Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: 0dfEtcLXivQR90L16hguSmmSdX0rA29lLVadyipVnM8=
Subject key identifier: 1F:85:B8:3B:4E:16:A3:B3:4D:3F:AA:F2:46:14:FA:1A:91:CD:47:05
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019675309D9A7836F9F4AFCB278E19A355A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 08CF
Signing time: Sun 27 Apr 2025 03:00:42 +0000
Manifest this update: Sun 27 Apr 2025 03:00:42 +0000
Manifest next update: Mon 28 Apr 2025 03:00:42 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: iDISlMl+jtGPbUb66DN00o2XwYFjbozyo7A/APzK9nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:9d:9a:78:36:f9:f4:af:cb:27:8e:19:a3:55:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Apr 27 03:00:42 2025 GMT
Not After : Apr 28 03:00:42 2025 GMT
Subject: CN=1f85b83b4e16a3b34d3faaf24614fa1a91cd4705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a2:36:0e:fe:4e:7a:6c:53:78:d6:7b:20:27:
56:fb:51:15:ed:bc:c8:b9:ee:57:76:bc:49:b4:8e:
a4:59:b6:a7:38:3b:ae:f6:ea:93:f8:27:6a:d9:b9:
c8:f7:bf:4d:27:33:15:a1:e2:85:44:f7:53:1b:70:
e3:1c:8d:e8:d9:d3:fc:d6:de:8f:81:b4:50:39:ad:
d4:d7:39:10:7f:94:e7:37:a9:46:45:a0:52:c6:59:
a1:4d:b0:52:bb:9f:9a:33:a4:49:09:bc:20:8e:70:
26:73:0b:b9:f2:7c:45:e9:09:7e:c5:b7:6a:f6:e2:
ab:ac:e9:cf:9f:83:98:b5:e2:2d:31:21:18:45:07:
7b:ba:2b:71:b9:ab:36:0f:4b:0a:e3:4f:b6:c6:1b:
89:70:d7:d2:06:b7:11:53:c7:39:12:aa:4b:ac:b6:
de:c6:d5:4d:62:ac:b1:b8:dc:10:a3:e4:08:c3:41:
d3:67:5b:51:5e:7f:6e:77:58:f0:68:5b:29:9d:f7:
ae:97:54:e6:8a:eb:b1:87:ab:98:c3:22:db:2c:c7:
9b:3a:1a:75:4b:30:4f:99:cc:f4:89:97:e8:44:e8:
61:c0:77:28:6f:6d:87:1c:c2:7d:c1:a4:96:ca:84:
96:eb:b5:14:9e:85:83:fe:bb:a7:76:86:41:47:88:
3e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:85:B8:3B:4E:16:A3:B3:4D:3F:AA:F2:46:14:FA:1A:91:CD:47:05
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:36:29:9a:33:35:c7:35:ad:07:19:74:39:86:b3:f5:a6:ef:
e3:88:60:16:3b:0d:90:74:3e:a2:93:37:a7:0a:98:09:66:4a:
1d:e9:88:dc:49:6e:3f:6d:4d:7f:9c:b4:4f:c9:c7:4c:2c:8d:
90:ca:d2:35:3f:9d:f0:bd:06:4b:f4:bf:ca:34:a5:af:d8:28:
af:dd:a4:c4:e2:fb:78:64:2e:c6:fd:5f:95:df:6a:cd:e6:9a:
4d:00:db:36:cf:6d:75:fc:ff:ec:ab:0a:37:e8:c0:54:39:50:
7d:50:bb:89:ad:d2:1f:eb:14:0f:a0:0b:16:cd:ca:51:0a:5f:
f1:46:c3:c7:f2:56:f6:c3:85:d5:75:b1:f1:09:18:2e:0e:67:
3b:99:4c:f1:4b:c3:02:08:cc:19:e2:25:29:c8:1a:9c:8a:e1:
dc:b7:93:30:fc:13:2e:a0:3a:6a:6b:ee:43:51:ad:3c:d5:13:
4c:10:9e:02:b2:98:c7:1f:ba:da:91:56:1b:dc:f4:5f:37:1d:
4f:c1:40:a2:88:6a:69:bb:fd:f8:6c:4f:84:73:7f:26:49:26:
6c:1e:9c:55:6b:50:ea:40:0e:f8:5b:6f:eb:e4:16:04:c2:1f:
09:03:6a:8b:c5:b4:cd:5a:a3:bc:7c:b2:45:1d:b8:e0:14:da:
97:3c:4f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:41:57 2025 by rpki-client