Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: POWZ76kBsA3mheSUeodT1DTsyQN7tMUUkdEQCWQ5uPE=
Subject key identifier: 05:E3:9E:6C:5D:9E:2D:FA:56:68:93:A2:CA:77:98:7D:55:05:BC:D6
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 01960F7B572466B1D33469771DB1B10E03C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 0428
Signing time: Mon 07 Apr 2025 09:01:03 +0000
Manifest this update: Mon 07 Apr 2025 09:01:03 +0000
Manifest next update: Tue 08 Apr 2025 09:01:03 +0000
Files and hashes: 1: 1-i_f4gNCAnPwT26M-00faBCZ1ec.roa (hash: rf9DtMiWGOZOoz1U+iRouParfUgOp6ltk1lTfbvhGLM=)
2: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: 9K4HLtZ105Cta4Jp29GhnP+d83v9oMiG6fm5VC4nEhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 09:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:7b:57:24:66:b1:d3:34:69:77:1d:b1:b1:0e:03:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Apr 7 09:01:03 2025 GMT
Not After : Apr 8 09:01:03 2025 GMT
Subject: CN=05e39e6c5d9e2dfa566893a2ca77987d5505bcd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:07:fd:6d:1f:52:91:92:79:7e:f3:f6:e5:dc:
bd:e4:3a:0b:ef:a4:2e:71:ac:01:fc:3f:34:b2:35:
e1:2a:46:1d:06:25:3d:28:5e:eb:2b:1f:d5:c3:83:
49:e7:fe:97:f4:f6:55:8b:31:4e:2f:46:d1:9c:81:
c3:9b:28:a4:9d:a6:29:26:19:ab:3a:0e:17:89:5f:
b8:b4:47:ef:4a:4e:a5:9a:1e:ac:95:5f:68:7c:34:
c8:d5:9d:b8:54:a6:5c:ee:48:d5:f9:ab:ba:c0:ce:
6f:13:f7:6a:7f:8a:4d:75:7d:18:06:3f:83:c6:88:
ee:03:49:80:7c:2f:c4:b7:b8:0f:64:46:41:06:e8:
86:20:0a:91:99:51:73:87:47:0a:71:f4:44:90:09:
22:eb:af:d7:63:94:61:16:fd:a7:72:10:77:11:16:
6e:5b:ef:6e:2e:0e:d3:ce:ca:19:ef:1c:a2:00:98:
c8:30:55:f5:29:b6:0a:b5:38:54:5a:7b:78:22:fc:
e2:18:f1:fd:8c:a5:2b:53:c7:d6:da:4f:01:20:69:
23:d3:3c:21:a4:70:03:74:85:8b:31:ed:32:45:fd:
16:a2:b9:86:ba:cd:87:cb:a0:6a:15:49:18:d7:24:
88:5c:a2:47:e0:e8:37:ad:54:73:8b:dd:ba:ba:8a:
c9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E3:9E:6C:5D:9E:2D:FA:56:68:93:A2:CA:77:98:7D:55:05:BC:D6
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:21:c8:18:fb:3f:5c:bd:de:23:7c:8c:63:e7:ab:73:b7:6b:
f0:e2:4c:8a:be:18:ce:1e:41:1b:12:74:61:1b:22:d2:80:eb:
fa:b8:d4:dd:0d:e2:5f:19:2a:1c:82:b9:1c:49:d8:54:a5:bf:
1d:01:14:70:21:5b:0c:5d:3c:b7:2e:5c:61:e2:9a:52:f5:5d:
eb:27:ec:b8:57:3f:c5:d5:d5:e5:f2:fe:71:76:c2:b8:94:8c:
7d:3b:59:63:46:e9:95:e4:10:ec:bd:fb:82:56:a8:8a:ec:fd:
5d:94:e4:93:9a:9f:fa:01:c8:74:f9:ef:dc:b4:da:35:23:92:
a3:60:73:92:7b:a7:20:22:cf:2d:9a:51:da:ef:f0:ce:dd:29:
d9:5f:8a:4c:21:10:bf:b9:9f:e0:cd:be:77:a4:24:0a:e4:63:
12:4f:d5:79:b5:41:e4:ae:50:3f:88:7e:68:5f:76:d8:8c:60:
aa:a6:67:3a:d8:ec:00:fe:b8:61:2b:c6:83:47:0f:8f:90:7b:
d2:67:37:cd:32:8f:b1:15:db:4c:09:9f:b4:17:b5:82:d0:d3:
08:1c:83:90:40:eb:2e:95:9e:a0:9e:c5:a0:a6:5c:f6:0e:8b:
ad:75:fc:49:42:eb:20:23:0f:26:a8:f1:13:b9:25:9d:16:e2:
53:9b:54:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYPe1ckZrHTNGl3HbGxDgPBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZWIzZmFhODM4ODU0OWI1NWNiM2YzYWJkNGM2YzE1MTA2
Y2Y1M2IwHhcNMjUwNDA3MDkwMTAzWhcNMjUwNDA4MDkwMTAzWjAzMTEwLwYDVQQD
EygwNWUzOWU2YzVkOWUyZGZhNTY2ODkzYTJjYTc3OTg3ZDU1MDViY2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgf9bR9SkZJ5fvP25dy95DoL76Qu
cawB/D80sjXhKkYdBiU9KF7rKx/Vw4NJ5/6X9PZVizFOL0bRnIHDmyiknaYpJhmr
Og4XiV+4tEfvSk6lmh6slV9ofDTI1Z24VKZc7kjV+au6wM5vE/dqf4pNdX0YBj+D
xojuA0mAfC/Et7gPZEZBBuiGIAqRmVFzh0cKcfREkAki66/XY5RhFv2nchB3ERZu
W+9uLg7TzsoZ7xyiAJjIMFX1KbYKtThUWnt4IvziGPH9jKUrU8fW2k8BIGkj0zwh
pHADdIWLMe0yRf0WormGus2Hy6BqFUkY1ySIXKJH4Og3rVRzi926uorJVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAXjnmxdni36VmiTosp3mH1VBbzWMB8GA1UdIwQY
MBaAFB3rP6qDiFSbVcs/Or1MbBUQbPU7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS82YzQxMzEtMzY1Yy00YzE0LTllMGIt
NTAyYTk1N2ZkYWY4LzEvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS82YzQxMzEtMzY1Yy00YzE0LTllMGItNTAyYTk1N2ZkYWY4
LzEvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcyHIGPs/
XL3eI3yMY+erc7dr8OJMir4Yzh5BGxJ0YRsi0oDr+rjU3Q3iXxkqHIK5HEnYVKW/
HQEUcCFbDF08ty5cYeKaUvVd6yfsuFc/xdXV5fL+cXbCuJSMfTtZY0bpleQQ7L37
glaoiuz9XZTkk5qf+gHIdPnv3LTaNSOSo2BzknunICLPLZpR2u/wzt0p2V+KTCEQ
v7mf4M2+d6QkCuRjEk/VebVB5K5QP4h+aF922IxgqqZnOtjsAP64YSvGg0cPj5B7
0mc3zTKPsRXbTAmftBe1gtDTCByDkEDrLpWeoJ7FoKZc9g6LrXX8SULrICMPJqjx
E7klnRbiU5tU5A==
-----END CERTIFICATE-----
Generated at Mon Apr 7 14:32:18 2025 by rpki-client