Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json)
Hash identifier: gxZQSNVq0ambfgxmyxyluqYap49EBg/zN4sLKOUFWjI=
Subject key identifier: 66:F2:A1:D5:3E:FD:81:9A:0B:FD:97:8C:1B:F0:16:7F:F8:CD:3A:DC
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 01964E22DD2DCFFDA43336259FD437D3E73D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
Manifest number: 0622
Signing time: Sat 19 Apr 2025 13:00:29 +0000
Manifest this update: Sat 19 Apr 2025 13:00:29 +0000
Manifest next update: Sun 20 Apr 2025 13:00:29 +0000
Files and hashes: 1: 00q_V9fiuxK8x1J5dDf6heEWqpM.roa (hash: XdV8RV4SCz2Bjb29weutw1xlx9C6MC3WoiwiAcbHJHU=)
2: 0DRjjmcZlOUPV43RadORGLY5fAU.roa (hash: OsLSdbKdwCfPfb6fa3q09CVq+CXKI7ScoH/tLbYmOyY=)
3: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: O5RRXpVGpkpBMuIBBOGiEBuk3M/A9l6vE+s0PxGTV10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:22:dd:2d:cf:fd:a4:33:36:25:9f:d4:37:d3:e7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Apr 19 13:00:29 2025 GMT
Not After : Apr 20 13:00:29 2025 GMT
Subject: CN=66f2a1d53efd819a0bfd978c1bf0167ff8cd3adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d6:56:aa:8a:01:25:59:d4:f4:ff:fa:dd:46:
87:3d:96:0f:6a:17:04:1b:cb:df:6d:af:c4:42:b4:
5a:70:b8:db:9d:a2:1d:31:73:d0:6d:0b:0a:e5:de:
2e:68:8e:6b:2f:3e:26:79:10:b0:51:d0:5f:cb:2f:
35:6a:0e:4c:4d:62:23:b8:6f:10:39:a9:f2:c1:f5:
47:e1:ec:59:a4:96:cf:24:76:c7:f6:5a:58:57:e0:
14:ca:ca:99:4d:60:e1:9c:05:a7:b6:a8:a4:c7:04:
81:26:1c:57:5e:6d:fd:88:68:e9:ab:4b:71:8f:96:
12:07:86:67:b7:09:0e:5f:bf:26:b9:15:f5:1d:b7:
76:52:5a:84:3e:df:87:ad:a5:38:b8:b5:12:a9:7e:
67:87:64:c6:28:76:03:5d:f1:69:e4:f1:3e:87:1d:
9f:52:1e:8f:c3:cb:55:35:be:ee:c4:e1:97:c5:cb:
64:a4:a9:17:4c:33:f9:37:4a:a0:b8:56:9c:95:83:
7f:cf:e5:01:9c:a9:62:02:e1:71:34:fd:48:fa:88:
27:1a:ad:d5:b1:6b:c6:5f:fc:61:f5:7a:eb:79:f7:
bd:68:ad:e7:80:85:69:78:28:64:23:69:8b:29:8f:
9a:af:3a:a0:82:f9:d2:85:5c:35:79:88:16:6d:e2:
19:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F2:A1:D5:3E:FD:81:9A:0B:FD:97:8C:1B:F0:16:7F:F8:CD:3A:DC
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:94:d4:5e:ac:a8:30:a8:0b:b1:3d:11:5c:7d:17:3b:40:2f:
62:76:46:fc:85:6c:4a:1b:e2:3d:34:3b:64:9e:e0:eb:be:fe:
d2:b1:25:40:d6:ec:60:dd:a1:2d:23:e6:63:3c:b9:c8:b5:39:
d7:bf:c9:fb:75:c1:ab:92:4e:a9:19:bf:c8:73:06:2c:8f:22:
a1:5a:ba:f7:6d:ed:52:3a:46:5f:7a:e7:c5:57:eb:e4:9a:3d:
c9:5e:ff:8d:b3:a8:d4:f5:99:ba:d7:39:43:ad:8a:5d:40:42:
4d:66:95:c7:6e:26:04:9e:83:b8:a0:7b:a1:b0:b3:20:73:19:
8f:5b:83:4f:ad:eb:1e:e9:a9:2c:71:78:89:49:6c:b0:ff:c7:
8d:ef:1b:63:a0:36:96:95:82:59:33:83:08:e2:5a:d2:ea:21:
a2:52:08:3a:29:4f:66:7c:17:2b:ba:59:41:ad:02:14:ab:d1:
dd:91:9a:08:f2:40:3f:2b:25:59:8f:07:7b:0c:ed:53:92:7a:
e3:fa:04:b5:06:ea:d5:95:3e:97:49:ea:97:15:ff:d2:8a:12:
fa:3f:77:65:0b:8a:25:6c:91:76:df:5e:5d:2c:9b:08:6b:04:
c8:ac:ba:e6:5a:e8:a3:d8:a5:41:00:16:62:84:05:8e:c6:6b:
46:34:fa:90
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZZOIt0tz/2kMzYln9Q30+c9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2
Mzc4YTgwHhcNMjUwNDE5MTMwMDI5WhcNMjUwNDIwMTMwMDI5WjAzMTEwLwYDVQQD
Eyg2NmYyYTFkNTNlZmQ4MTlhMGJmZDk3OGMxYmYwMTY3ZmY4Y2QzYWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9ZWqooBJVnU9P/63UaHPZYPahcE
G8vfba/EQrRacLjbnaIdMXPQbQsK5d4uaI5rLz4meRCwUdBfyy81ag5MTWIjuG8Q
OanywfVH4exZpJbPJHbH9lpYV+AUysqZTWDhnAWntqikxwSBJhxXXm39iGjpq0tx
j5YSB4ZntwkOX78muRX1Hbd2UlqEPt+HraU4uLUSqX5nh2TGKHYDXfFp5PE+hx2f
Uh6Pw8tVNb7uxOGXxctkpKkXTDP5N0qguFaclYN/z+UBnKliAuFxNP1I+ognGq3V
sWvGX/xh9Xrrefe9aK3ngIVpeChkI2mLKY+arzqggvnShVw1eYgWbeIZdQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFGbyodU+/YGaC/2XjBvwFn/4zTrcMB8GA1UdIwQY
MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy
LTJhMWNjZTdkMmM2NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2FmLzA4YTljOC00YmUzLTQ2ODItYWY4Mi0yYTFjY2U3ZDJj
NjUvMS8xLWhza2VOX2c4em9uaXhQMExkTVpZQjFqZUtnLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKJTU
XqyoMKgLsT0RXH0XO0AvYnZG/IVsShviPTQ7ZJ7g677+0rElQNbsYN2hLSPmYzy5
yLU517/J+3XBq5JOqRm/yHMGLI8ioVq6923tUjpGX3rnxVfr5Jo9yV7/jbOo1PWZ
utc5Q62KXUBCTWaVx24mBJ6DuKB7obCzIHMZj1uDT63rHumpLHF4iUlssP/Hje8b
Y6A2lpWCWTODCOJa0uoholIIOilPZnwXK7pZQa0CFKvR3ZGaCPJAPyslWY8Hewzt
U5J64/oEtQbq1ZU+l0nqlxX/0ooS+j93ZQuKJWyRdt9eXSybCGsEyKy65lroo9il
QQAWYoQFjsZrRjT6kA==
-----END CERTIFICATE-----
Generated at Sat Apr 19 17:49:48 2025 by rpki-client