Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json)
Hash identifier: vi2Az6qFjwpnsW8iMiuMrQoN3Aotozr3uoQmYStRdfw=
Subject key identifier: 38:A7:79:76:15:2A:0B:F4:8E:B1:6C:CB:44:ED:D8:40:05:29:7E:60
Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Certificate serial: 0196C6836F5F449E4978A0BDD82D1D0A11BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
Manifest number: 0F6D
Signing time: Mon 12 May 2025 22:00:24 +0000
Manifest this update: Mon 12 May 2025 22:00:24 +0000
Manifest next update: Tue 13 May 2025 22:00:24 +0000
Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=)
2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: E8mvaNsbg4KUA3OhY+eGe2DMZ9GWl0K6CYhI6+jgxM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:83:6f:5f:44:9e:49:78:a0:bd:d8:2d:1d:0a:11:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc
Validity
Not Before: May 12 22:00:24 2025 GMT
Not After : May 13 22:00:24 2025 GMT
Subject: CN=38a77976152a0bf48eb16ccb44edd84005297e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0f:cf:8d:0c:8c:73:12:a8:0e:9a:08:57:6d:
7a:df:ca:6a:43:b1:ee:94:92:13:f2:fe:09:c4:9a:
09:7f:0b:9c:a5:e6:a9:12:17:07:f6:54:9d:3e:4f:
09:99:70:73:8b:0d:8a:80:0c:27:3a:60:98:82:f7:
f0:9d:e2:13:3e:ef:32:8d:fa:ab:89:34:ae:40:30:
2f:11:1a:9f:58:b1:51:bc:83:29:07:6f:5d:51:d3:
23:ff:7e:33:89:62:fb:f2:1c:c7:7a:20:8b:f6:0f:
35:ab:0a:d0:14:b1:4a:ef:3f:bd:fd:5f:1f:f3:21:
10:41:88:51:e1:3a:97:51:82:0b:ba:5f:98:86:c1:
65:78:6c:be:0f:f7:b3:d7:29:b1:99:2d:21:0b:8f:
ff:be:44:51:e0:55:cb:17:4c:64:9a:c5:c7:0d:27:
de:39:11:23:e2:67:29:02:74:04:4b:7a:f8:13:03:
eb:b0:59:38:ad:17:d6:99:fe:00:86:74:13:6c:c1:
f7:55:31:fc:21:f8:8c:43:4b:a6:61:19:70:61:21:
21:25:b2:49:d2:b9:ba:98:93:4d:d0:4f:60:23:3e:
df:02:bc:58:84:04:0e:1e:c3:67:0f:6f:92:b6:5b:
5a:e7:b5:51:34:ff:e9:43:61:52:41:9a:6a:5c:8b:
72:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A7:79:76:15:2A:0B:F4:8E:B1:6C:CB:44:ED:D8:40:05:29:7E:60
X509v3 Authority Key Identifier:
keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:72:c5:70:0a:f0:3d:75:09:22:33:1f:07:19:b4:75:c1:c6:
9f:20:5c:21:f1:f3:ba:c3:a4:99:1b:23:8a:81:18:2e:5d:0f:
97:84:b4:5c:56:dd:6f:cd:57:db:9e:a7:54:7f:d0:2d:22:26:
a5:36:8d:fe:03:8b:e9:f0:ef:10:3c:54:7e:4e:46:b9:fa:55:
a8:dc:31:c7:c8:84:fc:26:5b:66:7d:68:42:23:d0:cb:06:18:
62:20:13:ee:7f:b8:aa:0c:69:e7:fc:31:8e:35:3b:f5:ff:50:
46:76:68:46:a5:2a:87:1c:92:1b:44:1f:82:e2:b9:e5:b2:35:
89:07:cb:15:ab:38:e0:ee:c2:4c:c1:ca:72:82:59:00:ea:d3:
df:cc:b5:c3:4c:40:ec:f0:ce:80:3f:83:d8:0f:e5:c9:a4:54:
f3:9d:a6:2e:1e:ed:a7:62:81:c6:dd:de:ee:f7:7f:1e:6a:af:
03:67:fb:47:8d:65:ec:3f:67:81:08:db:39:00:fd:8f:b5:15:
2b:cd:6b:42:b7:3e:28:2b:10:ca:89:93:6b:e3:e5:4b:8c:7f:
d3:c9:88:78:89:8d:7c:01:82:4b:02:26:67:94:d4:2f:08:58:
06:92:a8:be:e3:f9:d5:1b:f2:75:e0:9f:92:f7:31:04:84:50:
79:44:2e:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbGg29fRJ5JeKC92C0dChG/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NTA1OTdhNjA2NGM4ODJhZTJhZjNmYTU3NTlmMTNmOGJk
MWRkZmMwHhcNMjUwNTEyMjIwMDI0WhcNMjUwNTEzMjIwMDI0WjAzMTEwLwYDVQQD
EygzOGE3Nzk3NjE1MmEwYmY0OGViMTZjY2I0NGVkZDg0MDA1Mjk3ZTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQ/PjQyMcxKoDpoIV21638pqQ7Hu
lJIT8v4JxJoJfwucpeapEhcH9lSdPk8JmXBziw2KgAwnOmCYgvfwneITPu8yjfqr
iTSuQDAvERqfWLFRvIMpB29dUdMj/34ziWL78hzHeiCL9g81qwrQFLFK7z+9/V8f
8yEQQYhR4TqXUYILul+YhsFleGy+D/ez1ymxmS0hC4//vkRR4FXLF0xkmsXHDSfe
OREj4mcpAnQES3r4EwPrsFk4rRfWmf4AhnQTbMH3VTH8IfiMQ0umYRlwYSEhJbJJ
0rm6mJNN0E9gIz7fArxYhAQOHsNnD2+Stlta57VRNP/pQ2FSQZpqXItyzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDineXYVKgv0jrFsy0Tt2EAFKX5gMB8GA1UdIwQY
MBaAFIVQWXpgZMiCrirz+ldZ8T+L0d38MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMt
MjVjNWYwNWFlYjVmLzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMtMjVjNWYwNWFlYjVm
LzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcHLFcArw
PXUJIjMfBxm0dcHGnyBcIfHzusOkmRsjioEYLl0Pl4S0XFbdb81X256nVH/QLSIm
pTaN/gOL6fDvEDxUfk5GufpVqNwxx8iE/CZbZn1oQiPQywYYYiAT7n+4qgxp5/wx
jjU79f9QRnZoRqUqhxySG0QfguK55bI1iQfLFas44O7CTMHKcoJZAOrT38y1w0xA
7PDOgD+D2A/lyaRU852mLh7tp2KBxt3e7vd/HmqvA2f7R41l7D9ngQjbOQD9j7UV
K81rQrc+KCsQyomTa+PlS4x/08mIeImNfAGCSwImZ5TULwhYBpKovuP51RvydeCf
kvcxBIRQeUQutQ==
-----END CERTIFICATE-----
Generated at Tue May 13 02:51:22 2025 by rpki-client