Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json)
Hash identifier: kQq1I6m7MAeMYJua1lQ3n+2UN6WoSwGm5KFtKqVWiNU=
Subject key identifier: F7:66:0A:F0:21:82:C4:B6:A0:EE:D0:46:51:4D:C6:22:59:2E:24:3C
Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Certificate serial: 0197B9D8FFDA2904A4C4779FA8856E84131B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
Manifest number: 15B7
Signing time: Sun 29 Jun 2025 04:01:35 +0000
Manifest this update: Sun 29 Jun 2025 04:01:35 +0000
Manifest next update: Mon 30 Jun 2025 04:01:35 +0000
Files and hashes: 1: E7w56iH6n62Qtx76-l21Wicx0tI.roa (hash: mYbpZ2jovxydBfbzCm7J8lBecdgedCJGDSbz9EY1aRY=)
2: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: uaRxjkEPgaSuRsnELaH1txjhkW9Y4+fW3J1UIjLyq7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:d8:ff:da:29:04:a4:c4:77:9f:a8:85:6e:84:13:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5
Validity
Not Before: Jun 29 04:01:35 2025 GMT
Not After : Jun 30 04:01:35 2025 GMT
Subject: CN=f7660af02182c4b6a0eed046514dc622592e243c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:37:f6:33:78:b3:b4:db:f4:6f:0c:8a:f4:0d:
9c:dc:5b:74:c7:e8:39:15:92:51:8f:97:86:42:34:
c2:df:90:94:b6:70:ce:29:a0:33:2c:a3:de:5b:94:
dd:0d:de:00:62:e3:12:4d:15:a8:d1:c6:08:8e:6c:
00:f2:62:2f:f9:49:19:1c:af:66:88:0a:7e:7e:38:
b8:31:10:f5:34:9b:a4:59:df:6e:80:b1:d1:82:6e:
88:e9:b4:ab:3f:ad:5e:c6:fe:e6:58:36:dc:10:dc:
fc:33:4f:bc:94:37:47:e0:74:08:62:a7:40:f2:55:
5c:4f:f1:72:48:e2:05:c7:d3:0f:2c:a1:a7:fb:35:
e1:06:74:43:0c:42:10:58:3c:60:eb:bf:a5:90:da:
9c:36:81:f9:88:44:8d:5b:d7:36:08:4b:1e:49:09:
aa:75:5e:0a:71:43:b5:dc:2b:ac:d3:56:ac:33:7d:
6b:e9:f9:00:2a:05:09:8b:b8:55:f2:08:d7:c0:9c:
af:fa:93:72:eb:94:8a:f2:13:2d:91:19:aa:cc:73:
06:68:54:75:4d:06:5b:d6:a9:59:4b:d6:25:7c:7d:
13:b5:11:5a:ba:30:84:55:f7:f4:95:e5:0e:c8:66:
da:0f:44:a0:11:2a:9a:ab:9d:a1:99:3a:59:93:7a:
98:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:66:0A:F0:21:82:C4:B6:A0:EE:D0:46:51:4D:C6:22:59:2E:24:3C
X509v3 Authority Key Identifier:
keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:5e:3c:75:c7:b2:5d:35:47:7e:e3:bd:17:95:24:68:e2:e9:
76:1d:af:47:5e:7a:8a:13:1e:92:46:33:df:df:a6:50:09:b0:
43:13:e1:1c:a3:63:82:2f:68:ef:80:84:04:32:17:9f:31:29:
e6:5e:e2:0c:c9:e4:7b:27:b4:8f:99:86:37:cc:73:aa:ed:65:
1d:7a:99:dc:39:be:a7:c5:bb:42:f0:c3:d3:6c:ad:cb:e8:33:
16:cd:09:a2:93:a8:43:c5:59:03:0e:73:c2:2d:02:22:5a:58:
21:2f:7b:11:a1:11:84:ec:1c:f4:c2:cf:fe:76:c4:ea:13:95:
45:67:41:15:a1:95:02:e8:0b:d0:df:51:bd:53:a6:72:27:36:
2d:12:b6:88:1b:0f:ee:61:2c:06:a0:f7:57:d2:ca:3e:90:64:
6b:7c:35:8c:35:7b:59:f6:be:9a:fd:93:69:86:74:28:51:69:
5d:15:7a:e7:08:40:83:92:d7:30:da:1c:18:d1:88:7a:7b:1a:
6b:5b:bb:a2:05:1c:88:55:5b:ed:3a:5d:c1:b5:f3:41:2c:e0:
65:67:ee:06:ca:1a:54:13:53:83:0a:36:22:2a:cf:ee:0b:d6:
e4:7b:65:24:0d:a6:f9:53:0f:db:5c:e6:77:88:84:a2:d1:60:
44:46:81:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe52P/aKQSkxHefqIVuhBMbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2MjFiMGI3ZGZhMGE3ODg4Zjc1ZWZmMjBmMzIxNDVhMGIz
ZjBkZDUwHhcNMjUwNjI5MDQwMTM1WhcNMjUwNjMwMDQwMTM1WjAzMTEwLwYDVQQD
EyhmNzY2MGFmMDIxODJjNGI2YTBlZWQwNDY1MTRkYzYyMjU5MmUyNDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zf2M3iztNv0bwyK9A2c3Ft0x+g5
FZJRj5eGQjTC35CUtnDOKaAzLKPeW5TdDd4AYuMSTRWo0cYIjmwA8mIv+UkZHK9m
iAp+fji4MRD1NJukWd9ugLHRgm6I6bSrP61exv7mWDbcENz8M0+8lDdH4HQIYqdA
8lVcT/FySOIFx9MPLKGn+zXhBnRDDEIQWDxg67+lkNqcNoH5iESNW9c2CEseSQmq
dV4KcUO13Cus01asM31r6fkAKgUJi7hV8gjXwJyv+pNy65SK8hMtkRmqzHMGaFR1
TQZb1qlZS9YlfH0TtRFaujCEVff0leUOyGbaD0SgESqaq52hmTpZk3qYDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPdmCvAhgsS2oO7QRlFNxiJZLiQ8MB8GA1UdIwQY
MBaAFIYhsLffoKeIj3Xv8g8yFFoLPw3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMt
NmIzZTBhYTJjYmIyLzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMtNmIzZTBhYTJjYmIy
LzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlV48dcey
XTVHfuO9F5UkaOLpdh2vR156ihMekkYz39+mUAmwQxPhHKNjgi9o74CEBDIXnzEp
5l7iDMnkeye0j5mGN8xzqu1lHXqZ3Dm+p8W7QvDD02yty+gzFs0JopOoQ8VZAw5z
wi0CIlpYIS97EaERhOwc9MLP/nbE6hOVRWdBFaGVAugL0N9RvVOmcic2LRK2iBsP
7mEsBqD3V9LKPpBka3w1jDV7Wfa+mv2TaYZ0KFFpXRV65whAg5LXMNocGNGIensa
a1u7ogUciFVb7TpdwbXzQSzgZWfuBsoaVBNTgwo2IirP7gvW5HtlJA2m+VMP21zm
d4iEotFgREaB6A==
-----END CERTIFICATE-----
Generated at Sun Jun 29 11:20:10 2025 by rpki-client