Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: vZyK3Ymq2bJ3YwTdsZ6HeXmF60jKmK3RsMSiaGUyoXY=
Subject key identifier: AB:EF:5C:38:DE:01:BF:CF:32:BB:61:48:55:FF:AC:BB:A7:88:08:12
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 019652DB29424E701335A4FB009A71219873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0A1E
Signing time: Sun 20 Apr 2025 11:00:16 +0000
Manifest this update: Sun 20 Apr 2025 11:00:16 +0000
Manifest next update: Mon 21 Apr 2025 11:00:16 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: XbjjRBjLM7WYC8ncZ5CBJJNYZ25bPLvOM1OGTqnPlwA=)
2: cnFeqHBw9aaza2RenBeNwJKndxs.roa (hash: kjgI4uTxYMi7MCfdj3M5XWKqSFRmZG0IxbqIvN1jC7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:29:42:4e:70:13:35:a4:fb:00:9a:71:21:98:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Apr 20 11:00:16 2025 GMT
Not After : Apr 21 11:00:16 2025 GMT
Subject: CN=abef5c38de01bfcf32bb614855ffacbba7880812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:70:ca:0f:82:db:19:cc:aa:96:0c:02:3f:c4:
8c:ea:ac:5a:09:1c:fe:39:e3:2a:a1:7a:7d:11:83:
4f:0a:ee:0c:b0:f4:bf:32:4d:f0:ea:38:40:1b:4e:
68:cb:df:6c:cb:0c:a9:90:dc:87:05:43:79:f9:29:
e9:91:00:34:3a:0e:72:1b:be:78:80:da:c9:16:9e:
21:f8:9e:ce:ef:d5:30:84:cc:ce:c1:15:11:0b:08:
a8:c6:a8:84:3d:db:12:4d:f6:e9:3a:f5:1d:4e:8d:
c7:77:35:dd:a8:24:e2:34:35:20:17:f9:41:2c:59:
99:0e:9a:ba:62:22:27:ac:5d:25:97:b0:ad:06:e8:
ae:c9:cc:aa:1c:d2:64:df:68:c2:6b:9e:02:4f:7f:
ce:2b:66:e3:cb:b4:92:10:ac:0a:a4:d2:2c:81:8b:
8d:5e:57:ec:d8:33:4b:92:ea:21:bd:40:2e:47:f9:
95:c5:6b:c6:d1:7f:e6:11:e5:7e:45:bc:2a:48:b8:
93:f9:7d:ec:2e:1d:3d:de:a9:25:af:4f:af:cc:94:
7f:4c:3e:9f:30:62:12:dd:ff:a2:1d:1d:74:32:1d:
5f:69:e0:e8:5c:2c:6b:fd:13:32:62:af:b1:12:b7:
3c:ce:3c:bf:0e:89:a1:bc:76:87:40:1f:d0:f5:91:
cb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EF:5C:38:DE:01:BF:CF:32:BB:61:48:55:FF:AC:BB:A7:88:08:12
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ab:9c:3c:d2:77:e4:0b:bf:78:45:03:25:96:2d:f4:0b:4b:
76:93:e5:8f:c9:17:af:92:47:4c:4b:7e:cd:40:e6:3c:f2:2d:
09:e8:11:eb:24:94:01:51:32:0b:3d:a5:91:bf:06:92:04:13:
6d:08:ad:53:bf:c5:7b:76:29:68:2e:25:1a:f8:3b:24:a6:96:
78:d0:d1:93:7a:7c:d6:74:ca:e1:78:2f:46:d4:89:02:5d:a7:
27:7f:21:0d:1a:30:8a:2e:c0:f1:bb:76:fc:c5:a8:32:37:c5:
8e:f6:32:14:00:18:59:65:19:87:ba:d6:2b:47:7b:cf:b3:ee:
e3:b1:f4:35:4a:6a:78:5a:b8:2c:c2:c0:db:a6:19:f5:42:44:
2e:30:86:3e:4e:17:59:0f:a3:0d:f7:25:4f:b7:00:55:0c:14:
e2:ba:5c:04:e7:d0:a4:05:f1:90:da:40:59:18:d6:aa:bb:6b:
b9:01:62:1c:f0:75:71:27:5d:af:1a:50:4d:0f:8a:46:54:4e:
f0:5a:0d:3e:2e:b8:3c:e8:38:89:0f:bf:d3:31:09:ef:cc:2a:
61:39:38:eb:7c:da:bd:a9:13:36:7d:45:66:fa:03:61:e8:cf:
98:37:d9:2c:2b:97:cc:8f:6d:2b:b7:6f:01:07:f0:91:87:2e:
8a:92:cb:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZS2ylCTnATNaT7AJpxIZhzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMDI2MDQwNmU4MzdhZTM4MzgwZmNjOGQ5OTJiOTNkMGRl
MWE4M2IwHhcNMjUwNDIwMTEwMDE2WhcNMjUwNDIxMTEwMDE2WjAzMTEwLwYDVQQD
EyhhYmVmNWMzOGRlMDFiZmNmMzJiYjYxNDg1NWZmYWNiYmE3ODgwODEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnDKD4LbGcyqlgwCP8SM6qxaCRz+
OeMqoXp9EYNPCu4MsPS/Mk3w6jhAG05oy99sywypkNyHBUN5+SnpkQA0Og5yG754
gNrJFp4h+J7O79UwhMzOwRURCwioxqiEPdsSTfbpOvUdTo3HdzXdqCTiNDUgF/lB
LFmZDpq6YiInrF0ll7CtBuiuycyqHNJk32jCa54CT3/OK2bjy7SSEKwKpNIsgYuN
Xlfs2DNLkuohvUAuR/mVxWvG0X/mEeV+RbwqSLiT+X3sLh093qklr0+vzJR/TD6f
MGIS3f+iHR10Mh1faeDoXCxr/RMyYq+xErc8zjy/DomhvHaHQB/Q9ZHLhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKvvXDjeAb/PMrthSFX/rLuniAgSMB8GA1UdIwQY
MBaAFB0CYEBug3rjg4D8yNmSuT0N4ag7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zNDAwMzEtMzY1Yi00ZmQyLTg3MzIt
OGMwZmFjYTNjYmQ4LzEvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8zNDAwMzEtMzY1Yi00ZmQyLTg3MzItOGMwZmFjYTNjYmQ4
LzEvSFFKZ1FHNkRldU9EZ1B6STJaSzVQUTNocURzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhaucPNJ3
5Au/eEUDJZYt9AtLdpPlj8kXr5JHTEt+zUDmPPItCegR6ySUAVEyCz2lkb8GkgQT
bQitU7/Fe3YpaC4lGvg7JKaWeNDRk3p81nTK4XgvRtSJAl2nJ38hDRowii7A8bt2
/MWoMjfFjvYyFAAYWWUZh7rWK0d7z7Pu47H0NUpqeFq4LMLA26YZ9UJELjCGPk4X
WQ+jDfclT7cAVQwU4rpcBOfQpAXxkNpAWRjWqrtruQFiHPB1cSddrxpQTQ+KRlRO
8FoNPi64POg4iQ+/0zEJ78wqYTk463zavakTNn1FZvoDYejPmDfZLCuXzI9tK7dv
AQfwkYcuipLLCw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:39:30 2025 by rpki-client