
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
File: Hrq0DWCBM83fdsO1pvgV34H7x90.mft (raw, json)
Hash identifier: tg3gxwcf2zeiobeU1GKX9IfG8AJ1DYICyTVYm5u6s4M=
Subject key identifier: EE:56:29:89:2B:71:50:28:0C:F3:78:1E:88:25:2E:F1:8F:75:67:77
Authority key identifier: 1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
Certificate issuer: /CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Certificate serial: 019758A3DBB25B9AA1C2266C9BD0CA3433CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
Manifest number: CF
Signing time: Tue 10 Jun 2025 07:00:22 +0000
Manifest this update: Tue 10 Jun 2025 07:00:22 +0000
Manifest next update: Wed 11 Jun 2025 07:00:22 +0000
Files and hashes: 1: Hrq0DWCBM83fdsO1pvgV34H7x90.crl (hash: 2SV6CMQ9OUDU0FZ1/db3e8NPp+YfpIsk8lBQZtRzeso=)
2: dOirMHERf2S7XaVhDBj8pRwQyLU.roa (hash: RUHnPEXdDgz2x6FeuZ8yiEPV6rqAxw/OAxkwBlLK73U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:a3:db:b2:5b:9a:a1:c2:26:6c:9b:d0:ca:34:33:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ebab40d608133cddf76c3b5a6f815df81fbc7dd
Validity
Not Before: Jun 10 07:00:22 2025 GMT
Not After : Jun 11 07:00:22 2025 GMT
Subject: CN=ee5629892b7150280cf3781e88252ef18f756777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d4:f7:7c:50:c9:e1:0b:14:6e:e0:a2:04:56:
1f:e4:82:23:18:77:bd:39:69:ab:b3:83:19:b0:df:
2d:63:88:93:1e:6f:1e:30:a4:17:77:7d:6f:bf:8f:
24:61:07:06:64:57:47:63:4e:c1:b6:cf:24:f5:b9:
0a:d4:33:a8:db:86:fb:e6:7c:d1:c0:a8:ba:57:a4:
e6:21:10:0e:e0:51:06:ad:88:93:a2:a1:df:9b:25:
e8:79:7b:a9:21:00:93:95:6e:13:6b:aa:ca:57:ef:
f2:f6:d0:d3:f1:78:25:97:6c:22:bd:20:9c:95:dc:
5a:2f:b1:f8:18:b1:d7:93:a0:c5:51:f1:8c:ea:e2:
81:50:77:ea:17:0f:1c:ff:56:d9:99:ef:ba:b5:61:
d0:4c:56:e5:cc:8a:ad:55:2a:5d:cb:64:3f:f7:10:
f8:1e:b8:43:f8:08:ec:65:58:3d:66:27:85:21:3e:
af:cf:0c:63:43:a6:dd:9e:f9:de:64:01:43:04:81:
ab:d0:50:a5:7b:34:02:bd:92:c1:e8:72:bf:c1:ff:
3b:87:0b:0c:5f:55:4d:bc:0e:67:16:30:de:55:2a:
5f:d7:8f:22:e5:6e:1c:0d:8c:67:79:d6:11:86:69:
c1:12:3a:b0:9f:b9:5f:60:82:3c:81:69:11:f6:21:
49:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:56:29:89:2B:71:50:28:0C:F3:78:1E:88:25:2E:F1:8F:75:67:77
X509v3 Authority Key Identifier:
keyid:1E:BA:B4:0D:60:81:33:CD:DF:76:C3:B5:A6:F8:15:DF:81:FB:C7:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hrq0DWCBM83fdsO1pvgV34H7x90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/2b26af-e754-4080-9ec9-59f0f10b1d29/1/Hrq0DWCBM83fdsO1pvgV34H7x90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:64:c6:7c:0c:d8:82:bd:bb:a6:6a:e4:71:44:e9:f5:bf:6d:
ba:02:4f:24:cb:86:74:3e:e5:ed:3d:c2:7e:fe:cc:21:7e:8f:
30:f3:ed:11:b7:79:75:9b:5f:41:db:d9:ec:17:38:f7:94:ff:
48:9d:5e:c0:e4:10:6c:81:bc:e9:11:31:ba:88:93:6b:5a:03:
3c:24:62:f0:25:9b:0b:60:e4:9d:7b:7d:ca:d7:3c:9d:57:d3:
0e:2c:b2:d5:f6:8e:00:64:c1:c9:4e:d6:9e:90:c2:7e:66:59:
24:27:cd:d6:5f:1b:8d:47:a5:77:73:58:00:ae:7a:dd:63:f6:
98:ce:7a:b2:91:6b:90:38:d2:6d:22:9c:57:18:21:5f:26:83:
2a:69:02:12:93:90:d1:3d:b8:28:6e:59:94:a9:80:d4:10:d1:
d9:26:40:67:7f:4d:4d:a2:ed:15:32:ae:1a:26:62:a8:70:06:
87:78:6e:9e:4b:88:11:ac:4e:80:a9:a5:6d:d8:2c:2c:34:9d:
5d:61:3f:fc:ec:ff:76:df:f1:85:84:10:97:ce:92:7c:08:c3:
dc:de:9b:38:2c:69:9e:52:43:18:c1:31:6f:28:61:dd:43:78:
f2:d3:6d:97:d5:0f:6a:9c:b6:8d:14:bc:be:1a:f2:ed:49:0d:
9d:56:de:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdYo9uyW5qhwiZsm9DKNDPPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYmFiNDBkNjA4MTMzY2RkZjc2YzNiNWE2ZjgxNWRmODFm
YmM3ZGQwHhcNMjUwNjEwMDcwMDIyWhcNMjUwNjExMDcwMDIyWjAzMTEwLwYDVQQD
EyhlZTU2Mjk4OTJiNzE1MDI4MGNmMzc4MWU4ODI1MmVmMThmNzU2Nzc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzdT3fFDJ4QsUbuCiBFYf5IIjGHe9
OWmrs4MZsN8tY4iTHm8eMKQXd31vv48kYQcGZFdHY07Bts8k9bkK1DOo24b75nzR
wKi6V6TmIRAO4FEGrYiToqHfmyXoeXupIQCTlW4Ta6rKV+/y9tDT8Xgll2wivSCc
ldxaL7H4GLHXk6DFUfGM6uKBUHfqFw8c/1bZme+6tWHQTFblzIqtVSpdy2Q/9xD4
HrhD+AjsZVg9ZieFIT6vzwxjQ6bdnvneZAFDBIGr0FClezQCvZLB6HK/wf87hwsM
X1VNvA5nFjDeVSpf148i5W4cDYxnedYRhmnBEjqwn7lfYII8gWkR9iFJswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO5WKYkrcVAoDPN4HoglLvGPdWd3MB8GA1UdIwQY
MBaAFB66tA1ggTPN33bDtab4Fd+B+8fdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHJxMERXQ0JNODNmZHNPMXB2Z1YzNEg3eDkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yYjI2YWYtZTc1NC00MDgwLTllYzkt
NTlmMGYxMGIxZDI5LzEvSHJxMERXQ0JNODNmZHNPMXB2Z1YzNEg3eDkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS8yYjI2YWYtZTc1NC00MDgwLTllYzktNTlmMGYxMGIxZDI5
LzEvSHJxMERXQ0JNODNmZHNPMXB2Z1YzNEg3eDkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG2TGfAzY
gr27pmrkcUTp9b9tugJPJMuGdD7l7T3Cfv7MIX6PMPPtEbd5dZtfQdvZ7Bc495T/
SJ1ewOQQbIG86RExuoiTa1oDPCRi8CWbC2DknXt9ytc8nVfTDiyy1faOAGTByU7W
npDCfmZZJCfN1l8bjUeld3NYAK563WP2mM56spFrkDjSbSKcVxghXyaDKmkCEpOQ
0T24KG5ZlKmA1BDR2SZAZ39NTaLtFTKuGiZiqHAGh3hunkuIEaxOgKmlbdgsLDSd
XWE//Oz/dt/xhYQQl86SfAjD3N6bOCxpnlJDGMExbyhh3UN48tNtl9UPapy2jRS8
vhry7UkNnVbePg==
-----END CERTIFICATE-----
Generated at Tue Jun 10 13:02:17 2025 by rpki-client