Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: DnUg0s68ESmMN/Pql9PlDcXLGPsxY0SyMn3HG5daPO8=
Subject key identifier: 88:F8:3C:6C:D8:16:68:5B:19:D9:57:C7:0A:21:33:B6:83:00:C2:B2
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 01967B32CE2B8DE541ACA6BFAAB51E11F353
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1520
Signing time: Mon 28 Apr 2025 07:00:49 +0000
Manifest this update: Mon 28 Apr 2025 07:00:49 +0000
Manifest next update: Tue 29 Apr 2025 07:00:49 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: /LCaEloRNtC6vqasRWmX/okP/PHrc/l1WKNAEAUT4m4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:32:ce:2b:8d:e5:41:ac:a6:bf:aa:b5:1e:11:f3:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: Apr 28 07:00:49 2025 GMT
Not After : Apr 29 07:00:49 2025 GMT
Subject: CN=88f83c6cd816685b19d957c70a2133b68300c2b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d2:90:f6:e7:08:a6:6a:c5:14:66:f5:19:08:
d0:80:87:77:87:a1:5c:08:07:d1:b3:55:8e:ec:48:
65:b6:53:34:76:7f:55:98:1a:64:c5:d4:6f:ec:16:
a7:f3:49:44:65:85:dd:af:39:07:cb:dc:2c:1d:5b:
bc:ab:6f:25:bc:c2:d9:29:da:cd:6e:ab:6c:10:cf:
3f:11:50:77:48:74:5c:f8:12:c5:22:67:48:9d:c1:
4f:4e:62:bb:58:90:69:f4:bf:f5:18:44:14:f5:ef:
2c:39:17:30:a0:c4:94:4e:90:13:e9:d1:78:a1:8b:
cd:12:3a:f5:d4:14:09:d3:5e:ef:8c:14:df:bc:c6:
52:41:00:72:c8:8e:b5:97:61:78:12:1b:d8:b4:f5:
76:39:44:a8:66:2b:60:05:4d:1a:fd:2e:70:dd:53:
0d:8e:d8:5b:20:9e:a0:33:98:d4:7c:2e:2e:be:1c:
86:c9:29:8d:91:3d:61:df:3f:58:f1:ba:ea:87:c6:
c1:30:18:0b:5c:46:da:74:e8:28:a4:e8:d5:c0:56:
7d:e7:1c:60:36:07:9c:30:38:41:19:c4:d1:0d:06:
12:69:98:39:1f:3a:d2:59:11:89:6f:5f:03:b1:6c:
b1:ed:83:80:66:e1:8f:9e:f4:b8:a7:92:0e:4a:d4:
68:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F8:3C:6C:D8:16:68:5B:19:D9:57:C7:0A:21:33:B6:83:00:C2:B2
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:4f:16:56:1d:cf:03:16:78:86:dd:e4:4a:10:54:17:33:a9:
33:7f:34:9e:a5:ee:e6:bc:a0:ed:fc:4a:55:8d:91:82:47:0a:
33:5f:7a:a5:81:c6:54:92:bb:28:52:f2:51:50:62:fe:ee:d9:
db:9f:b6:ce:7f:e9:8c:61:e9:ca:bd:8e:7d:6c:b7:e5:c5:54:
d9:fb:52:0e:d1:9f:bb:d9:8b:1f:76:46:17:13:23:48:14:30:
8c:e4:22:df:98:62:7d:c5:38:73:c7:c1:c4:a0:ed:6c:fc:3d:
ca:53:80:91:c1:1e:c3:68:83:00:ac:7c:39:69:56:fb:3f:24:
35:b9:ea:a9:5d:8e:1b:a9:f5:b1:2a:cb:d0:29:1e:f2:54:3a:
e2:74:9c:c0:0e:5c:52:1c:99:40:70:96:06:96:9e:0b:d6:69:
3d:a6:3e:02:bc:3f:21:e6:ad:dc:6f:dd:b7:cf:ea:9e:c0:22:
4f:53:65:a9:60:f1:84:4e:4a:0a:51:e6:d6:2f:ee:97:e6:45:
89:ae:cf:eb:c9:81:02:49:ed:d0:09:93:8a:37:ea:64:aa:95:
92:ff:ef:85:43:4a:ab:b3:00:6e:a1:25:2f:bd:32:1e:ca:58:
19:a0:8a:c8:11:64:7b:2f:fa:79:1c:43:18:e4:3d:2d:83:de:
d7:99:c9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:37:36 2025 by rpki-client