Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
File: hqSVrmh0HnnVjjiGviqoeMSME7Y.mft (raw, json)
Hash identifier: xp5PmECUopI0/VH5Gt8hlsV38OvtH4b+KjmApujwHpo=
Subject key identifier: FA:C6:C0:38:AC:BC:E2:B2:CB:02:3E:C6:12:99:07:DF:9A:38:15:30
Authority key identifier: 86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
Certificate issuer: /CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Certificate serial: 01974967E41A53ABCEDFACB8987FB4FDB9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
Manifest number: 1579
Signing time: Sat 07 Jun 2025 08:00:34 +0000
Manifest this update: Sat 07 Jun 2025 08:00:34 +0000
Manifest next update: Sun 08 Jun 2025 08:00:34 +0000
Files and hashes: 1: hqSVrmh0HnnVjjiGviqoeMSME7Y.crl (hash: 4at+Xgmaw8lWZ9QPtlRBEFSfYM2T0kaCnz10U1OAzYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:e4:1a:53:ab:ce:df:ac:b8:98:7f:b4:fd:b9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a495ae68741e79d58e3886be2aa878c48c13b6
Validity
Not Before: Jun 7 08:00:34 2025 GMT
Not After : Jun 8 08:00:34 2025 GMT
Subject: CN=fac6c038acbce2b2cb023ec6129907df9a381530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ad:04:7c:01:4e:a5:f0:c1:48:be:c8:a5:b6:
38:ea:79:99:3d:71:54:bf:81:b3:2c:70:b3:04:94:
4b:bf:ef:f0:be:38:4c:d8:2e:68:2e:b9:62:28:f9:
98:7d:08:6b:c4:37:85:7e:84:6d:09:96:9d:cb:b9:
43:1d:1c:a3:34:59:b8:f4:cd:23:06:cb:2f:5d:f6:
28:3e:06:0c:d0:66:dd:8f:b0:cf:11:00:5c:2f:b2:
2e:6d:f9:a1:ce:09:7b:6c:2c:ee:d2:95:cd:9c:de:
2f:b2:c4:26:a7:0b:2c:dc:98:4d:79:7e:5d:40:77:
48:91:a7:e7:f7:83:b0:4f:87:52:d6:bc:a9:72:95:
7e:fc:08:bc:ac:2d:c6:59:70:38:f2:6a:53:e0:e8:
8b:22:aa:a8:a5:49:fd:5a:6d:be:37:e4:2c:db:a9:
c3:f0:44:c9:a8:0a:64:14:0f:0a:c6:7e:30:28:ad:
15:d5:38:21:9a:9b:aa:df:ac:87:59:1f:d8:b1:d5:
69:06:ac:96:54:5f:ca:a2:0f:fa:15:3a:d8:02:04:
0e:01:41:3d:65:fd:94:0f:8c:14:ad:ff:bf:75:cf:
52:5d:0b:3e:7c:14:fb:43:23:b4:ec:cc:9a:ab:16:
4f:b8:6d:dc:a5:c9:4f:9c:51:5b:f6:a1:75:34:b9:
fa:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C6:C0:38:AC:BC:E2:B2:CB:02:3E:C6:12:99:07:DF:9A:38:15:30
X509v3 Authority Key Identifier:
keyid:86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:ac:a7:e8:42:e0:2b:cb:f3:e6:84:75:96:01:dc:f2:b5:ae:
49:69:4a:60:a3:d2:18:ca:39:11:53:5d:77:41:1f:d5:d0:ec:
0d:4f:3b:cc:69:77:71:c4:43:d0:aa:7d:bf:9d:1d:9a:34:ce:
e2:17:eb:ba:3e:32:2f:cb:22:7c:09:38:1e:82:0f:2b:e5:12:
9a:fb:09:4f:19:ce:9f:57:c1:f7:b2:50:c1:51:be:58:a7:90:
28:06:87:f4:57:cd:a9:1f:cc:1e:2a:e5:87:ea:1a:ea:5c:a3:
72:f2:2e:22:ba:e2:16:fe:c1:6c:39:63:a7:a7:60:a4:51:f2:
58:f7:2b:68:de:14:32:a6:4a:a3:57:fc:c6:fe:18:40:4f:16:
c5:13:83:f8:8e:21:85:91:e5:18:aa:79:55:40:e3:25:e1:56:
f7:cd:d1:e9:bb:8b:bb:93:8f:00:41:53:86:2b:39:a7:3e:95:
cc:54:c8:a6:39:3b:68:49:47:56:8d:28:0d:e1:97:63:86:de:
f5:53:1d:c0:c9:80:a4:3c:1d:0f:d2:5c:17:5e:4e:7a:e2:29:
e2:5c:0a:17:ea:f5:60:e6:10:43:1d:e9:30:e7:8f:00:4b:99:
b5:c0:b4:79:bd:be:7f:7c:df:8c:1f:53:1d:6c:0c:7f:41:a2:
1d:7f:d0:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ+QaU6vO36y4mH+0/bnAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YTQ5NWFlNjg3NDFlNzlkNThlMzg4NmJlMmFhODc4YzQ4
YzEzYjYwHhcNMjUwNjA3MDgwMDM0WhcNMjUwNjA4MDgwMDM0WjAzMTEwLwYDVQQD
EyhmYWM2YzAzOGFjYmNlMmIyY2IwMjNlYzYxMjk5MDdkZjlhMzgxNTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt60EfAFOpfDBSL7IpbY46nmZPXFU
v4GzLHCzBJRLv+/wvjhM2C5oLrliKPmYfQhrxDeFfoRtCZady7lDHRyjNFm49M0j
BssvXfYoPgYM0Gbdj7DPEQBcL7Iubfmhzgl7bCzu0pXNnN4vssQmpwss3JhNeX5d
QHdIkafn94OwT4dS1rypcpV+/Ai8rC3GWXA48mpT4OiLIqqopUn9Wm2+N+Qs26nD
8ETJqApkFA8Kxn4wKK0V1Tghmpuq36yHWR/YsdVpBqyWVF/Kog/6FTrYAgQOAUE9
Zf2UD4wUrf+/dc9SXQs+fBT7QyO07MyaqxZPuG3cpclPnFFb9qF1NLn63wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPrGwDisvOKyywI+xhKZB9+aOBUwMB8GA1UdIwQY
MBaAFIakla5odB551Y44hr4qqHjEjBO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEt
NDkxOGIwMjc0MmM3LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEtNDkxOGIwMjc0MmM3
LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOqyn6ELg
K8vz5oR1lgHc8rWuSWlKYKPSGMo5EVNdd0Ef1dDsDU87zGl3ccRD0Kp9v50dmjTO
4hfruj4yL8sifAk4HoIPK+USmvsJTxnOn1fB97JQwVG+WKeQKAaH9FfNqR/MHirl
h+oa6lyjcvIuIrriFv7BbDljp6dgpFHyWPcraN4UMqZKo1f8xv4YQE8WxROD+I4h
hZHlGKp5VUDjJeFW983R6buLu5OPAEFThis5pz6VzFTIpjk7aElHVo0oDeGXY4be
9VMdwMmApDwdD9JcF15OeuIp4lwKF+r1YOYQQx3pMOePAEuZtcC0eb2+f3zfjB9T
HWwMf0GiHX/QbQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:41:06 2025 by rpki-client