Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
File: hGbpF0La0bn0x5ayOzfres2FgWE.mft (raw, json)
Hash identifier: NHLAd5epkpZpJLi+GEO2r7CJP7OWhpFwh9ox2fZPO84=
Subject key identifier: 38:15:C6:A7:DE:F3:94:EE:ED:95:6C:0A:52:56:06:9B:54:77:2D:06
Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Certificate serial: 0197B8FD35227D03309BD874B4E16B51DA48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
Manifest number: 1057
Signing time: Sun 29 Jun 2025 00:01:31 +0000
Manifest this update: Sun 29 Jun 2025 00:01:31 +0000
Manifest next update: Mon 30 Jun 2025 00:01:31 +0000
Files and hashes: 1: bbcA4RxlQmcQjNn0rG4goHNMuOU.roa (hash: R2hOoSIVcz11ndb2ZPvvYv6Kv8fgZfMkny+ajnRe2GQ=)
2: hGbpF0La0bn0x5ayOzfres2FgWE.crl (hash: 64qQv+qBjgLpqbW1dEkSFDP+POdjoS8rdXiS9v6+B0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:35:22:7d:03:30:9b:d8:74:b4:e1:6b:51:da:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Validity
Not Before: Jun 29 00:01:31 2025 GMT
Not After : Jun 30 00:01:31 2025 GMT
Subject: CN=3815c6a7def394eeed956c0a5256069b54772d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:23:25:56:90:5a:d9:0d:85:d8:b4:9d:dd:56:
d5:91:14:18:55:cf:37:29:db:c0:94:4d:80:e8:62:
d7:9b:6f:fe:03:67:ca:6d:b2:94:94:22:d4:2f:0f:
80:12:85:fd:02:e4:ec:07:48:8e:d6:33:6a:46:c9:
00:be:20:a4:ab:76:f2:2a:c4:4d:ea:a1:50:d8:75:
ed:43:69:21:4d:61:33:22:a9:07:88:ee:be:0c:01:
f6:7e:ec:3a:cc:f0:15:f6:e3:52:a4:11:5b:7e:0f:
0e:c3:49:a1:23:3d:f7:75:ad:bb:cf:a4:87:bd:fa:
a4:95:e0:92:e3:8d:4a:34:d3:6c:6a:a0:f0:03:7b:
4b:33:a0:d6:c5:fc:e4:29:67:4c:23:4b:0e:98:26:
05:72:c8:40:9f:18:2e:19:21:48:38:8d:6c:5c:72:
d1:35:7e:b2:50:78:3a:fd:fc:bf:da:fc:19:49:32:
e4:05:7f:df:d8:0c:c9:17:6d:ca:f5:26:05:d5:a2:
cd:42:a6:f5:14:d3:e6:90:38:97:36:f5:62:a7:10:
d8:90:7b:0f:c3:38:49:d1:cb:5e:e6:dc:67:dc:7c:
35:8f:b8:60:46:40:48:a7:a6:71:9f:3d:17:76:7b:
52:73:23:01:12:97:57:55:02:cc:c8:be:5a:8c:ea:
cc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:15:C6:A7:DE:F3:94:EE:ED:95:6C:0A:52:56:06:9B:54:77:2D:06
X509v3 Authority Key Identifier:
keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:00:52:65:b8:49:86:85:e9:67:4b:cf:3d:6b:69:60:07:82:
5d:18:78:23:0a:1f:d1:d9:ac:24:be:a0:d7:c6:98:38:31:17:
2f:69:cf:c3:6d:3d:29:39:c3:6a:eb:bf:4f:f7:e0:6d:c3:3f:
4c:ba:62:ac:dc:56:3d:dd:f3:3d:76:8a:9a:e2:00:50:f6:67:
32:c1:74:15:48:41:3b:b3:46:c3:ac:28:12:1b:27:c2:16:9f:
4a:fd:00:8a:ab:75:72:04:4a:27:4a:f4:2e:7b:1e:e2:c7:88:
6f:bf:9b:ba:3e:78:19:45:4f:d7:59:06:15:d9:8a:45:ff:5b:
79:6a:54:8c:49:4c:44:32:3b:bc:e7:a1:ee:09:ec:46:e0:e8:
b3:dc:3a:f3:ce:c8:6f:e6:7a:27:e7:2a:94:90:0f:24:69:41:
4b:aa:a2:49:8f:08:2a:0b:85:dc:64:24:9d:9b:52:31:76:a3:
08:4f:10:69:62:39:c8:7f:92:74:3a:ee:4b:c3:0c:0f:cc:3d:
fc:d6:ba:e3:72:6e:08:db:ad:9c:af:87:6f:e1:92:86:dd:32:
45:95:b8:10:05:a0:8d:b7:7d:a1:50:44:03:68:51:85:ba:7a:
3f:4a:99:05:f5:52:fc:a4:65:c6:8c:76:e5:45:64:54:de:cc:
f1:8b:29:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4/TUifQMwm9h0tOFrUdpIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NjZlOTE3NDJkYWQxYjlmNGM3OTZiMjNiMzdlYjdhY2Q4
NTgxNjEwHhcNMjUwNjI5MDAwMTMxWhcNMjUwNjMwMDAwMTMxWjAzMTEwLwYDVQQD
EygzODE1YzZhN2RlZjM5NGVlZWQ5NTZjMGE1MjU2MDY5YjU0NzcyZDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCMlVpBa2Q2F2LSd3VbVkRQYVc83
KdvAlE2A6GLXm2/+A2fKbbKUlCLULw+AEoX9AuTsB0iO1jNqRskAviCkq3byKsRN
6qFQ2HXtQ2khTWEzIqkHiO6+DAH2fuw6zPAV9uNSpBFbfg8Ow0mhIz33da27z6SH
vfqkleCS441KNNNsaqDwA3tLM6DWxfzkKWdMI0sOmCYFcshAnxguGSFIOI1sXHLR
NX6yUHg6/fy/2vwZSTLkBX/f2AzJF23K9SYF1aLNQqb1FNPmkDiXNvVipxDYkHsP
wzhJ0cte5txn3Hw1j7hgRkBIp6Zxnz0XdntScyMBEpdXVQLMyL5ajOrMMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDgVxqfe85Tu7ZVsClJWBptUdy0GMB8GA1UdIwQY
MBaAFIRm6RdC2tG59MeWsjs363rNhYFhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAt
NGUzMmM4YjhlZTM2LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAtNGUzMmM4YjhlZTM2
LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbABSZbhJ
hoXpZ0vPPWtpYAeCXRh4Iwof0dmsJL6g18aYODEXL2nPw209KTnDauu/T/fgbcM/
TLpirNxWPd3zPXaKmuIAUPZnMsF0FUhBO7NGw6woEhsnwhafSv0Aiqt1cgRKJ0r0
Lnse4seIb7+buj54GUVP11kGFdmKRf9beWpUjElMRDI7vOeh7gnsRuDos9w6887I
b+Z6J+cqlJAPJGlBS6qiSY8IKguF3GQknZtSMXajCE8QaWI5yH+SdDruS8MMD8w9
/Na643JuCNutnK+Hb+GSht0yRZW4EAWgjbd9oVBEA2hRhbp6P0qZBfVS/KRlxox2
5UVkVN7M8YspGQ==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:38:27 2025 by rpki-client