Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
File: HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft (raw, json)
Hash identifier: IqlGFZMi5YkUx+EV9Y9XPBSCUvceam3wf7MWeuqPd+A=
Subject key identifier: 06:C2:AB:FD:2B:E2:7F:85:27:73:09:B1:03:7D:42:DF:A6:77:91:9E
Authority key identifier: 1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
Certificate issuer: /CN=1d8933c193f04e32441e37162dc4defa9744b84f
Certificate serial: 0197556BF7234E3C7D2B675E8E372509CC70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
Manifest number: 1347
Signing time: Mon 09 Jun 2025 16:00:28 +0000
Manifest this update: Mon 09 Jun 2025 16:00:28 +0000
Manifest next update: Tue 10 Jun 2025 16:00:28 +0000
Files and hashes: 1: HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl (hash: LFa2yBEO3T5xvAVSLM1O8qtt3PThayyAVpw6yjjbd9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:6b:f7:23:4e:3c:7d:2b:67:5e:8e:37:25:09:cc:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8933c193f04e32441e37162dc4defa9744b84f
Validity
Not Before: Jun 9 16:00:28 2025 GMT
Not After : Jun 10 16:00:28 2025 GMT
Subject: CN=06c2abfd2be27f85277309b1037d42dfa677919e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:fd:e4:cb:8c:98:9c:82:11:64:8f:27:32:
ee:dc:53:5b:88:19:ad:93:0d:c2:84:e5:f8:8c:39:
c5:e0:34:e6:e0:54:a0:79:75:4a:73:ee:ce:aa:5a:
4a:a4:db:77:e6:48:f8:6d:f5:46:8d:51:ea:5d:01:
35:c1:47:9c:be:54:65:eb:a1:a4:ef:f2:af:39:28:
7a:b2:f0:b6:9e:08:60:5b:31:b9:30:78:0c:90:16:
dd:17:9a:00:59:41:a2:32:aa:9c:db:f2:c7:db:94:
a8:5c:38:76:8b:c7:68:4f:3e:b6:34:0b:0a:24:0a:
79:34:46:92:0d:80:1e:fd:80:df:ca:86:ef:55:40:
38:2d:af:fe:c6:65:ae:6b:4c:60:28:c5:5c:e3:2f:
8f:7a:bd:2c:0f:61:25:cf:a2:aa:17:51:ad:ea:ce:
ea:24:9e:e6:b7:00:2a:c9:18:0c:a9:af:cb:dd:ba:
1a:fe:19:d7:09:87:57:b8:52:e6:a1:f2:41:13:87:
51:97:71:93:bf:26:a4:6b:f7:d1:df:f2:23:56:a5:
5c:02:0e:6f:94:61:af:5a:7f:b2:3e:74:32:cd:d6:
48:d1:8f:74:4c:ea:1e:15:44:fc:63:34:2d:b9:28:
6e:56:4a:6f:c8:4f:3b:ea:b4:b6:b7:b5:77:4a:85:
db:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C2:AB:FD:2B:E2:7F:85:27:73:09:B1:03:7D:42:DF:A6:77:91:9E
X509v3 Authority Key Identifier:
keyid:1D:89:33:C1:93:F0:4E:32:44:1E:37:16:2D:C4:DE:FA:97:44:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYkzwZPwTjJEHjcWLcTe-pdEuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5130e5-9312-48de-ae2a-342d1b381d87/1/HYkzwZPwTjJEHjcWLcTe-pdEuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:d8:19:47:75:bc:04:d1:23:cc:83:5c:30:26:08:7f:6c:e6:
7d:c1:5d:3b:7f:ed:f2:a9:ce:a6:80:0f:aa:06:35:bf:d8:a3:
74:2f:57:8b:d8:2a:c1:60:cb:4b:ac:df:dc:3d:17:ed:2a:65:
ac:91:1b:75:3f:96:51:39:71:9d:2c:29:c0:1f:62:61:39:17:
46:df:c6:05:69:b9:67:70:29:7d:1f:db:5a:69:54:a1:db:8d:
6a:be:10:8b:07:8d:d7:ce:37:2d:1f:8d:17:f3:6e:dc:32:10:
ed:ff:81:3d:e1:67:f5:14:51:fe:f7:23:93:b3:7d:a6:5c:07:
5a:52:40:90:30:ae:24:7f:57:65:e2:14:ac:e9:a7:04:96:bd:
60:22:88:2b:b9:e5:ac:c9:77:a3:b8:ce:28:cd:d8:29:d4:1d:
06:36:57:b3:9f:f1:a8:b7:95:61:07:63:a5:68:f4:e3:e5:93:
c8:30:54:c0:e6:57:58:06:ae:ed:1e:74:34:6f:58:11:56:40:
10:a4:4a:1c:94:fa:19:73:31:c6:eb:58:3f:75:26:1a:db:29:
5a:18:b4:02:27:c8:be:f8:8b:69:f8:8f:62:d5:92:26:4a:d4:
ad:07:81:be:37:fa:f4:fb:f7:0f:99:b4:dc:8b:93:ce:5d:0e:
c8:22:03:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdVa/cjTjx9K2dejjclCcxwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkODkzM2MxOTNmMDRlMzI0NDFlMzcxNjJkYzRkZWZhOTc0
NGI4NGYwHhcNMjUwNjA5MTYwMDI4WhcNMjUwNjEwMTYwMDI4WjAzMTEwLwYDVQQD
EygwNmMyYWJmZDJiZTI3Zjg1Mjc3MzA5YjEwMzdkNDJkZmE2Nzc5MTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvm795MuMmJyCEWSPJzLu3FNbiBmt
kw3ChOX4jDnF4DTm4FSgeXVKc+7OqlpKpNt35kj4bfVGjVHqXQE1wUecvlRl66Gk
7/KvOSh6svC2nghgWzG5MHgMkBbdF5oAWUGiMqqc2/LH25SoXDh2i8doTz62NAsK
JAp5NEaSDYAe/YDfyobvVUA4La/+xmWua0xgKMVc4y+Per0sD2Elz6KqF1Gt6s7q
JJ7mtwAqyRgMqa/L3boa/hnXCYdXuFLmofJBE4dRl3GTvyaka/fR3/IjVqVcAg5v
lGGvWn+yPnQyzdZI0Y90TOoeFUT8YzQtuShuVkpvyE876rS2t7V3SoXbwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAbCq/0r4n+FJ3MJsQN9Qt+md5GeMB8GA1UdIwQY
MBaAFB2JM8GT8E4yRB43Fi3E3vqXRLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEt
MzQyZDFiMzgxZDg3LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC81MTMwZTUtOTMxMi00OGRlLWFlMmEtMzQyZDFiMzgxZDg3
LzEvSFlrendaUHdUakpFSGpjV0xjVGUtcGRFdUU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALtgZR3W8
BNEjzINcMCYIf2zmfcFdO3/t8qnOpoAPqgY1v9ijdC9Xi9gqwWDLS6zf3D0X7Spl
rJEbdT+WUTlxnSwpwB9iYTkXRt/GBWm5Z3ApfR/bWmlUoduNar4QiweN1843LR+N
F/Nu3DIQ7f+BPeFn9RRR/vcjk7N9plwHWlJAkDCuJH9XZeIUrOmnBJa9YCKIK7nl
rMl3o7jOKM3YKdQdBjZXs5/xqLeVYQdjpWj04+WTyDBUwOZXWAau7R50NG9YEVZA
EKRKHJT6GXMxxutYP3UmGtspWhi0AifIvviLafiPYtWSJkrUrQeBvjf69Pv3D5m0
3IuTzl0OyCIDzQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 20:00:47 2025 by rpki-client