Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: 5+VczXHdJilNKRTzvQ+lmG9v4oCbhDomL9JjT3McKzk=
Subject key identifier: DE:F9:B3:4D:0A:EB:2C:03:AF:9D:49:58:80:D2:FC:89:E4:12:C1:36
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 0197722D2CD040243ED7F75721FB20A5515E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 0952
Signing time: Sun 15 Jun 2025 06:00:52 +0000
Manifest this update: Sun 15 Jun 2025 06:00:52 +0000
Manifest next update: Mon 16 Jun 2025 06:00:52 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: Dee5lK0sXp0edqEA0fViNnNNLp21PS+OjVes97l2En0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2d:2c:d0:40:24:3e:d7:f7:57:21:fb:20:a5:51:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Jun 15 06:00:52 2025 GMT
Not After : Jun 16 06:00:52 2025 GMT
Subject: CN=def9b34d0aeb2c03af9d495880d2fc89e412c136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:95:ee:15:c9:78:b9:42:04:63:ea:0f:5c:13:
ab:81:c1:c2:a4:13:29:87:14:e2:71:a9:e3:99:dd:
c2:f1:97:4b:9f:da:0d:6c:20:b7:f8:b1:1b:00:66:
56:c2:62:e7:2b:94:4c:2d:c0:92:76:49:cd:99:26:
96:18:e0:02:0a:34:ae:65:02:39:a0:09:45:ae:f6:
b2:3c:3a:43:b6:29:cf:61:94:7a:0d:40:1e:0f:e0:
d6:8d:22:b5:1d:37:35:01:53:e5:a4:ce:eb:2f:c2:
78:b8:02:6e:bf:d8:1a:73:26:1e:0d:9a:e9:e1:2b:
2d:b5:64:9f:3b:4e:2e:fa:ae:56:63:70:e6:8c:87:
7f:0a:0e:02:86:81:e3:b3:50:92:bb:4d:95:30:ca:
0e:c3:92:6f:71:54:c2:e2:a0:56:b8:42:20:bc:a7:
9d:86:38:47:d4:8a:a6:96:04:39:52:78:eb:27:b7:
ff:1c:a1:7b:67:5c:d4:8a:eb:d8:f3:ff:44:25:05:
c3:1c:7f:1a:4f:5a:04:14:c1:6c:d0:8a:56:a7:f4:
7f:b1:53:c2:77:08:b7:de:e0:f2:2b:53:f0:eb:37:
42:ff:24:bb:8a:8f:2e:11:c7:3f:7d:c7:74:63:2a:
1b:ac:4d:f2:88:30:66:c2:a7:3c:8b:13:e3:33:f5:
4a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:F9:B3:4D:0A:EB:2C:03:AF:9D:49:58:80:D2:FC:89:E4:12:C1:36
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:a9:2a:f7:e9:23:09:b1:d5:20:fa:dd:94:29:f9:89:5d:3e:
42:c7:c4:fe:c3:cb:f4:e4:e5:a1:2f:12:a5:7e:39:9f:25:ac:
49:e3:d4:e9:23:c7:43:df:d2:61:f3:2d:70:07:17:e8:9e:f7:
9f:2a:df:32:1f:e2:94:db:c9:1a:d4:eb:c0:e1:b0:50:bb:17:
11:eb:27:f0:99:82:34:8c:bc:85:1b:a6:fb:cb:ed:7d:70:83:
ef:78:0f:c0:b4:23:2f:35:20:75:cb:ca:2c:f3:a3:99:e1:d4:
e4:29:29:fc:ff:0b:97:bb:19:c0:c0:e6:8e:46:a4:01:de:54:
03:0d:6c:02:41:76:79:50:e1:32:8e:42:e2:38:26:76:90:7c:
7c:9b:41:c6:11:56:a9:c0:bf:20:1d:82:aa:38:3b:d6:91:c9:
3e:2d:e4:33:f0:11:39:c5:f1:97:bb:46:79:e0:0e:e6:21:4e:
07:aa:4f:7f:19:5b:09:e1:1b:c2:e6:b4:81:11:1e:b5:43:cd:
3c:04:34:95:d8:1c:50:e4:be:f6:a1:59:05:c8:d5:17:c4:85:
f2:b2:05:9e:3d:46:ff:89:9f:56:82:c6:ff:d3:33:85:16:a1:
7a:fd:49:e6:4e:52:34:c2:0c:7a:c2:21:68:c0:4f:8c:d5:98:
55:a5:cb:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:15:40 2025 by rpki-client