Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json)
Hash identifier: fru49hgCnfeyqadB8sehujAqN1tlcagkv2QNZimDG1Y=
Subject key identifier: 52:19:2F:0D:57:17:4C:29:4D:BA:9F:5F:94:DD:16:3A:E2:52:C5:36
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 01974C9FACC105D8F65C725394F507310158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
Manifest number: 1582
Signing time: Sat 07 Jun 2025 23:00:22 +0000
Manifest this update: Sat 07 Jun 2025 23:00:22 +0000
Manifest next update: Sun 08 Jun 2025 23:00:22 +0000
Files and hashes: 1: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: A/nB35oXbcYpNRPb0ZgRq0CyFusbYG3mZYIjo8/gHxk=)
2: nfcB4W3-frcdsttLFxfqKvUAYPA.roa (hash: LSLZu1kedUT6p6v50vQ31LG0ikk6bjLybjbis0FT+ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:9f:ac:c1:05:d8:f6:5c:72:53:94:f5:07:31:01:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Jun 7 23:00:22 2025 GMT
Not After : Jun 8 23:00:22 2025 GMT
Subject: CN=52192f0d57174c294dba9f5f94dd163ae252c536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:59:1a:bf:6d:f5:88:db:26:e6:ba:7a:10:75:
ff:7e:26:8f:10:bf:a1:5c:74:d1:8c:cc:bc:12:56:
70:9a:bb:55:9e:36:d5:e1:df:36:f5:b7:5c:89:2a:
a3:5d:f4:80:33:09:3d:a4:b4:d1:d2:97:a1:a0:4e:
1c:b9:66:56:a4:be:89:a8:c9:c5:38:45:07:4b:87:
a4:5b:11:40:57:c7:ff:fb:0f:ab:91:4a:46:93:59:
90:23:84:dc:12:39:9f:ee:8c:ee:70:6d:fc:38:52:
61:5d:02:89:43:21:23:69:3c:42:9d:29:1f:67:19:
9c:d1:b6:b8:e7:53:87:62:89:7d:b2:e3:59:44:ef:
d9:55:70:cd:b6:b9:17:98:06:27:5f:cf:13:4a:2b:
23:1b:56:cc:9c:9f:85:0c:94:e3:d9:cf:c4:d4:1c:
16:96:5c:81:0c:90:1f:35:74:12:66:ea:fa:79:d9:
d1:10:94:69:b3:63:70:28:66:26:c0:72:d8:38:75:
d8:4f:89:26:67:8f:08:81:e3:b8:84:f9:c5:a8:3f:
9e:c1:66:55:d0:fd:e1:fb:25:1a:ba:71:2d:fa:34:
58:7d:94:4a:d7:26:a0:fe:a7:de:0f:4f:f2:53:c6:
a7:20:3c:bf:8d:ef:d2:3b:8b:3f:f2:b4:ad:89:74:
9e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:19:2F:0D:57:17:4C:29:4D:BA:9F:5F:94:DD:16:3A:E2:52:C5:36
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:73:4c:a6:33:ae:55:ce:86:4c:29:4b:85:37:89:fd:ea:ca:
93:15:22:05:9f:eb:9a:85:a5:68:3b:0f:54:c7:4b:7b:72:2a:
d6:75:14:a1:98:15:73:33:63:02:e7:24:9e:de:f7:22:d4:72:
b6:c6:8a:0b:a2:6d:6a:53:13:b7:05:0f:8a:7a:ff:6f:e1:cd:
6b:1d:18:33:73:4c:5d:a2:f1:e8:3b:4b:c4:95:ea:76:78:69:
52:f2:5b:10:86:8f:76:5a:82:c5:68:5e:49:80:10:04:ae:1d:
24:fe:91:8c:ab:13:0f:0e:10:24:ec:73:8f:0f:08:22:00:62:
1f:d0:d9:e9:83:16:41:ff:7a:c5:8a:45:d0:3e:ce:25:65:9b:
61:b3:c5:67:de:19:c4:a1:b1:17:e6:08:95:01:17:d8:38:1e:
bb:f4:c7:2f:e7:c1:29:0c:ec:35:49:3a:ab:af:77:92:47:09:
19:94:60:21:62:03:ca:70:af:cb:da:66:ef:78:b5:41:78:31:
ca:ea:61:23:1b:04:bf:5a:bc:3d:71:c1:eb:92:a7:9b:bc:ff:
b7:25:17:70:d1:32:87:12:b1:5c:1d:b2:79:04:e2:57:e4:f4:
b6:48:d9:7e:86:b4:18:68:13:c3:64:88:6d:46:ef:9a:82:c5:
01:ab:fa:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMn6zBBdj2XHJTlPUHMQFYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOTUyZTg4MzczNmY3OWNiZDljNTY0NzA0YmYzYzM2NjIx
YjhlY2EwHhcNMjUwNjA3MjMwMDIyWhcNMjUwNjA4MjMwMDIyWjAzMTEwLwYDVQQD
Eyg1MjE5MmYwZDU3MTc0YzI5NGRiYTlmNWY5NGRkMTYzYWUyNTJjNTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Fkav231iNsm5rp6EHX/fiaPEL+h
XHTRjMy8ElZwmrtVnjbV4d829bdciSqjXfSAMwk9pLTR0pehoE4cuWZWpL6JqMnF
OEUHS4ekWxFAV8f/+w+rkUpGk1mQI4TcEjmf7ozucG38OFJhXQKJQyEjaTxCnSkf
Zxmc0ba451OHYol9suNZRO/ZVXDNtrkXmAYnX88TSisjG1bMnJ+FDJTj2c/E1BwW
llyBDJAfNXQSZur6ednREJRps2NwKGYmwHLYOHXYT4kmZ48IgeO4hPnFqD+ewWZV
0P3h+yUaunEt+jRYfZRK1yag/qfeD0/yU8anIDy/je/SO4s/8rStiXSe1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFIZLw1XF0wpTbqfX5TdFjriUsU2MB8GA1UdIwQY
MBaAFB6VLog3NvecvZxWRwS/PDZiG47KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iMTQwYWUtYzA0Ny00ZmY2LTg2NGYt
MzU2MDM1NjU3MWE3LzEvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9iMTQwYWUtYzA0Ny00ZmY2LTg2NGYtMzU2MDM1NjU3MWE3
LzEvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe3NMpjOu
Vc6GTClLhTeJ/erKkxUiBZ/rmoWlaDsPVMdLe3Iq1nUUoZgVczNjAucknt73ItRy
tsaKC6JtalMTtwUPinr/b+HNax0YM3NMXaLx6DtLxJXqdnhpUvJbEIaPdlqCxWhe
SYAQBK4dJP6RjKsTDw4QJOxzjw8IIgBiH9DZ6YMWQf96xYpF0D7OJWWbYbPFZ94Z
xKGxF+YIlQEX2Dgeu/THL+fBKQzsNUk6q693kkcJGZRgIWIDynCvy9pm73i1QXgx
yuphIxsEv1q8PXHB65Knm7z/tyUXcNEyhxKxXB2yeQTiV+T0tkjZfoa0GGgTw2SI
bUbvmoLFAav6jg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:43:09 2025 by rpki-client