Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: z/HV/AcAst5WDWUItiSmBOpFchwyZaEwDGTu+p8D9QE=
Subject key identifier: 15:73:60:1E:D8:BE:C0:B5:E4:C0:0A:C3:63:7A:E2:F6:A2:E3:36:59
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0196451FD78BEB85C8DD8CEF7F29B0E69C82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1504
Signing time: Thu 17 Apr 2025 19:00:36 +0000
Manifest this update: Thu 17 Apr 2025 19:00:36 +0000
Manifest next update: Fri 18 Apr 2025 19:00:36 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: M9E4hAzDcmmKUkT1YazbHVkObHoQrRpsCmsODKG7EsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:1f:d7:8b:eb:85:c8:dd:8c:ef:7f:29:b0:e6:9c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Apr 17 19:00:36 2025 GMT
Not After : Apr 18 19:00:36 2025 GMT
Subject: CN=1573601ed8bec0b5e4c00ac3637ae2f6a2e33659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:dc:f1:f7:6a:61:cc:42:69:65:42:c4:cd:c1:
c7:8a:d1:9b:68:c1:7e:bc:4c:70:80:e0:a8:7e:1f:
48:85:a2:69:1c:dd:57:43:57:af:dd:98:5c:2f:36:
ed:00:d5:53:18:d6:10:49:b7:79:32:c9:c1:d5:d8:
2d:fe:58:50:4b:20:c8:4d:2b:03:74:d2:18:20:a2:
f5:82:80:91:70:d3:61:af:3b:89:77:9a:36:cb:eb:
39:74:96:bb:3b:72:77:f3:19:b9:a1:98:f3:de:06:
dd:00:ca:5c:bf:4a:e4:83:85:fa:17:6e:12:db:ba:
ae:b3:72:48:f6:90:06:c5:e0:49:a7:79:06:ad:59:
18:bd:70:82:d2:51:cb:8c:6b:82:ff:58:f0:a7:35:
a4:ab:19:31:ae:eb:ea:ac:49:96:7c:38:f3:fc:fd:
f8:73:99:f4:bb:23:fd:63:02:c0:ff:a0:6f:5c:ca:
bd:db:68:6e:5d:0f:bd:e0:fd:fb:5f:3a:30:ae:60:
24:cd:22:6d:d7:ad:4f:05:9a:d3:0e:23:20:a0:b0:
70:70:4b:b1:03:33:12:9d:c0:97:b5:21:f5:ba:4a:
c6:7a:0a:19:ae:9c:65:bd:4f:55:28:ea:af:82:a1:
48:89:e1:91:1b:2e:40:bf:bb:90:95:78:ea:43:02:
a4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:73:60:1E:D8:BE:C0:B5:E4:C0:0A:C3:63:7A:E2:F6:A2:E3:36:59
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b8:4f:d2:0a:d2:84:44:2e:3c:d5:9f:3e:e6:a6:2f:a3:f7:
95:ac:a6:2d:70:c4:ed:bc:2b:17:ba:e4:e9:3c:95:22:9f:79:
0d:2a:dc:d4:71:f7:2d:e8:d6:e4:b5:3e:80:7c:8c:7d:4a:94:
62:50:20:d5:ce:a3:7c:00:19:fb:9b:fe:b9:56:e8:01:fa:5e:
87:67:4c:e7:37:93:0a:9d:e7:af:96:2c:4d:db:00:d0:2d:c6:
cd:f8:b7:41:ba:92:a1:3a:ee:f1:39:65:30:e8:d1:17:d0:aa:
2c:af:14:e2:73:46:9b:6e:be:e5:58:f1:0a:fc:6c:6e:ff:9b:
3e:74:48:ad:78:12:6a:a9:07:84:c1:3d:17:da:c9:d4:bf:9e:
a3:e3:48:98:f4:ef:72:b0:67:5f:8b:b0:0f:85:dc:66:c8:63:
92:92:19:44:e6:06:83:a0:1b:ce:ed:b5:4f:5a:66:15:bd:34:
05:b0:2d:de:db:53:29:d5:64:8d:41:1b:e1:7e:d0:ca:c7:6d:
90:d8:7a:f2:2e:10:04:44:14:8c:55:01:2e:7a:cc:4a:ab:8c:
00:f0:9d:98:69:22:c3:41:43:15:53:4f:18:65:26:0d:15:df:
92:92:2d:57:d9:11:b9:4e:f6:50:7a:39:60:cc:b8:b9:4c:60:
8a:7f:3f:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZFH9eL64XI3Yzvfymw5pyCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmMjFjNTQzODQ0YzQxN2Y2MWFkNzkzOTI0NGQzYjc1OWMy
YTQzZWQwHhcNMjUwNDE3MTkwMDM2WhcNMjUwNDE4MTkwMDM2WjAzMTEwLwYDVQQD
EygxNTczNjAxZWQ4YmVjMGI1ZTRjMDBhYzM2MzdhZTJmNmEyZTMzNjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNzx92phzEJpZULEzcHHitGbaMF+
vExwgOCofh9IhaJpHN1XQ1ev3ZhcLzbtANVTGNYQSbd5MsnB1dgt/lhQSyDITSsD
dNIYIKL1goCRcNNhrzuJd5o2y+s5dJa7O3J38xm5oZjz3gbdAMpcv0rkg4X6F24S
27qus3JI9pAGxeBJp3kGrVkYvXCC0lHLjGuC/1jwpzWkqxkxruvqrEmWfDjz/P34
c5n0uyP9YwLA/6BvXMq922huXQ+94P37XzowrmAkzSJt161PBZrTDiMgoLBwcEux
AzMSncCXtSH1ukrGegoZrpxlvU9VKOqvgqFIieGRGy5Av7uQlXjqQwKk2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBVzYB7YvsC15MAKw2N64vai4zZZMB8GA1UdIwQY
MBaAFB8hxUOETEF/Ya15OSRNO3WcKkPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2Qt
YjhjNDg1M2U0MmJjLzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2QtYjhjNDg1M2U0MmJj
LzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAarhP0grS
hEQuPNWfPuamL6P3laymLXDE7bwrF7rk6TyVIp95DSrc1HH3LejW5LU+gHyMfUqU
YlAg1c6jfAAZ+5v+uVboAfpeh2dM5zeTCp3nr5YsTdsA0C3Gzfi3QbqSoTru8Tll
MOjRF9CqLK8U4nNGm26+5VjxCvxsbv+bPnRIrXgSaqkHhME9F9rJ1L+eo+NImPTv
crBnX4uwD4XcZshjkpIZROYGg6Abzu21T1pmFb00BbAt3ttTKdVkjUEb4X7Qysdt
kNh68i4QBEQUjFUBLnrMSquMAPCdmGkiw0FDFVNPGGUmDRXfkpItV9kRuU72UHo5
YMy4uUxgin8/zQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 23:42:24 2025 by rpki-client