Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
File: h5kgiOdlXLE0AgypWw5X1Oba9A8.mft (raw, json)
Hash identifier: LAjXW/dbA7lNbgykBGeu37SvyADS9RW/z13jpt3TyfQ=
Subject key identifier: 4E:74:7E:CA:4D:79:70:85:F9:73:5A:7E:9A:FD:8B:36:02:AD:43:23
Authority key identifier: 87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
Certificate issuer: /CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Certificate serial: 019757FF703BB208C241DB8EDEF993F30ABA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
Manifest number: 1585
Signing time: Tue 10 Jun 2025 04:00:47 +0000
Manifest this update: Tue 10 Jun 2025 04:00:47 +0000
Manifest next update: Wed 11 Jun 2025 04:00:47 +0000
Files and hashes: 1: h5kgiOdlXLE0AgypWw5X1Oba9A8.crl (hash: XAte+gSEb9Y5a1UnoSQEzP1BV+il2TJF/efZFHm43U0=)
2: vH-eK3MDkjfjQIWGcNruZ1gYj6o.roa (hash: X8Ll3xNOyDNsY8OoD7P2fm6g2ckrfD35bOMThe6H4RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:ff:70:3b:b2:08:c2:41:db:8e:de:f9:93:f3:0a:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87992088e7655cb134020ca95b0e57d4e6daf40f
Validity
Not Before: Jun 10 04:00:47 2025 GMT
Not After : Jun 11 04:00:47 2025 GMT
Subject: CN=4e747eca4d797085f9735a7e9afd8b3602ad4323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:1a:e5:27:47:bf:d1:13:3a:f8:5c:38:27:
04:ee:31:d7:0c:18:66:07:2a:15:a9:c4:be:3b:fc:
da:ec:54:60:c3:cd:b8:f8:08:1b:51:fd:64:20:55:
c8:76:3e:85:c9:9d:46:ea:27:a6:1b:27:39:48:cc:
ab:0a:7b:61:af:11:ea:7b:71:9c:4e:2c:c0:39:bf:
8e:6b:c3:d4:bd:7a:c3:ca:60:b3:a0:53:8a:5e:fa:
5a:90:f5:52:5d:22:5e:ea:3e:d1:e6:dc:40:82:14:
78:f6:78:24:3b:5c:bc:06:71:f7:92:32:9b:4a:0f:
85:5b:3e:e3:02:73:12:f9:cc:7c:a8:f1:69:9a:3d:
2a:97:f4:ac:7a:01:f8:e8:6e:03:2c:36:33:16:1e:
c6:6d:42:f8:31:da:e3:5c:54:68:22:8c:c3:b7:5a:
00:45:98:b6:34:07:44:d9:ca:08:33:5c:d5:9b:79:
78:7a:40:aa:a2:6c:98:23:eb:09:ab:1d:46:e8:56:
42:26:95:5e:0f:3b:e2:58:43:22:17:ec:7b:cf:1b:
b4:98:2b:22:49:b2:b0:cd:30:f9:05:70:49:d0:e8:
64:a6:67:42:11:76:b9:72:47:19:b0:09:53:08:ba:
2d:45:9f:97:16:d0:c4:7f:7c:77:5d:3d:6e:e6:7d:
ff:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:74:7E:CA:4D:79:70:85:F9:73:5A:7E:9A:FD:8B:36:02:AD:43:23
X509v3 Authority Key Identifier:
keyid:87:99:20:88:E7:65:5C:B1:34:02:0C:A9:5B:0E:57:D4:E6:DA:F4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5kgiOdlXLE0AgypWw5X1Oba9A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/e08318-2975-417a-b863-85ea63c24474/1/h5kgiOdlXLE0AgypWw5X1Oba9A8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:84:0e:fa:22:40:68:f3:bd:4d:aa:df:70:de:97:c6:e6:37:
d2:4f:a0:9f:a7:da:95:6f:8f:ff:31:a5:ff:21:5f:46:f8:43:
c2:60:2c:ee:79:39:59:4f:41:b7:8b:34:1a:56:0b:cf:3f:fc:
74:a8:7c:fc:f4:49:72:3f:6f:d3:3b:cc:f0:43:1d:b1:b9:74:
2c:f9:72:05:73:8e:fb:32:92:4c:19:d4:d5:70:3b:36:aa:af:
a7:ea:76:87:8a:db:8f:d2:c7:42:cf:2f:62:76:b4:3c:49:93:
49:cd:38:f0:5c:e3:d9:7d:7d:f5:85:28:33:56:47:13:84:8b:
70:e6:2d:4f:ea:b1:9f:e6:bc:1a:b5:79:95:90:3a:d4:00:06:
fd:62:8b:26:45:b7:e8:ad:42:dd:40:e9:18:18:97:90:9d:8c:
5f:b5:2e:6c:4d:31:82:3c:ea:a1:25:b8:c0:eb:3d:7f:bf:79:
c6:02:99:e4:9c:94:71:ce:84:27:68:72:d2:33:12:b0:29:58:
fa:01:4e:0f:02:1e:65:71:98:bf:d0:70:d1:23:d3:fd:94:42:
3f:ef:fe:8b:2e:ba:21:b6:e6:68:e2:64:82:ff:67:14:11:de:
fb:24:32:1e:d6:b6:94:ef:5f:6b:69:b6:41:25:6f:e8:fb:7b:
c3:28:57:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdX/3A7sgjCQduO3vmT8wq6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3OTkyMDg4ZTc2NTVjYjEzNDAyMGNhOTViMGU1N2Q0ZTZk
YWY0MGYwHhcNMjUwNjEwMDQwMDQ3WhcNMjUwNjExMDQwMDQ3WjAzMTEwLwYDVQQD
Eyg0ZTc0N2VjYTRkNzk3MDg1Zjk3MzVhN2U5YWZkOGIzNjAyYWQ0MzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxga5SdHv9ETOvhcOCcE7jHXDBhm
ByoVqcS+O/za7FRgw824+AgbUf1kIFXIdj6FyZ1G6iemGyc5SMyrCnthrxHqe3Gc
TizAOb+Oa8PUvXrDymCzoFOKXvpakPVSXSJe6j7R5txAghR49ngkO1y8BnH3kjKb
Sg+FWz7jAnMS+cx8qPFpmj0ql/SsegH46G4DLDYzFh7GbUL4MdrjXFRoIozDt1oA
RZi2NAdE2coIM1zVm3l4ekCqomyYI+sJqx1G6FZCJpVeDzviWEMiF+x7zxu0mCsi
SbKwzTD5BXBJ0OhkpmdCEXa5ckcZsAlTCLotRZ+XFtDEf3x3XT1u5n3/WQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE50fspNeXCF+XNafpr9izYCrUMjMB8GA1UdIwQY
MBaAFIeZIIjnZVyxNAIMqVsOV9Tm2vQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMt
ODVlYTYzYzI0NDc0LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lMDgzMTgtMjk3NS00MTdhLWI4NjMtODVlYTYzYzI0NDc0
LzEvaDVrZ2lPZGxYTEUwQWd5cFd3NVgxT2JhOUE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUoQO+iJA
aPO9TarfcN6XxuY30k+gn6falW+P/zGl/yFfRvhDwmAs7nk5WU9Bt4s0GlYLzz/8
dKh8/PRJcj9v0zvM8EMdsbl0LPlyBXOO+zKSTBnU1XA7Nqqvp+p2h4rbj9LHQs8v
Yna0PEmTSc048Fzj2X199YUoM1ZHE4SLcOYtT+qxn+a8GrV5lZA61AAG/WKLJkW3
6K1C3UDpGBiXkJ2MX7UubE0xgjzqoSW4wOs9f795xgKZ5JyUcc6EJ2hy0jMSsClY
+gFODwIeZXGYv9Bw0SPT/ZRCP+/+iy66IbbmaOJkgv9nFBHe+yQyHta2lO9fa2m2
QSVv6Pt7wyhX+w==
-----END CERTIFICATE-----
Generated at Tue Jun 10 07:18:42 2025 by rpki-client