Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
File: H1KEKQNNz7oB9__1x8yIVtTQbhs.mft (raw, json)
Hash identifier: P5kfVawJAH3YNSivi3n+FsGTiEpS4G116iibChJsDJs=
Subject key identifier: 72:3D:E3:DB:EA:FE:34:35:A2:C2:C4:3E:CE:80:2C:C5:88:54:61:F5
Authority key identifier: 1F:52:84:29:03:4D:CF:BA:01:F7:FF:F5:C7:CC:88:56:D4:D0:6E:1B
Certificate issuer: /CN=1f528429034dcfba01f7fff5c7cc8856d4d06e1b
Certificate serial: 01974BC4234F7A7376D1FC8E5DAC1ABB501F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1KEKQNNz7oB9__1x8yIVtTQbhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
Manifest number: 0AD6
Signing time: Sat 07 Jun 2025 19:00:34 +0000
Manifest this update: Sat 07 Jun 2025 19:00:34 +0000
Manifest next update: Sun 08 Jun 2025 19:00:34 +0000
Files and hashes: 1: DwdwnNYiYszxSFZUvDnifZ1cmVo.roa (hash: z1Ue0CWmwoS4r8rtXwZcldA5j6c831i2ATcqPGIWOrM=)
2: H1KEKQNNz7oB9__1x8yIVtTQbhs.crl (hash: LNEBxXEKgG+KsjC6uRiQYcebQT+J3wJ0CLP1SRKdtcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/H1KEKQNNz7oB9__1x8yIVtTQbhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:23:4f:7a:73:76:d1:fc:8e:5d:ac:1a:bb:50:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f528429034dcfba01f7fff5c7cc8856d4d06e1b
Validity
Not Before: Jun 7 19:00:34 2025 GMT
Not After : Jun 8 19:00:34 2025 GMT
Subject: CN=723de3dbeafe3435a2c2c43ece802cc5885461f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:56:d0:6f:5d:6c:37:7b:1e:ca:63:8d:4e:59:
aa:5d:0a:f7:d5:b3:e0:61:fd:a3:d3:fa:cf:60:61:
3a:5d:df:13:3f:1a:ae:26:5b:22:91:c5:91:c2:cd:
03:0a:7e:87:ca:29:36:6f:95:8c:94:d2:36:33:0b:
8d:e9:f6:25:59:f0:79:5b:36:99:d5:7a:50:ac:76:
ba:6d:df:fc:39:50:2c:2e:b3:e3:62:e3:cb:2e:8c:
81:09:b9:4e:d8:90:ee:a6:83:7a:6e:6b:b9:35:81:
5a:ff:dd:c9:a1:bb:56:d4:ef:c8:32:6f:5e:fb:20:
c6:74:27:45:de:be:5b:e7:74:c9:41:2d:51:32:85:
ea:f6:e6:1e:b8:55:da:a2:4c:47:22:24:e8:2c:5f:
62:43:ff:fa:04:28:d0:68:05:3e:b9:68:22:6f:a8:
e3:58:65:ae:06:4b:f2:e1:50:7d:81:b6:df:a0:31:
f1:d6:b6:97:61:5c:27:0a:78:2e:7f:cf:2d:f1:e5:
57:1d:a1:ac:2f:c8:77:6c:bd:fc:04:8e:73:a7:49:
97:12:d2:f3:5d:67:79:61:a5:2a:b8:b6:62:a1:7d:
07:1d:b9:c3:63:45:ed:b1:14:cb:58:ee:b3:b5:1c:
dc:78:55:76:70:9a:61:d7:3e:09:87:3d:0e:a5:9e:
91:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:3D:E3:DB:EA:FE:34:35:A2:C2:C4:3E:CE:80:2C:C5:88:54:61:F5
X509v3 Authority Key Identifier:
keyid:1F:52:84:29:03:4D:CF:BA:01:F7:FF:F5:C7:CC:88:56:D4:D0:6E:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1KEKQNNz7oB9__1x8yIVtTQbhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/973bb5-0661-456c-9e1e-253be9f6ed3d/1/H1KEKQNNz7oB9__1x8yIVtTQbhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:21:00:1b:13:60:d0:d1:60:21:0a:73:45:e4:d8:80:27:21:
4a:60:59:b5:5a:62:29:0c:91:38:0c:4f:13:3b:d1:93:e6:fc:
90:dd:34:82:ad:d3:ec:26:b5:43:d3:04:62:f6:2b:84:b0:e1:
9c:53:a0:62:35:36:dc:4e:e6:fb:13:b9:92:05:34:f6:8c:f6:
f4:f1:79:02:fb:20:02:ef:09:d5:b0:05:01:01:aa:0e:44:31:
eb:f6:01:f2:57:a4:92:f9:de:d7:d1:9a:5e:32:03:6e:25:8f:
61:89:8c:5f:a4:4c:4a:de:0f:7b:cb:31:4b:39:51:7b:10:53:
52:db:6e:e7:99:05:3c:d8:6f:20:f5:ce:79:3e:80:2d:b6:94:
3f:1c:4b:26:c6:ca:61:f5:9b:99:7c:a6:51:68:f3:d4:95:25:
9f:f4:02:57:98:8d:b7:76:a2:96:e7:c8:e0:9d:e1:8f:de:9d:
dd:26:1b:0e:7f:de:16:f0:2d:2f:e3:97:f5:16:e6:82:b6:7d:
b2:78:3e:32:c8:48:d3:ec:91:2b:a9:f6:0e:eb:01:36:83:3e:
f3:dd:2f:40:b2:55:9a:c6:e8:72:06:f3:85:15:4a:9f:8f:42:
38:fb:7c:c3:8a:68:7f:67:f8:7d:32:64:20:51:74:8a:12:cb:
30:f4:96:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLxCNPenN20fyOXawau1AfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNTI4NDI5MDM0ZGNmYmEwMWY3ZmZmNWM3Y2M4ODU2ZDRk
MDZlMWIwHhcNMjUwNjA3MTkwMDM0WhcNMjUwNjA4MTkwMDM0WjAzMTEwLwYDVQQD
Eyg3MjNkZTNkYmVhZmUzNDM1YTJjMmM0M2VjZTgwMmNjNTg4NTQ2MWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1bQb11sN3seymONTlmqXQr31bPg
Yf2j0/rPYGE6Xd8TPxquJlsikcWRws0DCn6Hyik2b5WMlNI2MwuN6fYlWfB5WzaZ
1XpQrHa6bd/8OVAsLrPjYuPLLoyBCblO2JDupoN6bmu5NYFa/93JobtW1O/IMm9e
+yDGdCdF3r5b53TJQS1RMoXq9uYeuFXaokxHIiToLF9iQ//6BCjQaAU+uWgib6jj
WGWuBkvy4VB9gbbfoDHx1raXYVwnCnguf88t8eVXHaGsL8h3bL38BI5zp0mXEtLz
XWd5YaUquLZioX0HHbnDY0XtsRTLWO6ztRzceFV2cJph1z4Jhz0OpZ6ROQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHI949vq/jQ1osLEPs6ALMWIVGH1MB8GA1UdIwQY
MBaAFB9ShCkDTc+6Aff/9cfMiFbU0G4bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDFLRUtRTk56N29COV9fMXg4eUlWdFRRYmhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC85NzNiYjUtMDY2MS00NTZjLTllMWUt
MjUzYmU5ZjZlZDNkLzEvSDFLRUtRTk56N29COV9fMXg4eUlWdFRRYmhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC85NzNiYjUtMDY2MS00NTZjLTllMWUtMjUzYmU5ZjZlZDNk
LzEvSDFLRUtRTk56N29COV9fMXg4eUlWdFRRYmhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbyEAGxNg
0NFgIQpzReTYgCchSmBZtVpiKQyROAxPEzvRk+b8kN00gq3T7Ca1Q9MEYvYrhLDh
nFOgYjU23E7m+xO5kgU09oz29PF5AvsgAu8J1bAFAQGqDkQx6/YB8lekkvne19Ga
XjIDbiWPYYmMX6RMSt4Pe8sxSzlRexBTUttu55kFPNhvIPXOeT6ALbaUPxxLJsbK
YfWbmXymUWjz1JUln/QCV5iNt3ailufI4J3hj96d3SYbDn/eFvAtL+OX9RbmgrZ9
sng+MshI0+yRK6n2DusBNoM+890vQLJVmsbocgbzhRVKn49COPt8w4pof2f4fTJk
IFF0ihLLMPSWLw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:58:36 2025 by rpki-client