Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: PbKG6oFLXuzZV8uomn8BfwNNxVPHGQ/RwteAfaaJqgo=
Subject key identifier: 68:61:2D:72:ED:92:6B:09:B5:2F:2D:75:BD:62:06:9E:93:60:A0:58
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 019749685273310502B1112129F8642305C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 11A2
Signing time: Sat 07 Jun 2025 08:01:02 +0000
Manifest this update: Sat 07 Jun 2025 08:01:02 +0000
Manifest next update: Sun 08 Jun 2025 08:01:02 +0000
Files and hashes: 1: CSj4rvQmRyDsyaDEw0jstidXLzo.roa (hash: 3pSnEcRnf/ULKrT/Poc1HoH7UgR2xUCZ7SNrN3hfNmI=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: dgddwowkg/w6sH+Ol/hMrKewGG1RIU5UzNSlzqRjvik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:52:73:31:05:02:b1:11:21:29:f8:64:23:05:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: Jun 7 08:01:02 2025 GMT
Not After : Jun 8 08:01:02 2025 GMT
Subject: CN=68612d72ed926b09b52f2d75bd62069e9360a058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:38:c9:5b:45:f3:4d:b2:06:2c:c4:2f:8f:
9d:9b:44:d6:dd:d8:ef:19:6b:4a:6a:78:ae:36:e6:
55:f4:20:f6:9e:24:71:39:d3:af:fe:50:66:ff:82:
12:7f:da:47:5d:bd:9a:96:a0:61:9e:9b:f1:ed:ed:
67:ed:55:42:41:04:83:a7:46:f4:31:6f:db:f5:fa:
8a:cd:54:1f:a3:e8:7a:3a:a9:d4:f8:7a:53:eb:6e:
3b:3c:63:d4:88:e5:40:dc:cd:78:77:2e:90:77:f3:
91:7b:b7:ed:a4:6c:a1:3f:f0:ae:5e:2f:af:f0:33:
89:35:22:03:c6:18:d0:11:6d:66:7d:db:19:71:3d:
24:15:82:f3:f0:38:69:8c:f9:cc:03:98:ad:51:63:
d2:1a:eb:fc:09:a6:ce:da:22:a6:88:20:df:5c:9f:
56:9e:14:ad:53:42:e8:cc:c7:e3:9c:22:8b:92:e4:
cf:eb:c6:2c:5c:62:57:5e:5a:d1:fc:28:4f:b6:06:
12:25:d9:15:fb:c3:41:ba:5e:25:f2:3d:d4:46:38:
07:64:a7:18:9f:f1:18:e7:68:10:52:d4:19:17:a7:
69:54:d3:ae:72:d1:f1:62:c5:8e:cb:e6:cc:1b:98:
63:87:36:db:87:6c:27:a9:c6:d8:67:05:1c:cf:4a:
96:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:61:2D:72:ED:92:6B:09:B5:2F:2D:75:BD:62:06:9E:93:60:A0:58
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:13:22:f2:62:fb:f9:8d:ea:3f:a2:d1:35:b7:b2:79:a7:4a:
fe:8a:5c:f5:3d:44:7c:6c:96:25:5f:4e:17:9d:b2:80:14:cb:
e7:d4:02:69:b6:51:09:af:44:24:17:f0:68:fb:ad:e1:0a:a8:
74:5b:c8:c1:22:31:04:41:4a:46:88:ef:83:51:47:b7:b5:f4:
9e:e8:69:96:b3:5f:a7:06:8f:af:6f:e8:f1:40:63:9b:30:9d:
8c:9b:c1:08:7d:ec:c4:f4:30:8e:ee:3f:87:dc:b0:19:02:b9:
ce:12:35:16:52:dd:a0:ca:1a:18:4d:5c:25:cb:8d:e2:93:51:
d5:c8:9a:a1:b4:99:84:ce:6b:8e:b9:83:69:fe:11:e6:59:69:
3a:29:5e:b3:b6:b2:8c:21:dd:5c:c7:68:5e:bc:49:6f:07:1a:
85:90:7d:e2:1b:a0:fb:6e:62:67:22:96:80:6f:e9:1d:95:16:
59:97:3e:78:46:2c:6f:3a:7e:6c:57:84:b3:68:6c:36:f1:05:
81:0a:c2:98:35:45:d5:10:88:29:da:c4:32:5c:c9:06:e2:00:
86:1e:2a:5f:f8:c7:98:6e:d0:61:74:36:26:68:7b:b2:18:be:
0d:0e:fc:51:49:2d:3a:27:a3:67:32:71:40:13:52:ca:95:74:
60:50:c8:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJaFJzMQUCsREhKfhkIwXAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkOWMwNzJmMmRiM2VmMWYyNjA1MDViYmZhMGVmZWExOGMy
OTcwYjEwHhcNMjUwNjA3MDgwMTAyWhcNMjUwNjA4MDgwMTAyWjAzMTEwLwYDVQQD
Eyg2ODYxMmQ3MmVkOTI2YjA5YjUyZjJkNzViZDYyMDY5ZTkzNjBhMDU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2s4yVtF802yBizEL4+dm0TW3djv
GWtKaniuNuZV9CD2niRxOdOv/lBm/4ISf9pHXb2alqBhnpvx7e1n7VVCQQSDp0b0
MW/b9fqKzVQfo+h6OqnU+HpT6247PGPUiOVA3M14dy6Qd/ORe7ftpGyhP/CuXi+v
8DOJNSIDxhjQEW1mfdsZcT0kFYLz8DhpjPnMA5itUWPSGuv8CabO2iKmiCDfXJ9W
nhStU0LozMfjnCKLkuTP68YsXGJXXlrR/ChPtgYSJdkV+8NBul4l8j3URjgHZKcY
n/EY52gQUtQZF6dpVNOuctHxYsWOy+bMG5hjhzbbh2wnqcbYZwUcz0qWQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGhhLXLtkmsJtS8tdb1iBp6TYKBYMB8GA1UdIwQY
MBaAFB2cBy8ts+8fJgUFu/oO/qGMKXCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMt
NDUwZTI0ZTA4OTFkLzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMtNDUwZTI0ZTA4OTFk
LzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMBMi8mL7
+Y3qP6LRNbeyeadK/opc9T1EfGyWJV9OF52ygBTL59QCabZRCa9EJBfwaPut4Qqo
dFvIwSIxBEFKRojvg1FHt7X0nuhplrNfpwaPr2/o8UBjmzCdjJvBCH3sxPQwju4/
h9ywGQK5zhI1FlLdoMoaGE1cJcuN4pNR1ciaobSZhM5rjrmDaf4R5llpOiles7ay
jCHdXMdoXrxJbwcahZB94hug+25iZyKWgG/pHZUWWZc+eEYsbzp+bFeEs2hsNvEF
gQrCmDVF1RCIKdrEMlzJBuIAhh4qX/jHmG7QYXQ2Jmh7shi+DQ78UUktOiejZzJx
QBNSypV0YFDIGg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:46:26 2025 by rpki-client