Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
File: h0HsF9wDCbE9iKZ-oi3Luyak46E.mft (raw, json)
Hash identifier: T5Q1Xd65qIsgyC9yzS9J+KrTlLlY9bB/Jv/l2R0hfEU=
Subject key identifier: 59:B3:45:8C:8B:C1:D8:7C:C6:C6:C3:34:5E:E1:99:21:25:D9:B3:D0
Authority key identifier: 87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
Certificate issuer: /CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Certificate serial: 0197462FE3940532B3C9FA6EDFA5A0967AFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
Manifest number: 08A7
Signing time: Fri 06 Jun 2025 17:00:32 +0000
Manifest this update: Fri 06 Jun 2025 17:00:32 +0000
Manifest next update: Sat 07 Jun 2025 17:00:32 +0000
Files and hashes: 1: cASyfuH0abUwpn-V7hmuZSIQ09c.roa (hash: U2HpSDc4zJjb5yR4FxelHkJvS6rW6HvOOx+N/+WSuMk=)
2: h0HsF9wDCbE9iKZ-oi3Luyak46E.crl (hash: 4Sl/U0QOGkiG4GQIMmIvGdekn5jc8Pm6FEYbPzcOw0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:2f:e3:94:05:32:b3:c9:fa:6e:df:a5:a0:96:7a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8741ec17dc0309b13d88a67ea22dcbbb26a4e3a1
Validity
Not Before: Jun 6 17:00:32 2025 GMT
Not After : Jun 7 17:00:32 2025 GMT
Subject: CN=59b3458c8bc1d87cc6c6c3345ee1992125d9b3d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:fe:b7:6a:b8:ab:db:e1:47:a3:2d:6d:90:
00:a4:e7:cb:db:1a:dd:aa:c1:06:ae:d6:e0:ad:65:
23:ca:82:af:37:dc:fd:41:e1:3a:22:bb:db:91:14:
03:ae:57:a4:51:da:29:a5:95:7e:00:46:1f:89:f8:
2f:ca:f0:5a:e0:6c:ae:66:21:4b:52:00:e7:84:90:
31:43:ed:96:b5:be:07:2a:00:f7:6f:b1:8f:09:3f:
05:f5:01:ef:e2:b5:2a:75:3c:65:25:ab:75:a4:c4:
af:01:43:ef:92:8f:bd:6c:c8:cc:ff:ba:33:e8:c2:
29:29:57:93:5b:e3:21:49:34:e9:97:f5:67:7d:13:
d7:bc:38:26:84:73:e3:cd:ee:b4:9f:fd:93:20:a0:
88:b6:8f:35:5f:f2:f2:c6:14:95:10:73:09:af:de:
da:35:0b:2f:bc:f4:31:b5:3a:81:de:a7:7e:a7:4b:
3d:a5:3c:14:f9:b8:d4:92:b4:88:10:ea:a6:ea:08:
f8:8c:6a:75:59:1a:e9:31:53:30:43:96:60:fa:4d:
cd:14:9d:2d:4e:54:30:15:b4:d8:27:18:1d:e0:fc:
dd:c2:64:df:ca:87:b3:c7:9f:c3:62:0c:f2:3d:c2:
de:df:6e:20:49:fb:62:f1:98:d7:42:11:79:ba:8c:
97:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B3:45:8C:8B:C1:D8:7C:C6:C6:C3:34:5E:E1:99:21:25:D9:B3:D0
X509v3 Authority Key Identifier:
keyid:87:41:EC:17:DC:03:09:B1:3D:88:A6:7E:A2:2D:CB:BB:26:A4:E3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0HsF9wDCbE9iKZ-oi3Luyak46E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3266f1-7c88-4f59-b566-1ac4a4007db4/1/h0HsF9wDCbE9iKZ-oi3Luyak46E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:32:4b:78:3d:6d:c6:24:d5:87:ac:24:87:ee:a9:7e:b8:61:
d5:81:49:48:95:f7:72:6e:ce:95:20:94:45:6c:7e:96:22:e8:
d5:6b:f9:f8:67:e3:3e:72:17:5a:2c:a8:64:6d:29:e7:a9:f2:
48:a3:70:64:8a:6a:3b:f0:16:89:83:d3:d2:f8:01:aa:04:15:
57:e8:e3:8d:75:7f:69:e8:2c:26:25:72:8b:2a:36:b0:1e:46:
bc:69:d0:f8:8e:f3:30:ff:78:f4:6d:86:c7:c8:b2:93:31:f2:
0a:87:6b:3f:1e:2d:16:0e:ee:0e:7d:90:c2:89:91:02:87:b8:
b1:43:35:1f:d0:14:fa:1f:59:55:77:83:53:66:e0:04:ec:da:
12:ec:76:a9:73:c2:a5:2d:40:3b:03:e8:77:08:d7:74:be:9d:
2c:10:b0:5a:8e:f7:87:48:8b:34:c1:bb:86:d0:a8:20:09:34:
f0:a3:3d:f5:91:59:e5:5d:fe:22:ba:b0:e3:6b:61:c4:fa:e2:
2a:db:f2:c2:86:6f:bd:9d:57:9e:d3:fa:53:01:b2:1a:72:e3:
ec:6c:d0:e8:e5:4c:53:15:c5:e9:d7:d3:8e:7d:ae:48:25:cd:
37:3b:ff:27:73:bf:63:84:99:e0:07:99:b9:88:97:79:9c:f7:
44:f5:53:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGL+OUBTKzyfpu36Wglnr+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3NDFlYzE3ZGMwMzA5YjEzZDg4YTY3ZWEyMmRjYmJiMjZh
NGUzYTEwHhcNMjUwNjA2MTcwMDMyWhcNMjUwNjA3MTcwMDMyWjAzMTEwLwYDVQQD
Eyg1OWIzNDU4YzhiYzFkODdjYzZjNmMzMzQ1ZWUxOTkyMTI1ZDliM2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMT+t2q4q9vhR6MtbZAApOfL2xrd
qsEGrtbgrWUjyoKvN9z9QeE6IrvbkRQDrlekUdoppZV+AEYfifgvyvBa4GyuZiFL
UgDnhJAxQ+2Wtb4HKgD3b7GPCT8F9QHv4rUqdTxlJat1pMSvAUPvko+9bMjM/7oz
6MIpKVeTW+MhSTTpl/VnfRPXvDgmhHPjze60n/2TIKCIto81X/LyxhSVEHMJr97a
NQsvvPQxtTqB3qd+p0s9pTwU+bjUkrSIEOqm6gj4jGp1WRrpMVMwQ5Zg+k3NFJ0t
TlQwFbTYJxgd4PzdwmTfyoezx5/DYgzyPcLe324gSfti8ZjXQhF5uoyXGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFmzRYyLwdh8xsbDNF7hmSEl2bPQMB8GA1UdIwQY
MBaAFIdB7BfcAwmxPYimfqIty7smpOOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDBIc0Y5d0RDYkU5aUtaLW9pM0x1eWFrNDZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zMjY2ZjEtN2M4OC00ZjU5LWI1NjYt
MWFjNGE0MDA3ZGI0LzEvaDBIc0Y5d0RDYkU5aUtaLW9pM0x1eWFrNDZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8zMjY2ZjEtN2M4OC00ZjU5LWI1NjYtMWFjNGE0MDA3ZGI0
LzEvaDBIc0Y5d0RDYkU5aUtaLW9pM0x1eWFrNDZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhjJLeD1t
xiTVh6wkh+6pfrhh1YFJSJX3cm7OlSCURWx+liLo1Wv5+GfjPnIXWiyoZG0p56ny
SKNwZIpqO/AWiYPT0vgBqgQVV+jjjXV/aegsJiVyiyo2sB5GvGnQ+I7zMP949G2G
x8iykzHyCodrPx4tFg7uDn2QwomRAoe4sUM1H9AU+h9ZVXeDU2bgBOzaEux2qXPC
pS1AOwPodwjXdL6dLBCwWo73h0iLNMG7htCoIAk08KM99ZFZ5V3+Irqw42thxPri
KtvywoZvvZ1XntP6UwGyGnLj7GzQ6OVMUxXF6dfTjn2uSCXNNzv/J3O/Y4SZ4AeZ
uYiXeZz3RPVTWQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:18:01 2025 by rpki-client