Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
File: hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft (raw, json)
Hash identifier: dPNk+GjG1DQi+SmgID+8wuctId9EcMtpW7rdGbxTkJA=
Subject key identifier: 08:42:DA:58:2F:34:27:9A:F3:64:97:15:9B:37:07:A1:C1:E6:20:41
Authority key identifier: 85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
Certificate issuer: /CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Certificate serial: 01974A0C904CDB3016C356892B586058C9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 11:00:26 +0000
Manifest this update: Sat 07 Jun 2025 11:00:26 +0000
Manifest next update: Sun 08 Jun 2025 11:00:26 +0000
Files and hashes: 1: 4NKKaipkT34nKtWhfa19D74f25c.roa (hash: YTaiys0RSHABRCWEassKEE2Fqko+03tYIMHlBHkZyig=)
2: hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl (hash: txTtxdUOJ7nHUdyubBcFb0ih1c84wN4PHSkL185c7KE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:90:4c:db:30:16:c3:56:89:2b:58:60:58:c9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8504ebf9db1710a47bae4508cdaf8131e1674a54
Validity
Not Before: Jun 7 11:00:26 2025 GMT
Not After : Jun 8 11:00:26 2025 GMT
Subject: CN=0842da582f34279af36497159b3707a1c1e62041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:46:61:71:39:0b:58:52:5f:ee:76:73:7b:a3:
32:e4:ef:3d:df:dc:9c:d9:d0:ec:98:f0:c2:15:13:
75:06:2b:8c:7b:c3:6c:f3:b2:e6:47:e4:61:4c:1f:
33:99:4b:90:a9:b9:43:fb:dc:25:c5:4f:12:6c:ee:
e3:02:99:89:9c:f6:28:fe:7f:bd:12:cb:da:e1:bc:
49:1d:b5:63:c8:5b:17:c0:4f:6e:c4:33:eb:ad:64:
9b:42:92:3c:6c:19:33:6c:3c:d6:0a:87:9e:22:3b:
e1:42:a8:31:4b:94:fb:1c:d0:d9:de:9f:86:a4:55:
a6:e0:0e:ca:70:93:06:54:bc:79:45:04:c0:16:12:
f1:b8:24:31:05:21:52:ef:ee:88:21:15:ec:d0:bf:
ac:e0:be:98:76:99:45:37:c8:82:b6:1a:ef:93:52:
db:df:44:f4:8d:57:ac:45:0a:88:36:d1:ee:b7:27:
33:d4:df:a7:90:99:5f:2a:df:6c:25:24:cd:f3:8c:
a8:dc:8d:d9:16:15:12:bc:1a:b3:9f:a0:5a:33:82:
78:47:2c:97:94:30:2c:d8:b2:fc:b9:0c:cf:60:09:
af:1b:aa:e2:41:40:a9:fc:ad:77:72:7d:81:50:ca:
48:b5:c9:ac:02:a0:34:c6:a5:e2:a3:1f:8d:80:34:
bd:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:42:DA:58:2F:34:27:9A:F3:64:97:15:9B:37:07:A1:C1:E6:20:41
X509v3 Authority Key Identifier:
keyid:85:04:EB:F9:DB:17:10:A4:7B:AE:45:08:CD:AF:81:31:E1:67:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hQTr-dsXEKR7rkUIza-BMeFnSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7efe01-ec74-40ac-a238-a9b1df44ce2f/1/hQTr-dsXEKR7rkUIza-BMeFnSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:ef:29:96:61:13:e5:4f:08:b0:2d:00:f5:3f:cc:d8:ba:72:
ca:59:1f:16:ad:30:f9:a0:f2:f3:0f:c9:5d:da:90:31:b3:26:
24:48:ff:48:35:f2:26:8c:5f:38:39:ef:c5:bc:c3:55:71:13:
6e:ad:88:9d:ea:c5:6b:63:1e:75:27:ed:1e:a4:8b:a5:a9:85:
71:6e:b9:54:9e:f2:d4:04:ea:5c:64:a4:67:b4:5f:0a:5e:06:
cc:49:a0:4b:db:5f:3b:9a:3e:4e:12:36:18:9d:64:92:32:eb:
b4:7a:77:75:30:72:19:89:39:1a:b2:96:b9:5b:13:de:2c:c3:
9d:3d:fe:94:2a:a9:33:32:e7:c5:ab:a7:f8:59:1d:f1:cc:84:
4c:d6:26:85:df:2f:d2:6f:31:73:07:a2:73:29:69:3f:19:d7:
68:86:4e:d1:79:46:8a:3e:28:74:ec:70:08:e0:16:f0:c5:31:
01:64:64:e9:05:49:2d:5b:7f:ff:43:2b:69:f3:95:99:7c:88:
10:e2:47:f2:ee:5b:6d:34:94:72:ef:6a:52:61:e5:32:40:8a:
cd:90:16:66:00:24:63:6d:9d:9d:27:b5:2f:ce:cb:b3:d4:92:
49:5a:8d:09:03:a6:0a:55:b2:c4:e3:a0:fc:9c:3f:51:22:7a:
a0:4f:2c:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKDJBM2zAWw1aJK1hgWMnkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MDRlYmY5ZGIxNzEwYTQ3YmFlNDUwOGNkYWY4MTMxZTE2
NzRhNTQwHhcNMjUwNjA3MTEwMDI2WhcNMjUwNjA4MTEwMDI2WjAzMTEwLwYDVQQD
EygwODQyZGE1ODJmMzQyNzlhZjM2NDk3MTU5YjM3MDdhMWMxZTYyMDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiUZhcTkLWFJf7nZze6My5O8939yc
2dDsmPDCFRN1BiuMe8Ns87LmR+RhTB8zmUuQqblD+9wlxU8SbO7jApmJnPYo/n+9
Esva4bxJHbVjyFsXwE9uxDPrrWSbQpI8bBkzbDzWCoeeIjvhQqgxS5T7HNDZ3p+G
pFWm4A7KcJMGVLx5RQTAFhLxuCQxBSFS7+6IIRXs0L+s4L6YdplFN8iCthrvk1Lb
30T0jVesRQqINtHutycz1N+nkJlfKt9sJSTN84yo3I3ZFhUSvBqzn6BaM4J4RyyX
lDAs2LL8uQzPYAmvG6riQUCp/K13cn2BUMpItcmsAqA0xqXiox+NgDS9awIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAhC2lgvNCea82SXFZs3B6HB5iBBMB8GA1UdIwQY
MBaAFIUE6/nbFxCke65FCM2vgTHhZ0pUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFFUci1kc1hFS1I3cmtVSXphLUJNZUZuU2xRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi83ZWZlMDEtZWM3NC00MGFjLWEyMzgt
YTliMWRmNDRjZTJmLzEvaFFUci1kc1hFS1I3cmtVSXphLUJNZUZuU2xRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi83ZWZlMDEtZWM3NC00MGFjLWEyMzgtYTliMWRmNDRjZTJm
LzEvaFFUci1kc1hFS1I3cmtVSXphLUJNZUZuU2xRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnO8plmET
5U8IsC0A9T/M2LpyylkfFq0w+aDy8w/JXdqQMbMmJEj/SDXyJoxfODnvxbzDVXET
bq2InerFa2MedSftHqSLpamFcW65VJ7y1ATqXGSkZ7RfCl4GzEmgS9tfO5o+ThI2
GJ1kkjLrtHp3dTByGYk5GrKWuVsT3izDnT3+lCqpMzLnxaun+Fkd8cyETNYmhd8v
0m8xcweicylpPxnXaIZO0XlGij4odOxwCOAW8MUxAWRk6QVJLVt//0MrafOVmXyI
EOJH8u5bbTSUcu9qUmHlMkCKzZAWZgAkY22dnSe1L87Ls9SSSVqNCQOmClWyxOOg
/Jw/USJ6oE8s+g==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:51:25 2025 by rpki-client