
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
File: Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft (raw, json)
Hash identifier: N3TAljelHS2QZzIfy3kh3DGd6lGBttP4uye/GeDMlVM=
Subject key identifier: A1:B4:92:56:80:7A:C7:7B:49:57:01:29:8F:93:AC:8B:0B:3C:91:1F
Authority key identifier: 1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
Certificate issuer: /CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Certificate serial: 01976170501EB18BCD2698A08651FAF84DE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
Manifest number: 04D7
Signing time: Thu 12 Jun 2025 00:00:39 +0000
Manifest this update: Thu 12 Jun 2025 00:00:39 +0000
Manifest next update: Fri 13 Jun 2025 00:00:39 +0000
Files and hashes: 1: 1-i_f4gNCAnPwT26M-00faBCZ1ec.roa (hash: rf9DtMiWGOZOoz1U+iRouParfUgOp6ltk1lTfbvhGLM=)
2: Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl (hash: 5afqF14wVJuSflHpaA4G8gf5u9zN7ZdV4y3lc34EsMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 21:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:61:70:50:1e:b1:8b:cd:26:98:a0:86:51:fa:f8:4d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1deb3faa8388549b55cb3f3abd4c6c15106cf53b
Validity
Not Before: Jun 12 00:00:39 2025 GMT
Not After : Jun 13 00:00:39 2025 GMT
Subject: CN=a1b49256807ac77b495701298f93ac8b0b3c911f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:65:88:49:a8:b4:bc:64:a7:b1:99:1b:bd:a5:
b8:8c:d5:ca:aa:af:22:46:cb:5f:2b:40:b0:c4:a0:
d1:92:13:0f:2b:42:a7:44:98:ed:71:b0:ce:cb:ca:
fd:c6:95:c3:bf:2d:aa:a8:ae:56:2e:ab:47:da:a5:
b8:58:fe:16:11:25:8b:58:d4:a8:78:9e:36:ed:62:
21:c4:fa:1e:82:37:ac:0c:e4:20:99:78:e6:e2:37:
17:e2:fb:89:02:e9:3f:aa:a4:24:c5:81:fc:6e:7c:
c4:60:d4:37:1a:29:51:f4:f4:1e:9e:0b:e2:9f:89:
fa:a7:29:03:68:ca:f8:52:1f:56:41:11:96:38:85:
39:df:66:ee:e3:52:3d:6b:e5:d3:cb:26:45:91:ba:
c9:12:c8:d4:e2:7a:24:34:a5:ed:cb:ba:7b:3a:28:
68:8f:c4:2b:d6:da:3a:64:a3:3b:a9:69:36:30:4b:
83:ea:ab:b9:48:4a:a3:6f:b4:e1:2a:30:d6:d5:04:
01:49:8d:f7:23:bb:c9:1e:c5:f7:3d:7f:a3:ee:b0:
03:5b:c2:19:09:8d:ef:e5:9f:33:d8:e6:c2:75:f9:
7b:9c:ed:d5:ac:bb:f1:17:49:ac:df:dc:81:83:bf:
6d:4c:a2:2d:f5:58:88:2f:1e:af:59:57:67:ae:21:
ba:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B4:92:56:80:7A:C7:7B:49:57:01:29:8F:93:AC:8B:0B:3C:91:1F
X509v3 Authority Key Identifier:
keyid:1D:EB:3F:AA:83:88:54:9B:55:CB:3F:3A:BD:4C:6C:15:10:6C:F5:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hes_qoOIVJtVyz86vUxsFRBs9Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/6c4131-365c-4c14-9e0b-502a957fdaf8/1/Hes_qoOIVJtVyz86vUxsFRBs9Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:4d:e3:1d:c8:fb:0f:a9:08:c3:dc:d0:e3:f0:1c:41:1f:74:
c9:62:51:5b:68:16:f2:71:97:eb:31:0d:17:16:8f:25:db:35:
0f:e4:85:8c:ac:3b:a6:05:b2:53:5c:47:2d:6e:66:a6:f1:ff:
62:8a:f8:6b:17:70:89:ed:5f:aa:14:2c:8e:40:74:a6:a8:b7:
06:0f:a1:66:95:a0:30:33:b6:1b:6a:52:45:4a:db:da:40:f5:
04:a7:06:7b:c6:b2:16:dd:cf:21:48:ef:b8:d1:31:73:ad:49:
10:0b:79:94:2c:69:73:9b:81:37:bc:e4:5c:da:5f:bb:35:dc:
44:60:f7:39:a4:8a:6d:f7:83:d9:ff:0f:7b:08:fc:ea:ec:d5:
ea:aa:cc:b3:5f:29:8b:e7:08:24:bf:20:ee:02:3d:3c:ee:a8:
bf:5c:78:19:45:68:b3:c3:79:24:2a:3b:88:b5:a3:f8:ee:ac:
28:58:c5:23:43:5f:00:dd:ea:83:1b:01:a3:38:8e:eb:3d:40:
5f:91:b4:fb:79:6b:f7:b9:ab:b9:af:78:36:cf:d2:3b:29:aa:
c0:af:b2:e9:92:ed:40:8d:c3:cf:cb:60:47:68:1d:bc:31:35:
42:c8:a1:93:38:59:63:c7:b5:a0:df:de:5b:96:ec:6d:01:65:
c4:a5:06:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdhcFAesYvNJpighlH6+E3hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZWIzZmFhODM4ODU0OWI1NWNiM2YzYWJkNGM2YzE1MTA2
Y2Y1M2IwHhcNMjUwNjEyMDAwMDM5WhcNMjUwNjEzMDAwMDM5WjAzMTEwLwYDVQQD
EyhhMWI0OTI1NjgwN2FjNzdiNDk1NzAxMjk4ZjkzYWM4YjBiM2M5MTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGWISai0vGSnsZkbvaW4jNXKqq8i
RstfK0CwxKDRkhMPK0KnRJjtcbDOy8r9xpXDvy2qqK5WLqtH2qW4WP4WESWLWNSo
eJ427WIhxPoegjesDOQgmXjm4jcX4vuJAuk/qqQkxYH8bnzEYNQ3GilR9PQengvi
n4n6pykDaMr4Uh9WQRGWOIU532bu41I9a+XTyyZFkbrJEsjU4nokNKXty7p7Oiho
j8Qr1to6ZKM7qWk2MEuD6qu5SEqjb7ThKjDW1QQBSY33I7vJHsX3PX+j7rADW8IZ
CY3v5Z8z2ObCdfl7nO3VrLvxF0ms39yBg79tTKIt9ViILx6vWVdnriG6YwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKG0klaAesd7SVcBKY+TrIsLPJEfMB8GA1UdIwQY
MBaAFB3rP6qDiFSbVcs/Or1MbBUQbPU7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS82YzQxMzEtMzY1Yy00YzE0LTllMGIt
NTAyYTk1N2ZkYWY4LzEvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS82YzQxMzEtMzY1Yy00YzE0LTllMGItNTAyYTk1N2ZkYWY4
LzEvSGVzX3FvT0lWSnRWeXo4NnZVeHNGUkJzOVRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbE3jHcj7
D6kIw9zQ4/AcQR90yWJRW2gW8nGX6zENFxaPJds1D+SFjKw7pgWyU1xHLW5mpvH/
Yor4axdwie1fqhQsjkB0pqi3Bg+hZpWgMDO2G2pSRUrb2kD1BKcGe8ayFt3PIUjv
uNExc61JEAt5lCxpc5uBN7zkXNpfuzXcRGD3OaSKbfeD2f8Pewj86uzV6qrMs18p
i+cIJL8g7gI9PO6ov1x4GUVos8N5JCo7iLWj+O6sKFjFI0NfAN3qgxsBoziO6z1A
X5G0+3lr97mrua94Ns/SOymqwK+y6ZLtQI3Dz8tgR2gdvDE1QsihkzhZY8e1oN/e
W5bsbQFlxKUG0w==
-----END CERTIFICATE-----
Generated at Thu Jun 12 04:18:02 2025 by rpki-client