AB:CB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUxfKY2BrMVXP9WfsF3YbyCry6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1295d0-3911-4a18-a8d2-752d59a042c2/1/hUxfKY2BrMVXP9WfsF3YbyCry6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:70:81:12:01:9b:0c:88:86:39:cb:ef:f9:90:04:be:a0:c2:
ac:30:25:99:3c:42:2d:4d:ff:53:c4:de:d4:f1:a5:c0:a6:7d:
8d:1e:2a:59:7d:14:a8:fc:a7:20:f8:e9:96:f2:51:a2:38:77:
82:6c:b5:87:f7:b0:bf:05:56:c1:25:ac:54:b0:3a:2f:01:d0:
cc:68:31:f0:29:cc:2c:43:14:6a:f4:1b:ad:8f:f8:de:41:93:
ea:4b:8a:ec:83:d6:2b:08:be:51:9c:c5:64:ef:b4:4b:98:4a:
62:54:59:2b:6c:6b:37:74:4b:e5:9d:9e:1a:40:4c:c4:10:4c:
08:1b:a5:1c:51:be:90:13:46:34:5d:5f:df:e6:8b:91:a0:92:
ea:dd:62:90:f2:15:28:7e:38:8e:56:ff:e1:22:2d:56:29:67:
25:b7:31:c4:5a:5f:34:96:ac:56:39:79:70:f9:44:9f:07:cc:
af:f0:fb:2e:d5:0e:18:2a:13:f3:3a:f7:39:96:c3:5a:fa:fa:
b1:df:e1:2c:56:72:ef:53:88:b6:e1:3a:a8:68:f0:ea:39:1c:
fa:f9:d1:ff:cb:29:98:cf:76:cc:ae:8d:0e:38:d1:c3:94:3d:
82:1b:9a:8a:73:d3:8b:ee:cf:c0:e0:cb:a2:f5:bb:07:0d:b5:
36:dc:e1:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZacrIbJ1++h4gJpzEpDeQhwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NGM1ZjI5OGQ4MWFjYzU1NzNmZDU5ZmIwNWRkODZmMjBh
YmNiYTgwHhcNMjUwNTA0MTkwMTE0WhcNMjUwNTA1MTkwMTE0WjAzMTEwLwYDVQQD
EygwNjY4YTY2Y2RjZDM2NDMxN2M1OGRhZmFhZDJiOWIzYmZjMDMzOGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDOiCQ4bad+pSy1upK9Em2HL8Y4t
4oCXhTy0KnbsF6OKHwfFlcJrb9rFTy/7W0pgXH6ftG1VLDpw916hMxfZaPAoNzws
3Vi9VO87qtSQhS0p+oj9raqHn120R4i5g5q1TMCs2gWMTtd0m8Mx2+UY0NaXmqV7
XLNa8jERA9m0arO0YqEoEe+cc1Ep9s1PbfcMu3vsBrQYjv1H7/AOX64UHUsSnmdk
BB0vi4JT5n+Zw8XFlFaUwAxITvQF78COx046ZjPdyPick9ufVtjvqyyCwwk1pDlH
QUHN+PSkQ6LLm42RHHkYgZOUX+3jFzCRSdSTTYDRBFgBZ3x1SumCda4zuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZopmzc02QxfFja+q0rmzv8Azj7MB8GA1UdIwQY
MBaAFIVMXymNgazFVz/Vn7Bd2G8gq8uoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFV4ZktZMkJyTVZYUDlXZnNGM1lieUNyeTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xMjk1ZDAtMzkxMS00YTE4LWE4ZDIt
NzUyZDU5YTA0MmMyLzEvaFV4ZktZMkJyTVZYUDlXZnNGM1lieUNyeTZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8xMjk1ZDAtMzkxMS00YTE4LWE4ZDItNzUyZDU5YTA0MmMy
LzEvaFV4ZktZMkJyTVZYUDlXZnNGM1lieUNyeTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWXCBEgGb
DIiGOcvv+ZAEvqDCrDAlmTxCLU3/U8Te1PGlwKZ9jR4qWX0UqPynIPjplvJRojh3
gmy1h/ewvwVWwSWsVLA6LwHQzGgx8CnMLEMUavQbrY/43kGT6kuK7IPWKwi+UZzF
ZO+0S5hKYlRZK2xrN3RL5Z2eGkBMxBBMCBulHFG+kBNGNF1f3+aLkaCS6t1ikPIV
KH44jlb/4SItVilnJbcxxFpfNJasVjl5cPlEnwfMr/D7LtUOGCoT8zr3OZbDWvr6
sd/hLFZy71OItuE6qGjw6jkc+vnR/8spmM92zK6NDjjRw5Q9ghuainPTi+7PwODL
ovW7Bw21NtzhXg==
-----END CERTIFICATE-----
Generated at Mon May 5 05:29:59 2025 by rpki-client