Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: P2AYA2VUDkrnZTnQy/QYPVbyZHRFL1TXgg7Wxif2MGk=
Subject key identifier: D5:B0:FE:B6:13:B1:68:BC:4C:BA:FD:EE:EA:87:07:03:3D:F2:EC:AB
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 0197469DC42FD4BC3D2BDEDD4FD9BC198626
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 0343
Signing time: Fri 06 Jun 2025 19:00:33 +0000
Manifest this update: Fri 06 Jun 2025 19:00:33 +0000
Manifest next update: Sat 07 Jun 2025 19:00:33 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: a+hfmTZmqoUgB3yA21yfB8ewncCLW+OGYyKQb5rzkA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:9d:c4:2f:d4:bc:3d:2b:de:dd:4f:d9:bc:19:86:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Jun 6 19:00:33 2025 GMT
Not After : Jun 7 19:00:33 2025 GMT
Subject: CN=d5b0feb613b168bc4cbafdeeea8707033df2ecab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dc:ab:ed:8e:ea:52:5b:be:7e:24:5f:58:d1:
09:f8:da:3b:a9:e4:25:26:3a:8c:45:9a:15:78:72:
b6:b1:e6:6a:b8:a7:87:b6:da:f4:ff:29:27:d5:a3:
12:ae:b5:42:a4:ec:50:e3:a4:69:5d:4d:3f:44:d1:
3e:36:dd:46:65:a8:bf:4a:3b:91:50:79:17:bf:b7:
79:7d:db:84:1c:6a:e5:26:f5:e1:89:d1:9e:d9:33:
76:60:31:63:d3:36:9d:f4:7b:7f:21:9b:29:fe:30:
cb:46:04:46:c9:9d:19:fd:e2:53:7a:e3:7f:c2:e0:
9d:c6:b2:55:ca:00:46:ae:e9:67:23:48:1c:1f:44:
f9:37:b7:0e:9d:ee:c1:d3:16:98:2e:62:9a:a1:11:
e9:19:70:37:5e:e7:9a:a1:ee:36:89:54:35:45:26:
97:3c:0a:12:1e:3e:88:b9:d4:12:9f:60:aa:35:0f:
8c:c4:c5:e7:82:32:d1:33:2b:0b:c3:03:45:2e:58:
a0:76:55:3d:0b:b6:20:d4:8f:64:95:dc:c7:87:af:
79:36:19:8e:6f:b0:eb:02:55:3b:30:54:5c:02:59:
6a:7e:5e:9d:00:4b:64:a0:df:20:98:e9:fc:40:53:
0c:1a:43:e4:d6:2e:36:c5:aa:8f:fd:e3:f9:25:ae:
88:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B0:FE:B6:13:B1:68:BC:4C:BA:FD:EE:EA:87:07:03:3D:F2:EC:AB
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:bb:7b:b8:1e:64:99:0b:4e:75:8a:0c:49:d5:08:c5:3f:d9:
b3:8b:7a:92:3f:82:da:c3:18:3f:11:1b:42:fb:2f:8e:52:2c:
76:c2:05:48:a1:e1:20:68:9f:ba:62:eb:3c:68:6d:d0:3e:0a:
67:4c:b1:f4:be:2f:b2:86:c6:76:71:3b:70:0f:20:8e:df:b5:
f5:dd:22:d3:11:2d:67:a5:f0:4e:65:7f:c8:9b:9c:d8:e5:d4:
a1:e8:8b:dd:31:18:17:a2:b8:13:4d:e5:a7:f5:cd:63:4c:a3:
5d:b7:b4:94:6c:fd:d9:67:21:ca:87:32:83:30:ce:a8:41:43:
6c:01:f0:6f:25:d8:a7:bd:31:22:c5:05:fc:ef:28:81:a2:35:
2f:29:7f:35:da:a7:e6:56:68:0c:f3:bd:bc:62:40:b7:3d:7b:
5e:6c:af:2e:69:11:ec:c1:0c:ed:a6:8e:7c:6f:83:78:50:cd:
cf:a1:97:7a:a1:98:e1:fd:c6:9e:f0:e3:0a:39:cb:8e:6e:83:
b4:8f:2b:ba:b9:78:98:22:f8:37:ef:83:d9:2a:a7:f8:d6:24:
5b:0b:8c:34:60:b0:90:f4:e2:0f:13:7f:c5:a4:af:02:b6:60:
7b:ff:f5:77:cd:11:09:1b:a4:47:c9:9c:f3:f4:47:d8:5d:dc:
67:1f:76:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGncQv1Lw9K97dT9m8GYYmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx
ZjA1NDEwHhcNMjUwNjA2MTkwMDMzWhcNMjUwNjA3MTkwMDMzWjAzMTEwLwYDVQQD
EyhkNWIwZmViNjEzYjE2OGJjNGNiYWZkZWVlYTg3MDcwMzNkZjJlY2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytyr7Y7qUlu+fiRfWNEJ+No7qeQl
JjqMRZoVeHK2seZquKeHttr0/ykn1aMSrrVCpOxQ46RpXU0/RNE+Nt1GZai/SjuR
UHkXv7d5fduEHGrlJvXhidGe2TN2YDFj0zad9Ht/IZsp/jDLRgRGyZ0Z/eJTeuN/
wuCdxrJVygBGrulnI0gcH0T5N7cOne7B0xaYLmKaoRHpGXA3Xueaoe42iVQ1RSaX
PAoSHj6IudQSn2CqNQ+MxMXngjLRMysLwwNFLligdlU9C7Yg1I9kldzHh695NhmO
b7DrAlU7MFRcAllqfl6dAEtkoN8gmOn8QFMMGkPk1i42xaqP/eP5Ja6IVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNWw/rYTsWi8TLr97uqHBwM98uyrMB8GA1UdIwQY
MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt
M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm
LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHLt7uB5k
mQtOdYoMSdUIxT/Zs4t6kj+C2sMYPxEbQvsvjlIsdsIFSKHhIGifumLrPGht0D4K
Z0yx9L4vsobGdnE7cA8gjt+19d0i0xEtZ6XwTmV/yJuc2OXUoeiL3TEYF6K4E03l
p/XNY0yjXbe0lGz92WchyocygzDOqEFDbAHwbyXYp70xIsUF/O8ogaI1Lyl/Ndqn
5lZoDPO9vGJAtz17XmyvLmkR7MEM7aaOfG+DeFDNz6GXeqGY4f3GnvDjCjnLjm6D
tI8rurl4mCL4N++D2Sqn+NYkWwuMNGCwkPTiDxN/xaSvArZge//1d80RCRukR8mc
8/RH2F3cZx92DA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:10 2025 by rpki-client