Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json)
Hash identifier: Gbvab2HaUa6rP4TcH+sEIPH5ZFZXzrHEWosWpnYH1kE=
Subject key identifier: 00:F6:7C:B7:C1:38:A7:B5:03:11:E3:78:0F:11:06:3C:1C:94:02:7C
Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Certificate serial: 01974C695E48EAD1C57E423211427875C1AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
Manifest number: 0449
Signing time: Sat 07 Jun 2025 22:01:03 +0000
Manifest this update: Sat 07 Jun 2025 22:01:03 +0000
Manifest next update: Sun 08 Jun 2025 22:01:03 +0000
Files and hashes: 1: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: kbByackS7V/TRdeRDmggbPlcX6yWPpHNbnaBp2XiRZI=)
2: iTyIEEO2sljhZiJnAx_Ko0duy2M.roa (hash: T+291sx+aTIxs6928rSAPXeV/0gq52PnDMgh9u7+DTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:5e:48:ea:d1:c5:7e:42:32:11:42:78:75:c1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b
Validity
Not Before: Jun 7 22:01:03 2025 GMT
Not After : Jun 8 22:01:03 2025 GMT
Subject: CN=00f67cb7c138a7b50311e3780f11063c1c94027c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cd:87:35:6e:5b:bb:f8:94:4d:4d:f0:ba:b5:
d9:41:ef:e0:b0:15:04:76:71:ba:b5:62:cd:bc:c9:
6d:c0:e4:03:2e:6d:e1:df:02:80:c2:af:be:76:87:
dc:ed:84:08:81:3a:05:ec:b5:58:0d:38:a2:ac:b1:
ce:08:e3:2d:bf:ec:74:be:d5:4f:cb:24:61:86:42:
78:92:2e:4d:f6:56:2b:54:45:7b:64:b2:0e:a9:e2:
8b:74:7f:bd:a9:99:19:0b:ad:81:0a:6c:24:53:50:
2e:b4:03:a8:6e:13:a6:3e:86:51:81:5e:21:42:0c:
e3:de:65:23:5e:83:15:b0:82:50:96:86:0a:ef:27:
4b:bd:6c:2a:b8:c3:7d:e3:60:0e:c8:bd:4c:da:6f:
f8:3e:b0:72:da:6f:a0:09:65:97:87:70:53:a2:32:
1b:43:9c:1e:47:a7:ce:87:b8:03:c1:e9:52:3e:40:
f8:6c:8f:4c:ea:ad:aa:02:34:9a:ee:5f:ce:97:2e:
f2:5b:19:05:e6:f9:a9:83:4d:91:91:e0:65:57:83:
63:30:1e:67:03:42:1e:ea:77:37:53:39:26:a3:24:
71:f6:af:2c:12:0f:d5:d8:df:b5:6d:1a:1d:b2:53:
11:f7:4d:7d:59:fd:b7:8a:2c:a6:ef:d5:2b:5c:45:
1f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F6:7C:B7:C1:38:A7:B5:03:11:E3:78:0F:11:06:3C:1C:94:02:7C
X509v3 Authority Key Identifier:
keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:0a:b7:ab:d1:47:d9:d9:8c:a9:cb:7f:f1:4a:d0:26:1c:0d:
fb:02:9c:1c:af:90:d4:55:89:46:51:fd:b2:7c:a9:1d:71:fc:
c7:86:37:98:12:26:7e:77:06:52:a9:ad:04:c6:cc:f0:0d:9b:
a4:ca:c0:e7:79:a8:57:92:02:af:df:a6:76:a4:5e:54:05:40:
55:59:7c:be:97:53:ba:81:6c:84:69:8d:09:db:60:94:12:07:
11:e2:c8:02:e0:e0:24:ac:6f:70:54:15:40:f9:0b:f5:67:4b:
d8:2b:db:0f:db:58:b3:ac:c5:18:18:9c:b7:ec:3f:a9:c2:cd:
60:ee:bf:a9:7c:dd:d7:4d:b4:ff:30:ea:c2:8c:09:42:7e:a0:
63:58:59:fb:6c:46:b6:1c:1f:8a:6e:45:f3:22:9a:e5:ae:95:
25:20:7f:ae:d6:87:05:81:12:de:7e:ec:3c:a7:67:c3:da:c2:
e1:53:0f:76:99:7e:3a:17:69:30:6c:c4:a7:b5:8a:2f:07:45:
f1:a7:d1:74:fe:90:51:8b:3d:ef:bc:b3:a6:43:b3:b3:17:e3:
13:68:02:e0:b3:70:7b:7c:ea:d8:1c:85:02:9a:63:15:1e:ac:
2b:d2:be:e7:fa:37:e1:be:77:b9:d7:e0:86:eb:d0:ef:b0:05:
04:45:22:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMaV5I6tHFfkIyEUJ4dcGuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjhmNDAwZDgzZDQ5YWFhNmU5MzIwY2EyY2JmYTkzZGE1
YmU3OWIwHhcNMjUwNjA3MjIwMTAzWhcNMjUwNjA4MjIwMTAzWjAzMTEwLwYDVQQD
EygwMGY2N2NiN2MxMzhhN2I1MDMxMWUzNzgwZjExMDYzYzFjOTQwMjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvs2HNW5bu/iUTU3wurXZQe/gsBUE
dnG6tWLNvMltwOQDLm3h3wKAwq++dofc7YQIgToF7LVYDTiirLHOCOMtv+x0vtVP
yyRhhkJ4ki5N9lYrVEV7ZLIOqeKLdH+9qZkZC62BCmwkU1AutAOobhOmPoZRgV4h
Qgzj3mUjXoMVsIJQloYK7ydLvWwquMN942AOyL1M2m/4PrBy2m+gCWWXh3BTojIb
Q5weR6fOh7gDwelSPkD4bI9M6q2qAjSa7l/Oly7yWxkF5vmpg02RkeBlV4NjMB5n
A0Ie6nc3UzkmoyRx9q8sEg/V2N+1bRodslMR9019Wf23iiym79UrXEUfGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAD2fLfBOKe1AxHjeA8RBjwclAJ8MB8GA1UdIwQY
MBaAFIco9ADYPUmqpukyDKLL+pPaW+ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMt
YTI1ZTE0ZDUzOWEyLzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMtYTI1ZTE0ZDUzOWEy
LzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGwq3q9FH
2dmMqct/8UrQJhwN+wKcHK+Q1FWJRlH9snypHXH8x4Y3mBImfncGUqmtBMbM8A2b
pMrA53moV5ICr9+mdqReVAVAVVl8vpdTuoFshGmNCdtglBIHEeLIAuDgJKxvcFQV
QPkL9WdL2CvbD9tYs6zFGBict+w/qcLNYO6/qXzd1020/zDqwowJQn6gY1hZ+2xG
thwfim5F8yKa5a6VJSB/rtaHBYES3n7sPKdnw9rC4VMPdpl+OhdpMGzEp7WKLwdF
8afRdP6QUYs977yzpkOzsxfjE2gC4LNwe3zq2ByFAppjFR6sK9K+5/o34b53udfg
huvQ77AFBEUiig==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:43:27 2025 by rpki-client