Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json)
Hash identifier: lFQHvRXMzLdqIuw7Es1Aa4fJrUwrgir2OPCvmkxnrg0=
Subject key identifier: AA:A2:5E:23:4B:70:BA:77:E3:21:59:51:61:F6:C0:8F:8A:1C:46:3A
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 01960678DC7DC39527D60BFE53E63ACEB9EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
Manifest number: 14D8
Signing time: Sat 05 Apr 2025 15:01:45 +0000
Manifest this update: Sat 05 Apr 2025 15:01:45 +0000
Manifest next update: Sun 06 Apr 2025 15:01:45 +0000
Files and hashes: 1: 3rLuW8QzyohR5G8GlpoQPu-Q6-s.roa (hash: F/8n4kYq76m4ZS+34MKi7W7c5dmdl0PtvWuG8cLJRrQ=)
2: 5ExX7PElDwhZvsqUirscS-kfnho.roa (hash: bqRW9TpS9PZv6OIHrk3qUk9RHaZcJhV08bnl4u3kvQE=)
3: 80uZVWp_iWFE8vdma8FvwSsz-Uo.roa (hash: pm27AxcsLfVMm1BA5QNNe0QMO134e9SV+S+h9WFlZjs=)
4: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: EG6qZ74Zp1lfcdgC1sDjdISTsxm7kojT79s2L6ANT9M=)
5: Mxsx50Ph9_qr5vUqU-Gjhz8TFEo.roa (hash: r/sY/VoJqmcdsNcKGmTBnZbt3tc9vj95Qx95jR+/+BY=)
6: SUGGbjb1_Jk1qcT2JM8WcjQsO3o.roa (hash: oGVNqEXP6azb1lMS8LZZ+mpr73t/MEzsv974PdYYkYc=)
7: Z1aPPPc81U2W2p-hUbb2wEiLSrc.roa (hash: 2YYRPX4gY5ODPttZebzHcbGfP4UENAWKSJvWHEPrLO0=)
8: _3NlYGtAccp6zaeP-Zhm_oVq4fE.roa (hash: 7Ai+yD0w7Uc4wl5Kdh07MB6GvX74tuDak744pWBhJkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:06:78:dc:7d:c3:95:27:d6:0b:fe:53:e6:3a:ce:b9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Apr 5 15:01:45 2025 GMT
Not After : Apr 6 15:01:45 2025 GMT
Subject: CN=aaa25e234b70ba77e321595161f6c08f8a1c463a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7d:ce:e3:0e:98:26:d8:5b:05:80:38:79:75:
5d:77:56:68:1b:a9:42:7c:14:4a:0e:a1:34:a4:b5:
eb:cf:51:2e:00:9e:b0:3c:3b:9b:55:4e:9e:4d:62:
ed:56:96:bc:9d:ec:b8:49:9e:c6:09:27:70:82:cd:
3d:92:5c:e5:b7:81:77:48:47:f9:d3:b4:4d:f1:fd:
89:c8:97:a3:d0:73:7d:89:bc:3d:74:8f:82:9d:64:
97:1d:8c:c9:89:ec:fc:31:9a:03:02:5a:5f:d0:32:
02:de:6e:b4:4b:69:93:68:6f:fe:f0:e3:38:d2:28:
1f:b2:d9:67:fe:49:8c:f1:01:a9:e5:7a:7e:b5:7e:
be:b4:43:8a:29:bd:fe:2b:e1:cf:e3:50:f1:81:00:
f4:5b:a4:65:7d:93:de:1c:a6:24:86:09:01:60:37:
fc:f7:a9:d4:bc:96:83:45:1d:78:a7:f7:01:9f:bf:
87:51:6b:dc:42:9d:f5:87:40:88:df:3b:53:9a:ed:
a0:40:f6:8d:98:f7:eb:fe:40:ad:5e:b0:68:9a:86:
34:04:b1:2c:70:a3:a7:d0:73:86:be:7d:ee:8f:6e:
3e:1f:99:ad:be:78:ae:b5:61:8b:13:0d:65:08:c3:
e1:61:85:c5:29:f8:66:45:bf:45:1b:aa:9c:11:24:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A2:5E:23:4B:70:BA:77:E3:21:59:51:61:F6:C0:8F:8A:1C:46:3A
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:b9:b8:57:12:d9:21:c5:09:31:1c:e7:9c:1a:84:b7:cc:32:
a5:31:bd:e3:56:4f:8c:3d:33:bd:dc:69:1e:d2:3e:a1:79:7e:
4f:ae:ac:b6:06:8f:36:f4:00:40:e2:99:cc:65:e4:d9:44:e1:
cc:dc:5a:fa:35:24:4b:e6:f0:14:92:9f:e2:fc:f7:da:71:70:
7e:c4:d3:3b:19:2e:85:ce:0b:41:fe:e5:49:46:77:56:7f:1e:
7e:dc:4b:19:32:44:2d:92:ad:fa:8b:51:04:d6:7f:54:14:c4:
0f:6f:81:58:be:19:39:8f:10:7e:f6:48:aa:59:44:f0:43:0c:
c4:68:77:93:5e:ad:f4:3e:ba:6f:1d:dd:f3:12:97:42:80:eb:
2f:11:53:e4:2d:8f:20:71:eb:8d:f3:07:dc:01:e3:15:2e:8d:
c2:4a:09:6a:21:ab:5f:1c:15:2d:51:b6:96:60:6f:24:46:b0:
60:f8:63:1a:72:c7:41:a2:33:23:87:f8:0b:3e:b0:39:68:11:
3c:3a:97:e5:a9:fa:dc:6e:94:f1:81:45:e6:46:40:86:cb:0b:
cd:34:4d:f5:bd:cd:b3:44:a8:c4:34:68:3f:03:7d:b3:d2:82:
f0:24:2d:ba:05:03:ff:68:ae:ce:95:a7:91:b0:bc:f6:f4:9a:
af:58:fa:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYGeNx9w5Un1gv+U+Y6zrnvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZmE1OTZhMzEyNmFjZTAyOWM2ZDcwZDUyOTI1N2UwN2Iz
OGJhMDYwHhcNMjUwNDA1MTUwMTQ1WhcNMjUwNDA2MTUwMTQ1WjAzMTEwLwYDVQQD
EyhhYWEyNWUyMzRiNzBiYTc3ZTMyMTU5NTE2MWY2YzA4ZjhhMWM0NjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2n3O4w6YJthbBYA4eXVdd1ZoG6lC
fBRKDqE0pLXrz1EuAJ6wPDubVU6eTWLtVpa8ney4SZ7GCSdwgs09klzlt4F3SEf5
07RN8f2JyJej0HN9ibw9dI+CnWSXHYzJiez8MZoDAlpf0DIC3m60S2mTaG/+8OM4
0igfstln/kmM8QGp5Xp+tX6+tEOKKb3+K+HP41DxgQD0W6RlfZPeHKYkhgkBYDf8
96nUvJaDRR14p/cBn7+HUWvcQp31h0CI3ztTmu2gQPaNmPfr/kCtXrBomoY0BLEs
cKOn0HOGvn3uj24+H5mtvniutWGLEw1lCMPhYYXFKfhmRb9FG6qcESSXnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqiXiNLcLp34yFZUWH2wI+KHEY6MB8GA1UdIwQY
MBaAFB76WWoxJqzgKcbXDVKSV+B7OLoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODIt
OWQwYzYyMDczNWYxLzEvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODItOWQwYzYyMDczNWYx
LzEvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqbm4VxLZ
IcUJMRznnBqEt8wypTG941ZPjD0zvdxpHtI+oXl+T66stgaPNvQAQOKZzGXk2UTh
zNxa+jUkS+bwFJKf4vz32nFwfsTTOxkuhc4LQf7lSUZ3Vn8eftxLGTJELZKt+otR
BNZ/VBTED2+BWL4ZOY8QfvZIqllE8EMMxGh3k16t9D66bx3d8xKXQoDrLxFT5C2P
IHHrjfMH3AHjFS6NwkoJaiGrXxwVLVG2lmBvJEawYPhjGnLHQaIzI4f4Cz6wOWgR
PDqX5an63G6U8YFF5kZAhssLzTRN9b3Ns0SoxDRoPwN9s9KC8CQtugUD/2iuzpWn
kbC89vSar1j6Bw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:24:15 2025 by rpki-client