Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
File: Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft (raw, json)
Hash identifier: njrrlERxOyTTC+x3m5CBq/dU9L5Q4Ubi672BLo1JF2o=
Subject key identifier: 1D:E4:AC:2B:9B:60:6E:0A:BF:6A:6B:09:33:C7:7C:E9:93:5A:E8:79
Authority key identifier: 1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
Certificate issuer: /CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Certificate serial: 019748FA0AC62686C3B635F8C99327C2ABAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
Manifest number: 0BAA
Signing time: Sat 07 Jun 2025 06:00:35 +0000
Manifest this update: Sat 07 Jun 2025 06:00:35 +0000
Manifest next update: Sun 08 Jun 2025 06:00:35 +0000
Files and hashes: 1: Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl (hash: Xr1cjHhnatFG2KDGiROP6EhKRPOCP1KAe+ZSX+EjFVo=)
2: oaQkn5zr2sFy17og-aVMkuLXdds.roa (hash: VtZ3pTO5W1yzA+ps5HMSQhypm611YNtn0vckyLuCUAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:0a:c6:26:86:c3:b6:35:f8:c9:93:27:c2:ab:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Validity
Not Before: Jun 7 06:00:35 2025 GMT
Not After : Jun 8 06:00:35 2025 GMT
Subject: CN=1de4ac2b9b606e0abf6a6b0933c77ce9935ae879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:77:af:e8:4a:ea:38:5d:aa:00:3a:b9:b2:94:
3c:23:f9:46:0e:99:70:5a:b0:82:11:42:a9:dc:69:
2e:4e:70:e6:af:8d:8a:c2:b0:0a:d0:5d:4b:bd:45:
20:b9:f0:14:e8:ae:0f:83:54:cb:df:0f:70:02:c3:
1f:4d:6d:4a:76:37:f9:a5:f3:e3:9c:94:16:07:2d:
67:d8:5b:3c:2a:86:e4:dd:c2:79:22:1e:8e:5d:9e:
06:a7:75:8f:90:e0:bf:86:8d:1c:ee:e1:92:92:89:
61:fb:db:a9:2b:fe:6d:e7:8a:f7:3f:ee:e5:41:ee:
0c:56:e0:91:10:43:91:a2:a4:46:a8:b5:2e:8a:45:
f7:44:90:c6:26:c4:73:f7:f7:d7:4f:65:23:a8:33:
f1:08:d7:3f:52:b6:40:33:3b:e5:0b:86:04:28:1b:
c3:90:6f:c4:e6:87:9f:f0:a5:63:49:e4:be:1c:d4:
4f:d7:64:53:31:50:a6:34:b2:7f:79:ac:2f:14:71:
7b:ad:6d:cd:91:b2:d7:0a:5c:4c:a9:6b:cb:c2:29:
14:56:27:bf:c9:8d:90:27:05:60:74:5b:0c:d5:fd:
7e:df:91:2a:a1:b8:02:c3:c8:8d:3e:a9:f4:0b:cb:
c4:76:6d:dc:d9:25:ea:6a:08:73:35:f9:4a:1e:82:
c3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E4:AC:2B:9B:60:6E:0A:BF:6A:6B:09:33:C7:7C:E9:93:5A:E8:79
X509v3 Authority Key Identifier:
keyid:1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c6:94:de:7d:fb:3b:de:ee:6e:e1:6f:e1:6b:44:2c:ca:86:
b6:5c:66:a8:62:36:bc:81:a8:4f:34:16:6b:41:e5:32:e9:f2:
8b:3e:d2:0f:7e:77:4a:51:9c:48:ef:32:d7:b0:e8:9b:e7:c0:
56:d7:a6:5d:39:29:cc:07:37:81:30:c6:fd:7f:f8:0e:86:76:
bf:a5:7a:49:64:36:a0:fc:a9:8d:f2:d1:09:02:b0:e9:49:91:
5d:af:00:0d:3f:85:b1:11:e2:38:3e:c6:c6:f6:39:4d:d8:33:
b4:de:cc:2e:fa:c4:36:1d:30:d3:48:aa:2a:d0:5b:0f:a9:da:
eb:4c:d1:d0:4d:b4:0f:de:60:8d:fd:8b:c6:ef:cf:59:81:c3:
8c:cb:2e:31:37:86:2c:39:fd:a0:0c:9f:bf:ee:59:04:fc:92:
96:1b:5e:d3:a8:69:97:73:48:3f:7a:bf:fb:e4:89:1e:93:2e:
64:fc:e3:7d:bd:29:6d:e7:97:c1:05:e7:dc:c4:1e:9a:fe:cc:
4c:32:cf:7e:1f:ca:e4:dc:05:c9:d5:52:58:b0:9a:f4:4b:bd:
a0:4d:25:96:d6:11:5c:2a:85:e6:41:9d:3c:ac:31:a8:cc:b5:
36:3f:31:d3:ef:67:c4:cd:cd:91:70:6f:47:df:d6:ba:19:4a:
bc:b7:fa:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+grGJobDtjX4yZMnwqusMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNDdlMmJmMzk3NDcyMWVhZmJmYjhjMzFmYzUyNzMwMzlk
NTA1ZjMwHhcNMjUwNjA3MDYwMDM1WhcNMjUwNjA4MDYwMDM1WjAzMTEwLwYDVQQD
EygxZGU0YWMyYjliNjA2ZTBhYmY2YTZiMDkzM2M3N2NlOTkzNWFlODc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApXev6ErqOF2qADq5spQ8I/lGDplw
WrCCEUKp3GkuTnDmr42KwrAK0F1LvUUgufAU6K4Pg1TL3w9wAsMfTW1Kdjf5pfPj
nJQWBy1n2Fs8Kobk3cJ5Ih6OXZ4Gp3WPkOC/ho0c7uGSkolh+9upK/5t54r3P+7l
Qe4MVuCREEORoqRGqLUuikX3RJDGJsRz9/fXT2UjqDPxCNc/UrZAMzvlC4YEKBvD
kG/E5oef8KVjSeS+HNRP12RTMVCmNLJ/eawvFHF7rW3NkbLXClxMqWvLwikUVie/
yY2QJwVgdFsM1f1+35EqobgCw8iNPqn0C8vEdm3c2SXqaghzNflKHoLDdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB3krCubYG4Kv2prCTPHfOmTWuh5MB8GA1UdIwQY
MBaAFB5H4r85dHIer7+4wx/FJzA51QXzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9hZmExMDYtNmFmOC00MzEwLWI0ZDQt
ZTM2OWQ2NjAyZTZmLzEvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9hZmExMDYtNmFmOC00MzEwLWI0ZDQtZTM2OWQ2NjAyZTZm
LzEvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI8aU3n37
O97ubuFv4WtELMqGtlxmqGI2vIGoTzQWa0HlMunyiz7SD353SlGcSO8y17Dom+fA
VtemXTkpzAc3gTDG/X/4DoZ2v6V6SWQ2oPypjfLRCQKw6UmRXa8ADT+FsRHiOD7G
xvY5TdgztN7MLvrENh0w00iqKtBbD6na60zR0E20D95gjf2Lxu/PWYHDjMsuMTeG
LDn9oAyfv+5ZBPySlhte06hpl3NIP3q/++SJHpMuZPzjfb0pbeeXwQXn3MQemv7M
TDLPfh/K5NwFydVSWLCa9Eu9oE0lltYRXCqF5kGdPKwxqMy1Nj8x0+9nxM3NkXBv
R9/WuhlKvLf6Vw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:58:36 2025 by rpki-client