Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json)
Hash identifier: WpYT2QZz8fNR5OfZkOo7BO9t/YlRY7YKPx9mJqlBGRw=
Subject key identifier: 00:29:9A:D1:4D:6F:BF:2E:98:B5:70:2F:DF:63:C9:F6:3B:A7:17:AD
Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Certificate serial: 01974967E50A049974B81357758208F159B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
Manifest number: 7C
Signing time: Sat 07 Jun 2025 08:00:34 +0000
Manifest this update: Sat 07 Jun 2025 08:00:34 +0000
Manifest next update: Sun 08 Jun 2025 08:00:34 +0000
Files and hashes: 1: duguTeW8ErmRr7f5ZEryR3oV58E.roa (hash: q3OOsJ7Kv17p8ez5C5AQYcTLGWf82piJmxtRxe/QdaM=)
2: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: 6LjIEVojLoEkAwge8FZ/RnH8/x+S9QqK9+WkxfvHSmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:e5:0a:04:99:74:b8:13:57:75:82:08:f1:59:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998
Validity
Not Before: Jun 7 08:00:34 2025 GMT
Not After : Jun 8 08:00:34 2025 GMT
Subject: CN=00299ad14d6fbf2e98b5702fdf63c9f63ba717ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b3:ca:ca:63:22:ff:7a:ff:9b:2f:37:4f:39:
4c:c7:41:8c:07:2a:72:78:ed:12:a9:fd:82:24:ec:
ab:b6:f5:66:0e:75:56:ae:d0:d9:60:54:17:dc:70:
4d:ee:f3:af:a3:a8:87:40:f9:85:bf:b2:35:da:e6:
b8:33:0f:e3:9f:d2:2c:c7:32:80:da:31:12:92:b6:
22:41:e9:08:f7:8b:5f:fc:0b:a5:02:ed:1c:1d:02:
59:62:a4:f0:93:a6:7d:39:8b:fb:9a:36:22:e8:b9:
87:c7:1e:ef:9b:17:2f:af:39:c8:e9:1c:33:25:8f:
c1:74:f2:fe:12:30:37:78:4a:8c:41:6c:ab:af:c9:
9c:07:03:55:d4:a4:97:66:95:46:7b:f0:f6:d2:27:
c0:e8:55:c2:a1:9e:81:bf:2b:f4:84:c8:0a:5d:6e:
ab:f9:76:ae:ae:54:75:6d:94:e1:b7:38:e3:3d:a9:
5c:db:75:49:dd:12:9f:91:10:a1:c4:a2:d9:72:29:
38:1e:63:52:0e:d9:f9:3a:c7:ac:b1:05:c4:1d:a6:
9f:5d:d4:21:49:95:8f:b6:3c:60:26:f5:f2:e6:56:
5a:98:69:d5:d2:a5:b2:b9:ec:29:fb:ef:9d:5e:4d:
d2:a6:28:f6:6d:96:24:b4:f6:e5:3e:fd:1e:5e:7f:
81:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:29:9A:D1:4D:6F:BF:2E:98:B5:70:2F:DF:63:C9:F6:3B:A7:17:AD
X509v3 Authority Key Identifier:
keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:4b:9b:87:ab:38:36:7d:7d:5d:e2:13:79:7f:49:fd:8e:2f:
4c:f2:46:84:ea:63:65:73:20:9a:a3:d8:ec:9b:44:83:fa:05:
e7:45:8a:51:72:1b:a3:24:a5:22:ca:79:dd:4f:51:16:90:0f:
5e:fb:1e:dd:e3:88:fb:46:9b:fa:46:26:f5:b8:bc:64:d7:47:
23:b1:b0:31:a8:46:02:4e:61:ed:09:2a:2c:cb:74:5b:76:5f:
22:e0:e9:f2:aa:0b:83:89:0c:87:0a:12:13:59:ed:70:55:8a:
34:c9:77:ad:41:26:df:11:42:14:e2:0b:50:54:c3:e2:7f:48:
a3:4f:75:e8:16:5f:b5:9c:d1:07:c9:20:7c:32:66:bc:57:53:
eb:53:17:68:17:32:bb:f3:50:2d:2b:c1:11:e7:2f:aa:01:df:
14:8d:9f:84:90:a4:f1:cb:1c:0a:e9:81:e0:41:4f:da:f1:61:
53:61:aa:95:ea:af:05:b3:1d:08:82:81:e3:af:fb:98:51:49:
1e:ab:47:d8:d6:20:b4:3c:0e:c7:ca:f1:29:30:e1:26:39:b7:
e7:49:d1:46:b7:cf:7b:47:14:75:c7:02:43:4f:0a:1d:cc:a3:
8c:40:6f:fc:a5:ef:3d:42:79:2c:2c:a6:0e:b6:26:67:0b:f6:
75:bf:13:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ+UKBJl0uBNXdYII8VmyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OGIxMjk0ZDI3NjlmYTM3YjM0OGFjYzVkYWJmY2I4ZmU2
Zjk5OTgwHhcNMjUwNjA3MDgwMDM0WhcNMjUwNjA4MDgwMDM0WjAzMTEwLwYDVQQD
EygwMDI5OWFkMTRkNmZiZjJlOThiNTcwMmZkZjYzYzlmNjNiYTcxN2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprPKymMi/3r/my83TzlMx0GMBypy
eO0Sqf2CJOyrtvVmDnVWrtDZYFQX3HBN7vOvo6iHQPmFv7I12ua4Mw/jn9IsxzKA
2jESkrYiQekI94tf/AulAu0cHQJZYqTwk6Z9OYv7mjYi6LmHxx7vmxcvrznI6Rwz
JY/BdPL+EjA3eEqMQWyrr8mcBwNV1KSXZpVGe/D20ifA6FXCoZ6Bvyv0hMgKXW6r
+XaurlR1bZThtzjjPalc23VJ3RKfkRChxKLZcik4HmNSDtn5OsessQXEHaafXdQh
SZWPtjxgJvXy5lZamGnV0qWyuewp+++dXk3Spij2bZYktPblPv0eXn+B4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAApmtFNb78umLVwL99jyfY7pxetMB8GA1UdIwQY
MBaAFISLEpTSdp+jezSKzF2r/Lj+b5mYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2Mt
MGRiNzI1OWYyMGI4LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2MtMGRiNzI1OWYyMGI4
LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC0ubh6s4
Nn19XeITeX9J/Y4vTPJGhOpjZXMgmqPY7JtEg/oF50WKUXIboySlIsp53U9RFpAP
Xvse3eOI+0ab+kYm9bi8ZNdHI7GwMahGAk5h7QkqLMt0W3ZfIuDp8qoLg4kMhwoS
E1ntcFWKNMl3rUEm3xFCFOILUFTD4n9Io0916BZftZzRB8kgfDJmvFdT61MXaBcy
u/NQLSvBEecvqgHfFI2fhJCk8cscCumB4EFP2vFhU2GqleqvBbMdCIKB46/7mFFJ
HqtH2NYgtDwOx8rxKTDhJjm350nRRrfPe0cUdccCQ08KHcyjjEBv/KXvPUJ5LCym
DrYmZwv2db8TJA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:48:05 2025 by rpki-client