Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
File: hmuOBdk45F1lrjFNxnUjfeyDEaE.mft (raw, json)
Hash identifier: amn3hbxGyV3DgCb54Mz7YwVgV8S2c+wkzGa42CoIiCM=
Subject key identifier: EE:F3:31:41:55:5F:3D:F3:AD:01:E2:5E:DB:F5:41:1B:87:FC:A5:9F
Authority key identifier: 86:6B:8E:05:D9:38:E4:5D:65:AE:31:4D:C6:75:23:7D:EC:83:11:A1
Certificate issuer: /CN=866b8e05d938e45d65ae314dc675237dec8311a1
Certificate serial: 019652A5122FCFC7D902BC37AC82C039D257
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hmuOBdk45F1lrjFNxnUjfeyDEaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
Manifest number: 1117
Signing time: Sun 20 Apr 2025 10:01:11 +0000
Manifest this update: Sun 20 Apr 2025 10:01:11 +0000
Manifest next update: Mon 21 Apr 2025 10:01:11 +0000
Files and hashes: 1: hmuOBdk45F1lrjFNxnUjfeyDEaE.crl (hash: sQ3cSNXTmTT0AaXwKgOvDymtRhjpRMiQJhMthHwQsLw=)
2: sw4N2lxJHY4O1_YExcGjN1F8VGo.roa (hash: KXUZgZkZitwfC1Jk6g2FCiMl9s8x5hfwqmR4gq981VM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hmuOBdk45F1lrjFNxnUjfeyDEaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a5:12:2f:cf:c7:d9:02:bc:37:ac:82:c0:39:d2:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866b8e05d938e45d65ae314dc675237dec8311a1
Validity
Not Before: Apr 20 10:01:11 2025 GMT
Not After : Apr 21 10:01:11 2025 GMT
Subject: CN=eef33141555f3df3ad01e25edbf5411b87fca59f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:92:b8:fe:7b:47:67:66:d2:d3:8c:de:ef:
4d:94:d5:af:4b:a3:44:0f:3e:74:a4:ba:97:13:af:
af:46:6c:01:19:d1:e9:a5:22:79:e7:18:f8:b6:93:
0c:5e:69:6b:bb:30:4f:2d:5b:a4:ae:cf:3c:86:42:
a7:04:18:8a:32:f1:db:e9:1c:d2:49:c9:ec:8a:07:
46:3b:5e:5f:b7:eb:fe:9d:67:f7:70:66:16:9b:5b:
3d:55:2b:29:dd:87:3b:8c:f2:d2:35:5a:0d:70:a7:
cf:25:1c:25:09:1a:69:72:f4:4e:00:dd:2d:8a:14:
9c:a7:33:89:c7:7f:8f:86:60:9c:6c:ba:b5:e2:84:
e1:dc:bd:aa:f1:27:0d:27:1c:84:31:62:2b:0d:34:
e1:a4:09:fb:a8:32:3c:27:64:a6:9a:3e:8a:c0:90:
a4:33:a3:61:25:02:f8:90:53:53:8a:6c:4c:d2:df:
75:41:b2:62:f8:9b:d9:11:ab:98:7f:c1:97:72:cc:
5d:da:95:38:ef:44:61:ae:b5:55:48:db:1f:78:ee:
7e:c3:fe:a6:25:6e:51:27:b0:fb:8e:30:8d:d0:cb:
e1:27:72:95:f6:68:6b:ae:bd:ab:80:95:46:72:4f:
5c:c3:8a:a2:60:80:06:24:e2:2f:de:88:bb:9b:d7:
d1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F3:31:41:55:5F:3D:F3:AD:01:E2:5E:DB:F5:41:1B:87:FC:A5:9F
X509v3 Authority Key Identifier:
keyid:86:6B:8E:05:D9:38:E4:5D:65:AE:31:4D:C6:75:23:7D:EC:83:11:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hmuOBdk45F1lrjFNxnUjfeyDEaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/d5bce2-a92f-442a-a235-aa88a4ba58ef/1/hmuOBdk45F1lrjFNxnUjfeyDEaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:69:76:50:f1:e9:a1:5c:6f:10:25:33:98:29:9d:72:d2:b8:
36:24:a7:6c:8a:d7:5b:18:c3:f8:7d:82:8a:69:bc:ae:d3:61:
ab:c2:69:fe:a5:47:6c:97:56:8e:fb:1f:9f:f4:dd:fe:b8:d3:
46:36:14:94:89:24:5b:2d:3f:37:0c:c6:21:ae:d8:92:7c:f1:
08:3c:fd:a9:64:a2:f3:d4:dc:e3:d6:45:24:af:e0:7a:15:34:
6e:c7:1f:d7:e7:b5:c2:91:a7:0a:0f:07:40:f2:5f:6c:34:cb:
5e:78:45:d4:28:bc:72:e5:75:82:1b:2e:fb:e4:2a:82:5a:ba:
a5:77:5d:e1:d8:3a:8f:34:2a:82:74:49:d8:6f:a5:ca:1d:4a:
1e:43:f7:87:c1:9b:5a:e1:9a:22:3b:aa:1e:6b:58:0c:88:8e:
a5:82:1d:8b:31:c1:51:a6:f3:02:71:dc:22:12:10:91:94:80:
47:c5:e5:8a:c9:41:a8:2a:7b:ed:30:aa:46:89:01:f0:01:fd:
44:5b:30:bd:c5:26:a5:23:cb:4d:59:dd:d2:ad:40:26:32:05:
d1:e9:a2:0e:c9:c6:62:c7:90:88:13:07:06:b2:b7:7f:a3:6b:
f7:a8:80:d5:97:db:2a:98:ba:5c:93:61:78:25:b6:a5:86:92:
88:ca:8d:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSpRIvz8fZArw3rILAOdJXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NmI4ZTA1ZDkzOGU0NWQ2NWFlMzE0ZGM2NzUyMzdkZWM4
MzExYTEwHhcNMjUwNDIwMTAwMTExWhcNMjUwNDIxMTAwMTExWjAzMTEwLwYDVQQD
EyhlZWYzMzE0MTU1NWYzZGYzYWQwMWUyNWVkYmY1NDExYjg3ZmNhNTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspmSuP57R2dm0tOM3u9NlNWvS6NE
Dz50pLqXE6+vRmwBGdHppSJ55xj4tpMMXmlruzBPLVukrs88hkKnBBiKMvHb6RzS
ScnsigdGO15ft+v+nWf3cGYWm1s9VSsp3Yc7jPLSNVoNcKfPJRwlCRppcvROAN0t
ihScpzOJx3+PhmCcbLq14oTh3L2q8ScNJxyEMWIrDTThpAn7qDI8J2Smmj6KwJCk
M6NhJQL4kFNTimxM0t91QbJi+JvZEauYf8GXcsxd2pU470RhrrVVSNsfeO5+w/6m
JW5RJ7D7jjCN0MvhJ3KV9mhrrr2rgJVGck9cw4qiYIAGJOIv3oi7m9fRjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO7zMUFVXz3zrQHiXtv1QRuH/KWfMB8GA1UdIwQY
MBaAFIZrjgXZOORdZa4xTcZ1I33sgxGhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG11T0JkazQ1RjFscmpGTnhuVWpmZXlERWFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9kNWJjZTItYTkyZi00NDJhLWEyMzUt
YWE4OGE0YmE1OGVmLzEvaG11T0JkazQ1RjFscmpGTnhuVWpmZXlERWFFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9kNWJjZTItYTkyZi00NDJhLWEyMzUtYWE4OGE0YmE1OGVm
LzEvaG11T0JkazQ1RjFscmpGTnhuVWpmZXlERWFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsGl2UPHp
oVxvECUzmCmdctK4NiSnbIrXWxjD+H2Cimm8rtNhq8Jp/qVHbJdWjvsfn/Td/rjT
RjYUlIkkWy0/NwzGIa7YknzxCDz9qWSi89Tc49ZFJK/gehU0bscf1+e1wpGnCg8H
QPJfbDTLXnhF1Ci8cuV1ghsu++Qqglq6pXdd4dg6jzQqgnRJ2G+lyh1KHkP3h8Gb
WuGaIjuqHmtYDIiOpYIdizHBUabzAnHcIhIQkZSAR8XlislBqCp77TCqRokB8AH9
RFswvcUmpSPLTVnd0q1AJjIF0emiDsnGYseQiBMHBrK3f6Nr96iA1ZfbKpi6XJNh
eCW2pYaSiMqNmw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:15:29 2025 by rpki-client