Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json)
Hash identifier: I2vRnaKir/hwxHQBalEWZKYuBRhP/eDO1RKMCBhIgsc=
Subject key identifier: 62:38:A4:3D:57:AF:E1:FB:7A:39:35:2A:BB:A4:95:E8:0C:A6:AB:88
Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Certificate serial: 019748FA66AA311D267DBEEB4AAD08524CFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
Manifest number: 150D
Signing time: Sat 07 Jun 2025 06:00:59 +0000
Manifest this update: Sat 07 Jun 2025 06:00:59 +0000
Manifest next update: Sun 08 Jun 2025 06:00:59 +0000
Files and hashes: 1: AJvWKjlfflZ9cQofDD0ppbseZLQ.roa (hash: VGiicvrQITfBrX3SAtjyhR6B6SA41PSS6lItKnKTNYo=)
2: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: gt14i2vcQsIBUSbgzlzVoOPsme8Ga5XVKiQahQI+bBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:66:aa:31:1d:26:7d:be:eb:4a:ad:08:52:4c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193
Validity
Not Before: Jun 7 06:00:59 2025 GMT
Not After : Jun 8 06:00:59 2025 GMT
Subject: CN=6238a43d57afe1fb7a39352abba495e80ca6ab88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:33:ca:85:6b:dd:f6:75:17:33:89:92:90:3f:
51:09:29:28:7e:ff:94:4b:21:87:8d:aa:ac:dd:02:
17:4f:1f:da:6d:95:62:66:e1:6f:c1:07:ed:08:f1:
d0:a3:bf:12:8f:c9:02:66:ff:2f:44:66:22:67:19:
75:a7:b3:64:06:15:b9:d7:1e:57:db:e2:0f:3b:c0:
65:84:4e:1c:3f:95:09:19:3e:db:92:74:a7:e2:0a:
5d:47:66:fb:99:9a:d6:5d:17:08:2f:70:9a:a8:0a:
43:1d:39:ff:06:90:84:0d:5e:5a:70:f5:67:3c:79:
8a:2b:5d:69:7e:5b:32:a8:75:7f:11:0a:ff:ee:7b:
74:c8:23:2f:72:26:0f:40:bd:68:58:55:ad:89:b1:
e7:36:d5:41:39:5f:ae:fc:51:60:8e:fe:92:42:1d:
a5:bc:b3:89:16:31:9d:54:a2:ad:7c:e0:b1:a8:e5:
7c:de:f1:29:14:40:c0:8f:7f:04:d7:26:01:e4:29:
a5:45:55:f9:2a:41:f9:bb:2b:f7:54:0f:4e:0a:0d:
dc:ab:03:52:22:7c:52:71:93:c2:80:b2:14:5a:d3:
45:b1:e7:5c:65:43:e9:a5:7d:12:db:c9:af:fd:3c:
a2:01:85:e1:96:54:79:c6:be:c3:5c:13:fb:70:bf:
3b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:38:A4:3D:57:AF:E1:FB:7A:39:35:2A:BB:A4:95:E8:0C:A6:AB:88
X509v3 Authority Key Identifier:
keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:01:3b:0a:4b:d9:0e:0a:df:01:93:24:3a:69:b8:b1:1e:60:
40:8c:3e:84:bf:17:8d:53:fe:fa:cf:5a:98:93:59:e0:60:0f:
fe:61:57:cf:6b:1e:be:25:fa:ff:df:88:cf:e4:9d:18:db:76:
29:41:a3:0a:ad:c0:53:28:ab:8e:64:9c:75:66:8c:5f:5d:94:
79:16:c7:a6:7e:ef:db:69:9e:1a:8c:9c:70:b9:2e:7d:d8:a8:
50:75:89:0d:f0:9c:9d:05:ab:6c:0d:ef:03:9d:2d:8c:1a:e7:
c7:56:5e:f7:73:2e:54:8a:cb:f3:18:2c:ad:58:c1:52:e8:41:
e3:f7:29:68:ee:9b:4a:73:8c:80:bf:69:33:89:82:50:56:02:
21:27:f2:27:cb:67:9a:19:2c:d4:fc:d9:18:de:51:c3:d6:3e:
c8:24:1f:64:f7:96:ee:8a:93:f1:69:41:84:db:1e:86:d4:9b:
7b:71:84:e6:b3:21:e5:51:e4:96:54:25:ff:0a:fb:77:9f:e0:
45:3c:0f:f0:86:d2:58:85:aa:35:fa:72:7f:b0:3d:8d:3e:39:
21:4b:bb:7f:40:2a:6e:e8:f4:3d:30:3e:18:d9:fe:bc:cf:47:
bb:fd:d2:93:84:59:77:6e:64:60:78:37:64:1b:a0:04:86:42:
43:e5:64:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+maqMR0mfb7rSq0IUkz+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYTU1OWQ4YmY2YWMyZDg2OGQwNjY1YWQ1N2QyYzZhYzE0
NzIxOTMwHhcNMjUwNjA3MDYwMDU5WhcNMjUwNjA4MDYwMDU5WjAzMTEwLwYDVQQD
Eyg2MjM4YTQzZDU3YWZlMWZiN2EzOTM1MmFiYmE0OTVlODBjYTZhYjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjPKhWvd9nUXM4mSkD9RCSkofv+U
SyGHjaqs3QIXTx/abZViZuFvwQftCPHQo78Sj8kCZv8vRGYiZxl1p7NkBhW51x5X
2+IPO8BlhE4cP5UJGT7bknSn4gpdR2b7mZrWXRcIL3CaqApDHTn/BpCEDV5acPVn
PHmKK11pflsyqHV/EQr/7nt0yCMvciYPQL1oWFWtibHnNtVBOV+u/FFgjv6SQh2l
vLOJFjGdVKKtfOCxqOV83vEpFEDAj38E1yYB5CmlRVX5KkH5uyv3VA9OCg3cqwNS
InxScZPCgLIUWtNFsedcZUPppX0S28mv/TyiAYXhllR5xr7DXBP7cL87yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGI4pD1Xr+H7ejk1KruklegMpquIMB8GA1UdIwQY
MBaAFB6lWdi/asLYaNBmWtV9LGrBRyGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEt
NWZmY2M0NmFlN2I1LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEtNWZmY2M0NmFlN2I1
LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADAE7CkvZ
DgrfAZMkOmm4sR5gQIw+hL8XjVP++s9amJNZ4GAP/mFXz2seviX6/9+Iz+SdGNt2
KUGjCq3AUyirjmScdWaMX12UeRbHpn7v22meGoyccLkufdioUHWJDfCcnQWrbA3v
A50tjBrnx1Ze93MuVIrL8xgsrVjBUuhB4/cpaO6bSnOMgL9pM4mCUFYCISfyJ8tn
mhks1PzZGN5Rw9Y+yCQfZPeW7oqT8WlBhNsehtSbe3GE5rMh5VHkllQl/wr7d5/g
RTwP8IbSWIWqNfpyf7A9jT45IUu7f0Aqbuj0PTA+GNn+vM9Hu/3Sk4RZd25kYHg3
ZBugBIZCQ+VkSw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 16:32:37 2025 by rpki-client