Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json)
Hash identifier: HUALxzO5+HzXPKfAdtEHsBIlSheRqYXFqAykWnZHUxQ=
Subject key identifier: EB:E1:51:C7:6E:E2:1C:28:9F:68:5B:27:07:C2:13:7C:02:65:81:33
Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Certificate serial: 0197B88F82BC75AAE31A093092BB7270C60F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
Manifest number: 14A6
Signing time: Sat 28 Jun 2025 22:01:42 +0000
Manifest this update: Sat 28 Jun 2025 22:01:42 +0000
Manifest next update: Sun 29 Jun 2025 22:01:42 +0000
Files and hashes: 1: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: Snq8S4GJkMj8DlVd5LMWiG2HIknfcm1e6DJdfZsyVR8=)
2: W-OtDTrcD4enIHqlL53Q8gJVqVg.roa (hash: MIoWyZfzBnM9tbFHcQ1uCgLljDFhySK8a9b/Bqx5jVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:82:bc:75:aa:e3:1a:09:30:92:bb:72:70:c6:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb
Validity
Not Before: Jun 28 22:01:42 2025 GMT
Not After : Jun 29 22:01:42 2025 GMT
Subject: CN=ebe151c76ee21c289f685b2707c2137c02658133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:56:a3:6a:13:0e:e3:55:d5:30:ed:59:24:f6:
86:48:90:4e:15:d5:d3:d0:3a:8e:d9:53:0b:ed:d7:
32:d7:61:17:69:64:84:37:e3:ca:73:06:03:e9:65:
27:84:23:cc:28:b2:d9:90:a1:25:44:4e:1d:d9:32:
2c:71:8f:68:03:94:2e:20:06:56:52:3c:cd:4d:c6:
e9:78:80:69:8a:c3:b2:39:8e:a4:c5:8a:59:0b:34:
47:92:60:7b:50:19:00:5a:2a:61:08:16:d6:b7:bb:
45:10:d3:92:8c:1a:c3:2a:96:2b:cd:f7:c1:d1:d7:
c8:c3:fc:86:ae:fa:da:e3:f9:9b:ac:02:eb:93:8a:
96:03:e9:2f:7e:f4:e9:63:44:3f:0c:ac:26:93:5b:
d8:20:f6:9d:f4:a6:3e:45:7c:db:27:75:eb:dd:f4:
6e:d5:f8:1c:aa:67:e1:66:c7:5e:e7:91:22:ec:0e:
4d:7c:54:1c:64:24:ab:87:d2:d8:68:e9:08:77:30:
7e:f6:02:5e:7a:a3:ba:59:28:b9:50:bf:37:da:dc:
66:aa:67:72:5f:ad:dd:de:e7:92:d1:86:6e:c5:4b:
5d:fd:f1:4d:c1:85:99:8a:ab:02:5e:43:47:aa:04:
47:1b:18:0c:a8:67:29:98:72:e9:a5:86:17:91:5c:
47:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E1:51:C7:6E:E2:1C:28:9F:68:5B:27:07:C2:13:7C:02:65:81:33
X509v3 Authority Key Identifier:
keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:31:1c:37:e1:16:a1:b9:aa:3d:42:b5:94:66:0c:43:2f:72:
c7:91:65:c7:62:24:54:bd:11:e2:4d:ce:5b:d3:3e:d4:39:23:
27:fa:c9:14:d2:b0:7f:a5:69:89:e1:09:2c:cb:75:33:4b:07:
19:99:b1:07:db:67:89:34:9b:21:ab:3e:65:47:1e:0a:02:55:
c6:33:4d:61:71:a3:5f:33:10:57:c4:d6:98:cb:11:69:ef:54:
25:77:b2:02:4b:4b:4f:9f:e1:82:a6:91:80:96:dd:e2:42:c2:
5f:13:41:cc:c2:41:85:24:f4:21:3d:c8:96:6e:63:e2:70:23:
f5:6c:03:6b:8c:22:cb:e9:db:0b:4a:e2:0e:42:11:3b:10:41:
ac:cb:7a:25:e3:32:4d:c0:fd:03:59:f6:3b:fc:cd:15:9e:1b:
18:50:44:83:85:77:1a:27:fd:28:0c:c5:4d:36:98:d9:d7:01:
f6:b4:ae:6d:9a:83:f3:7e:4f:e9:de:de:20:2d:17:6f:63:b3:
72:a4:8d:ef:a2:4f:61:87:66:22:0b:99:72:1a:44:c8:81:25:
31:f2:61:f2:01:37:8c:2f:bc:50:e0:b0:d8:cc:9e:f4:0a:80:
9c:0e:40:c4:ec:f3:8a:a9:d6:2f:cc:c1:43:62:ba:72:46:fd:
a7:b9:e5:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4j4K8darjGgkwkrtycMYPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYjQ2NGJhMDM4YmMwYmJiZWU0MDBmM2U5MDhkZjUxNDgy
YzUxYmIwHhcNMjUwNjI4MjIwMTQyWhcNMjUwNjI5MjIwMTQyWjAzMTEwLwYDVQQD
EyhlYmUxNTFjNzZlZTIxYzI4OWY2ODViMjcwN2MyMTM3YzAyNjU4MTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1ajahMO41XVMO1ZJPaGSJBOFdXT
0DqO2VML7dcy12EXaWSEN+PKcwYD6WUnhCPMKLLZkKElRE4d2TIscY9oA5QuIAZW
UjzNTcbpeIBpisOyOY6kxYpZCzRHkmB7UBkAWiphCBbWt7tFENOSjBrDKpYrzffB
0dfIw/yGrvra4/mbrALrk4qWA+kvfvTpY0Q/DKwmk1vYIPad9KY+RXzbJ3Xr3fRu
1fgcqmfhZsde55Ei7A5NfFQcZCSrh9LYaOkIdzB+9gJeeqO6WSi5UL832txmqmdy
X63d3ueS0YZuxUtd/fFNwYWZiqsCXkNHqgRHGxgMqGcpmHLppYYXkVxHHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOvhUcdu4hwon2hbJwfCE3wCZYEzMB8GA1UdIwQY
MBaAFBy0ZLoDi8C7vuQA8+kI31FILFG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEt
YmIyNjE0M2M1ZWRjLzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEtYmIyNjE0M2M1ZWRj
LzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkTEcN+EW
obmqPUK1lGYMQy9yx5Flx2IkVL0R4k3OW9M+1DkjJ/rJFNKwf6VpieEJLMt1M0sH
GZmxB9tniTSbIas+ZUceCgJVxjNNYXGjXzMQV8TWmMsRae9UJXeyAktLT5/hgqaR
gJbd4kLCXxNBzMJBhST0IT3Ilm5j4nAj9WwDa4wiy+nbC0riDkIROxBBrMt6JeMy
TcD9A1n2O/zNFZ4bGFBEg4V3Gif9KAzFTTaY2dcB9rSubZqD835P6d7eIC0Xb2Oz
cqSN76JPYYdmIguZchpEyIElMfJh8gE3jC+8UOCw2Mye9AqAnA5AxOzziqnWL8zB
Q2K6ckb9p7nl/A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:28:57 2025 by rpki-client