Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
File: hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft (raw, json)
Hash identifier: x0h7TNwraE81QtsgWaH1aBUwX+ZL9xb+vWOFvOqvgoo=
Subject key identifier: 88:47:39:B4:A7:56:0F:49:C2:D5:0D:C7:BF:5C:60:9F:A3:AD:5D:4C
Authority key identifier: 86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77
Certificate issuer: /CN=8618b054d20dfdc9c5493c52c86234774904be77
Certificate serial: 0196D8898208BD351F788273EA0CEED09B80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
Manifest number: 153F
Signing time: Fri 16 May 2025 10:00:12 +0000
Manifest this update: Fri 16 May 2025 10:00:12 +0000
Manifest next update: Sat 17 May 2025 10:00:12 +0000
Files and hashes: 1: hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl (hash: k/xjP0zg/Bc3NBmpoSn1jBHxAZ3FTY+o3PU5mp13swk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d8:89:82:08:bd:35:1f:78:82:73:ea:0c:ee:d0:9b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8618b054d20dfdc9c5493c52c86234774904be77
Validity
Not Before: May 16 10:00:12 2025 GMT
Not After : May 17 10:00:12 2025 GMT
Subject: CN=884739b4a7560f49c2d50dc7bf5c609fa3ad5d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:10:27:e5:ff:9e:80:e0:3d:a3:4a:97:5c:
75:8d:1c:b7:a5:12:b5:80:77:cc:5c:db:6d:76:ef:
9e:3a:64:f4:5d:50:95:de:22:b0:cd:39:7d:8b:d6:
9e:b3:c1:9c:fc:b2:57:f0:5d:47:3b:83:9f:d6:0c:
96:d2:ed:46:67:11:f3:72:af:b6:e3:45:4e:ba:01:
a8:d9:4a:5f:2f:de:8e:aa:34:73:cc:6e:fd:d7:f1:
a7:d4:34:b0:0c:e1:d1:24:d6:a7:47:de:28:41:e6:
3b:c5:bb:66:4e:1f:a9:d5:da:8b:57:83:20:d0:bc:
98:93:84:d4:3c:a8:4b:9a:8d:ca:c0:6d:e5:78:df:
48:40:9d:cc:f0:e3:11:93:49:08:aa:0b:2f:50:dd:
65:5e:c1:a6:c8:8f:91:ef:ba:98:94:9b:1b:17:23:
47:13:fa:9d:82:34:d2:bb:61:40:ad:22:9e:0f:ac:
10:5f:38:9d:d3:d9:10:59:45:30:94:1e:d1:7d:f5:
43:92:30:51:84:09:ce:46:3e:f3:0d:54:84:b2:51:
70:84:3c:0e:87:3b:2a:8c:60:96:fd:72:ee:c9:72:
f6:a8:77:98:fd:95:1f:ce:04:e3:91:a6:92:44:96:
54:0f:ab:da:78:76:95:52:0f:fe:24:d4:02:2b:76:
1e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:47:39:B4:A7:56:0F:49:C2:D5:0D:C7:BF:5C:60:9F:A3:AD:5D:4C
X509v3 Authority Key Identifier:
keyid:86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:51:bc:0a:f7:34:0f:a5:69:c3:06:4e:5c:ff:52:59:05:b9:
19:16:aa:34:c9:b7:ea:a3:60:ae:af:8b:92:1a:63:12:c2:47:
75:78:fc:bf:f7:55:cf:a6:99:f7:5a:dd:d7:1a:be:f0:5f:bf:
59:06:97:4c:b7:fb:61:92:c7:ef:d2:60:06:99:de:3a:74:fa:
e2:6a:60:d1:df:e7:48:8c:bc:e3:9c:6e:0c:c7:14:7d:01:7c:
91:13:c2:e6:69:f7:70:ed:1d:5c:de:7e:3d:8e:78:b1:c1:f1:
30:13:f9:31:1c:50:fc:e1:da:40:6b:9c:1c:23:2c:8e:6e:d6:
f9:2c:1b:7a:89:43:2f:32:c8:f2:ce:ce:bb:3e:ed:65:ef:03:
bb:b9:35:e7:a7:e8:90:76:32:bd:31:4c:62:0a:66:8c:42:c3:
f8:7d:58:8a:9f:cd:fe:d9:ea:88:21:f7:c8:77:b4:75:c5:a4:
fa:cd:4c:b2:d2:b3:69:b1:99:7b:4d:71:4f:7a:b3:6c:40:af:
d3:39:7f:95:a4:b2:4c:11:70:b0:ee:26:04:59:56:e3:db:50:
67:a3:1e:aa:e5:a9:65:f5:7b:d3:15:bc:d4:1e:99:c7:6a:05:
54:4c:19:e7:92:da:22:72:a5:62:d4:eb:81:18:53:3b:ad:f9:
0e:d5:d1:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbYiYIIvTUfeIJz6gzu0JuAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2MThiMDU0ZDIwZGZkYzljNTQ5M2M1MmM4NjIzNDc3NDkw
NGJlNzcwHhcNMjUwNTE2MTAwMDEyWhcNMjUwNTE3MTAwMDEyWjAzMTEwLwYDVQQD
Eyg4ODQ3MzliNGE3NTYwZjQ5YzJkNTBkYzdiZjVjNjA5ZmEzYWQ1ZDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspEQJ+X/noDgPaNKl1x1jRy3pRK1
gHfMXNttdu+eOmT0XVCV3iKwzTl9i9aes8Gc/LJX8F1HO4Of1gyW0u1GZxHzcq+2
40VOugGo2UpfL96OqjRzzG791/Gn1DSwDOHRJNanR94oQeY7xbtmTh+p1dqLV4Mg
0LyYk4TUPKhLmo3KwG3leN9IQJ3M8OMRk0kIqgsvUN1lXsGmyI+R77qYlJsbFyNH
E/qdgjTSu2FArSKeD6wQXzid09kQWUUwlB7RffVDkjBRhAnORj7zDVSEslFwhDwO
hzsqjGCW/XLuyXL2qHeY/ZUfzgTjkaaSRJZUD6vaeHaVUg/+JNQCK3YedwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIhHObSnVg9JwtUNx79cYJ+jrV1MMB8GA1UdIwQY
MBaAFIYYsFTSDf3JxUk8UshiNHdJBL53MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGhpd1ZOSU5fY25GU1R4U3lHSTBkMGtFdm5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9mN2YxN2MtYzI3ZC00MDhmLTk5YzEt
YzQ3MzZjYTVjMjVhLzEvaGhpd1ZOSU5fY25GU1R4U3lHSTBkMGtFdm5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9mN2YxN2MtYzI3ZC00MDhmLTk5YzEtYzQ3MzZjYTVjMjVh
LzEvaGhpd1ZOSU5fY25GU1R4U3lHSTBkMGtFdm5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPVG8Cvc0
D6VpwwZOXP9SWQW5GRaqNMm36qNgrq+LkhpjEsJHdXj8v/dVz6aZ91rd1xq+8F+/
WQaXTLf7YZLH79JgBpneOnT64mpg0d/nSIy845xuDMcUfQF8kRPC5mn3cO0dXN5+
PY54scHxMBP5MRxQ/OHaQGucHCMsjm7W+SwbeolDLzLI8s7Ouz7tZe8Du7k156fo
kHYyvTFMYgpmjELD+H1Yip/N/tnqiCH3yHe0dcWk+s1MstKzabGZe01xT3qzbECv
0zl/laSyTBFwsO4mBFlW49tQZ6MequWpZfV70xW81B6Zx2oFVEwZ55LaInKlYtTr
gRhTO635DtXRTg==
-----END CERTIFICATE-----
Generated at Fri May 16 12:10:38 2025 by rpki-client