Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
File: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft (raw, json)
Hash identifier: O0ooc5mFq0rdMgVQo/FGZOJl13QDNJXTR+1JeHs26G8=
Subject key identifier: A6:7B:BA:B6:F7:E2:CB:3D:8E:8D:A7:7C:C1:14:AE:E5:41:97:DC:D3
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 0196778CEB4E4FD6029FBF48FD7EDCA46021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
Manifest number: 0A31
Signing time: Sun 27 Apr 2025 14:00:45 +0000
Manifest this update: Sun 27 Apr 2025 14:00:45 +0000
Manifest next update: Mon 28 Apr 2025 14:00:45 +0000
Files and hashes: 1: HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl (hash: dOqXM7SsIWX5vNllE6kgbyGmR0k/VVyo2raiUxpamMY=)
2: cnFeqHBw9aaza2RenBeNwJKndxs.roa (hash: kjgI4uTxYMi7MCfdj3M5XWKqSFRmZG0IxbqIvN1jC7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:eb:4e:4f:d6:02:9f:bf:48:fd:7e:dc:a4:60:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Apr 27 14:00:45 2025 GMT
Not After : Apr 28 14:00:45 2025 GMT
Subject: CN=a67bbab6f7e2cb3d8e8da77cc114aee54197dcd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:16:61:81:95:2f:a6:8d:f1:3c:18:13:49:e4:
2e:21:b7:79:ab:aa:b9:76:28:e4:4c:8e:de:1c:01:
66:79:fa:17:f5:0f:46:a2:7b:89:db:24:65:ae:09:
87:b4:51:bf:32:a4:b5:8e:00:94:ef:33:2a:11:c1:
d0:d4:c2:07:56:e7:46:9c:75:9e:e0:38:a2:51:f3:
15:24:3a:d4:4b:13:5c:62:7f:32:d3:4a:97:47:48:
59:b7:8b:08:cd:7e:ad:3c:61:c9:fc:d7:7e:19:e0:
b5:59:40:d7:d0:af:7f:e7:bc:1b:31:b3:42:1a:92:
b0:ba:2a:d9:84:91:66:1f:1d:b1:8f:aa:af:f0:2a:
b0:2a:84:ab:8c:bc:7c:d1:2c:f6:a3:69:01:41:8e:
2f:64:e7:a6:ce:4b:b6:0d:77:b1:4f:c3:b5:bd:a4:
57:20:86:46:24:1d:07:db:76:30:44:2f:93:50:7b:
bb:5b:5b:74:f9:00:ff:53:56:e3:ac:b5:28:85:84:
9f:7c:b1:25:89:e0:58:54:a9:6d:cc:60:c0:08:05:
e5:ff:67:2d:3b:23:6d:a5:19:46:ae:84:c6:4f:06:
27:00:71:d6:ca:51:f1:c9:f3:07:8a:5a:ce:a8:ed:
b4:16:c5:b3:49:21:1d:a5:f8:88:d5:f3:0b:5d:27:
95:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:7B:BA:B6:F7:E2:CB:3D:8E:8D:A7:7C:C1:14:AE:E5:41:97:DC:D3
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:84:3f:47:26:09:97:58:3e:77:63:3b:e4:47:1b:cc:a5:1e:
ee:1c:04:e5:9a:8f:cd:99:bb:d9:d4:e3:18:90:a4:95:6e:0c:
71:94:9a:c7:d0:42:b3:37:2c:2d:d0:de:7a:0e:f7:4f:1b:e8:
57:e6:3a:e3:ea:ab:e9:77:df:ce:af:2c:ff:0a:7b:1e:b6:94:
7a:95:dc:4f:1c:c3:01:93:ce:71:a2:94:f9:38:57:bf:79:fe:
e3:1f:d0:de:17:d7:8c:4e:08:23:18:70:a9:b3:ff:9c:4c:0e:
e2:da:77:12:9e:b9:ad:e0:aa:c5:8a:7d:9f:bd:b2:27:37:e1:
11:1f:61:50:5f:48:60:f6:6d:d8:0a:f9:1d:50:a2:50:88:15:
be:cb:3a:c8:65:b8:54:6f:17:95:c3:3c:00:3c:e7:5c:05:20:
d6:16:3e:a7:a2:ea:f7:bc:4d:4f:f6:be:f5:4a:c7:49:90:4e:
d2:53:8a:3f:7a:bc:72:1b:f0:ff:7b:8a:f3:b0:00:9f:b1:37:
65:a0:bb:12:23:d1:e9:73:d5:69:cb:8f:a7:3d:49:d7:0c:af:
a5:c2:78:26:bb:5a:e4:d0:bd:d7:61:7d:78:a3:33:05:d9:f2:
3e:80:55:6d:3d:07:e5:39:37:ac:f9:da:11:bd:bf:8f:b0:b7:
75:da:63:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:57:06 2025 by rpki-client