
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: trWvWPN0O/awLVG7TqagL3pK8aG6iWVcXk5CjLpKH8w=
Subject key identifier: 22:2E:B2:23:CF:74:CC:E3:6C:6D:24:CF:11:E9:1A:88:0C:BE:67:91
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 0197C0B6D583D0BC9DD826F09E5A75D55656
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 0957
Signing time: Mon 30 Jun 2025 12:01:37 +0000
Manifest this update: Mon 30 Jun 2025 12:01:37 +0000
Manifest next update: Tue 01 Jul 2025 12:01:37 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: fpRYbMkI3wiDFpdfB5DMBwBE1/5Okc7MBIa+OyY4bVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 12:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:b6:d5:83:d0:bc:9d:d8:26:f0:9e:5a:75:d5:56:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Jun 30 12:01:37 2025 GMT
Not After : Jul 1 12:01:37 2025 GMT
Subject: CN=222eb223cf74cce36c6d24cf11e91a880cbe6791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b7:fc:44:7a:aa:9e:cb:cf:e2:5a:83:47:5e:
e0:04:3e:b1:d5:7a:45:6c:4c:21:09:83:1b:b3:dd:
ea:7a:30:e9:41:ee:2d:e6:dd:b9:3b:25:ba:3b:94:
69:f9:14:ad:2b:16:8e:8d:b9:e5:45:26:fd:0d:73:
56:f4:6e:93:c9:14:46:f5:62:80:c3:37:77:fa:32:
c6:3c:ca:70:a3:1a:c5:28:a7:2c:db:16:1e:64:5a:
a1:23:5e:1e:96:da:f5:67:26:1e:c8:8e:8b:27:34:
1b:28:80:04:0d:70:e1:03:43:9f:28:56:34:3c:6f:
89:15:0a:75:2f:59:9a:a8:67:43:63:db:fe:76:0f:
04:c9:5d:38:7c:df:95:c5:b3:85:6e:30:cd:bd:d3:
79:83:11:05:56:e7:11:66:4f:19:db:a0:dd:d6:3c:
6d:0c:4d:e1:86:4f:af:75:40:7d:a7:02:bd:ae:e1:
7a:d7:e8:7d:dc:6a:15:92:ff:cb:65:4e:02:7c:0f:
64:cb:15:3d:af:5b:95:a2:3d:e3:b2:4a:44:60:62:
a8:06:b5:af:66:2b:28:81:30:0e:cf:a3:61:3c:a8:
15:ee:da:2c:4e:ee:3c:92:da:a5:79:a8:76:d6:92:
0e:b1:1f:ef:05:a8:50:6e:6f:7a:06:7a:da:f8:b0:
87:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2E:B2:23:CF:74:CC:E3:6C:6D:24:CF:11:E9:1A:88:0C:BE:67:91
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:60:d0:ee:aa:30:a8:42:4e:57:d4:ac:e8:13:64:74:a2:8b:
fc:60:e3:45:de:7f:d6:72:ef:4a:06:3d:5b:a1:d4:13:59:54:
29:12:93:5a:9e:ff:b0:62:cb:2b:ab:20:5e:be:f4:50:17:49:
fa:44:3e:c6:02:76:a7:8b:88:b3:3c:c5:df:03:9f:d1:7b:c2:
29:5a:54:49:82:fa:94:7b:f1:36:41:ce:48:a4:c8:d0:08:77:
1a:78:8f:66:81:12:04:c5:fb:0f:05:28:e6:1a:51:44:d8:51:
9c:14:38:38:e8:bc:66:2a:33:b9:96:d4:15:ee:3a:89:15:f4:
f8:0e:30:46:cd:42:e8:76:71:3f:81:58:c8:eb:c0:3f:93:8f:
7e:01:e7:28:d8:ca:62:2c:7e:d0:51:2b:14:8f:8f:b3:6e:86:
12:c2:b0:56:00:2c:f4:7e:f2:8b:c6:29:da:e5:92:3e:0e:62:
7e:68:29:41:cf:43:79:e6:53:02:2e:9f:09:40:5a:c0:c7:73:
00:92:9a:49:99:57:8e:78:99:5d:10:3d:31:87:d9:e9:bf:42:
f5:c4:ee:ba:25:6d:85:cf:4c:91:6b:44:fe:29:62:58:82:01:
42:54:c9:52:87:08:7a:5b:c0:14:23:23:a1:ed:88:a3:d8:43:
2d:e3:95:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfAttWD0Lyd2Cbwnlp11VZWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2NDFlN2Y2NzgyM2VlZjUyYTE5ZmUxZGM4ZTBlNmE3ZjQx
Yzk0MzMwHhcNMjUwNjMwMTIwMTM3WhcNMjUwNzAxMTIwMTM3WjAzMTEwLwYDVQQD
EygyMjJlYjIyM2NmNzRjY2UzNmM2ZDI0Y2YxMWU5MWE4ODBjYmU2NzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbf8RHqqnsvP4lqDR17gBD6x1XpF
bEwhCYMbs93qejDpQe4t5t25OyW6O5Rp+RStKxaOjbnlRSb9DXNW9G6TyRRG9WKA
wzd3+jLGPMpwoxrFKKcs2xYeZFqhI14eltr1ZyYeyI6LJzQbKIAEDXDhA0OfKFY0
PG+JFQp1L1maqGdDY9v+dg8EyV04fN+VxbOFbjDNvdN5gxEFVucRZk8Z26Dd1jxt
DE3hhk+vdUB9pwK9ruF61+h93GoVkv/LZU4CfA9kyxU9r1uVoj3jskpEYGKoBrWv
ZisogTAOz6NhPKgV7tosTu48ktqleah21pIOsR/vBahQbm96Bnra+LCHewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCIusiPPdMzjbG0kzxHpGogMvmeRMB8GA1UdIwQY
MBaAFKZB5/Z4I+71Khn+Hcjg5qf0HJQzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wYWMyMWMtYzcyYi00NzE5LWEwODUt
MDc4OGY3OTIxODUyLzEvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8wYWMyMWMtYzcyYi00NzE5LWEwODUtMDc4OGY3OTIxODUy
LzEvcGtIbjluZ2o3dlVxR2Y0ZHlPRG1wX1FjbERNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFWDQ7qow
qEJOV9Ss6BNkdKKL/GDjRd5/1nLvSgY9W6HUE1lUKRKTWp7/sGLLK6sgXr70UBdJ
+kQ+xgJ2p4uIszzF3wOf0XvCKVpUSYL6lHvxNkHOSKTI0Ah3GniPZoESBMX7DwUo
5hpRRNhRnBQ4OOi8ZiozuZbUFe46iRX0+A4wRs1C6HZxP4FYyOvAP5OPfgHnKNjK
Yix+0FErFI+Ps26GEsKwVgAs9H7yi8Yp2uWSPg5ifmgpQc9DeeZTAi6fCUBawMdz
AJKaSZlXjniZXRA9MYfZ6b9C9cTuuiVthc9MkWtE/iliWIIBQlTJUocIelvAFCMj
oe2Io9hDLeOVCA==
-----END CERTIFICATE-----
Generated at Mon Jun 30 19:53:18 2025 by rpki-client