Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: GqJGYyIcOl94LRQAlzdMPPq7wjMcB9tnSxmpjDU54d4=
Subject key identifier: 04:F5:C1:8C:53:D1:6C:E0:A7:C5:8F:F8:8C:DA:4C:D1:7F:E1:43:B9
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 01974A7A9FD675E2883B2EFAC445A26A138D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 10E8
Signing time: Sat 07 Jun 2025 13:00:39 +0000
Manifest this update: Sat 07 Jun 2025 13:00:39 +0000
Manifest next update: Sun 08 Jun 2025 13:00:39 +0000
Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: lhMrn1t/GrnnJg+4iu2G4loL3kVjUlOT5xG21hHEQUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:9f:d6:75:e2:88:3b:2e:fa:c4:45:a2:6a:13:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Jun 7 13:00:39 2025 GMT
Not After : Jun 8 13:00:39 2025 GMT
Subject: CN=04f5c18c53d16ce0a7c58ff88cda4cd17fe143b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ba:da:39:7e:e1:3e:87:12:0f:68:1f:22:da:
c1:7b:7d:40:5e:a3:71:3c:6c:aa:bc:fb:44:85:68:
97:e6:7f:8a:6e:a9:86:2e:f2:8a:69:97:d3:e1:5b:
e5:3b:36:b6:5a:12:7d:63:53:c2:95:20:44:55:00:
b8:2c:bf:6e:63:89:f2:01:30:95:25:b8:53:d7:0e:
c9:57:45:41:50:63:6e:d7:86:51:1c:c0:d1:73:b0:
6e:1c:74:24:94:16:30:d1:08:ba:9b:f1:9e:44:11:
13:8f:f2:e1:9f:10:f3:60:1f:a3:71:ce:7b:a7:52:
3d:36:bf:41:56:ab:7a:2a:8d:5d:f4:20:72:b7:43:
72:9d:31:0e:f1:0a:b0:bc:c1:18:63:48:af:20:18:
59:92:ca:73:b4:97:d4:00:90:5c:ff:c5:90:75:44:
14:93:f4:e2:7e:d6:e7:67:20:7d:52:f8:a3:84:0a:
26:6c:cf:33:ad:f1:56:92:a3:1d:f4:fc:56:48:65:
54:80:2c:dc:12:79:62:46:b0:35:c7:44:c7:3f:21:
fb:c1:65:e4:ab:4f:eb:d8:69:7c:60:62:eb:02:1a:
f1:83:3e:16:95:af:58:72:8c:50:d2:b8:91:93:37:
b5:19:4c:e4:3c:88:f0:e8:39:99:ed:c1:3b:9d:15:
fd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F5:C1:8C:53:D1:6C:E0:A7:C5:8F:F8:8C:DA:4C:D1:7F:E1:43:B9
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ee:e1:82:d4:af:b8:4c:85:82:35:56:9f:c3:22:20:d9:cf:
dd:ad:b7:78:71:38:75:fe:10:7b:66:33:05:75:f0:f1:55:17:
bf:ff:a6:8d:23:b8:78:7f:c3:68:da:75:6f:d8:f2:48:71:d4:
83:86:d1:64:c1:e2:d4:17:b2:84:98:75:eb:fc:2b:a8:9c:75:
ff:fd:47:1b:1f:7e:03:e6:a4:0e:68:c0:b3:e0:59:71:9e:aa:
ea:34:87:76:10:68:7f:61:b7:06:63:08:5f:47:ff:06:cd:09:
a2:c9:fc:72:2b:5f:03:bf:51:50:27:e7:69:ce:ed:90:0a:16:
b0:d7:ba:86:d8:2f:81:23:34:09:d4:23:34:22:73:79:89:1e:
ae:9e:c1:91:8d:f1:00:18:dc:93:2b:d2:78:43:49:2b:91:b2:
d0:57:c5:e2:db:83:bf:ce:65:d5:98:c2:2f:e6:30:f4:4f:5f:
4b:e5:6a:0d:29:a1:c1:8d:4c:d6:49:53:66:1c:9f:f8:a3:37:
3a:e5:f1:9e:c0:4f:be:00:2a:ce:b3:88:31:d2:0b:89:49:ad:
38:a3:ba:1e:13:45:e5:af:85:cf:1c:72:6f:ed:d4:72:8f:44:
e9:78:dd:f2:3b:29:17:e0:26:0d:76:6c:3f:64:12:ce:14:91:
91:d4:f8:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKep/WdeKIOy76xEWiahONMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NmNhZjFmMmYwMjkxNDAxMTA1ZWY2OGIyNTk1N2RjNTU1
NTEwZDIwHhcNMjUwNjA3MTMwMDM5WhcNMjUwNjA4MTMwMDM5WjAzMTEwLwYDVQQD
EygwNGY1YzE4YzUzZDE2Y2UwYTdjNThmZjg4Y2RhNGNkMTdmZTE0M2I5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbraOX7hPocSD2gfItrBe31AXqNx
PGyqvPtEhWiX5n+KbqmGLvKKaZfT4VvlOza2WhJ9Y1PClSBEVQC4LL9uY4nyATCV
JbhT1w7JV0VBUGNu14ZRHMDRc7BuHHQklBYw0Qi6m/GeRBETj/LhnxDzYB+jcc57
p1I9Nr9BVqt6Ko1d9CByt0NynTEO8QqwvMEYY0ivIBhZkspztJfUAJBc/8WQdUQU
k/TiftbnZyB9UvijhAombM8zrfFWkqMd9PxWSGVUgCzcEnliRrA1x0THPyH7wWXk
q0/r2Gl8YGLrAhrxgz4Wla9YcoxQ0riRkze1GUzkPIjw6DmZ7cE7nRX9kwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAT1wYxT0Wzgp8WP+IzaTNF/4UO5MB8GA1UdIwQY
MBaAFIVsrx8vApFAEQXvaLJZV9xVVRDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9kMmM3YzctMmJjYy00OTFlLTk2YTct
YjBkMGJjZDkwZmFlLzEvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9kMmM3YzctMmJjYy00OTFlLTk2YTctYjBkMGJjZDkwZmFl
LzEvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASO7hgtSv
uEyFgjVWn8MiINnP3a23eHE4df4Qe2YzBXXw8VUXv/+mjSO4eH/DaNp1b9jySHHU
g4bRZMHi1BeyhJh16/wrqJx1//1HGx9+A+akDmjAs+BZcZ6q6jSHdhBof2G3BmMI
X0f/Bs0Josn8citfA79RUCfnac7tkAoWsNe6htgvgSM0CdQjNCJzeYkerp7BkY3x
ABjckyvSeENJK5Gy0FfF4tuDv85l1ZjCL+Yw9E9fS+VqDSmhwY1M1klTZhyf+KM3
OuXxnsBPvgAqzrOIMdILiUmtOKO6HhNF5a+Fzxxyb+3Uco9E6Xjd8jspF+AmDXZs
P2QSzhSRkdT4lA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 18:43:26 2025 by rpki-client