Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
File: HtVdI1ecZBJxVa72UGlueVMdUI0.mft (raw, json)
Hash identifier: W0IbZm0u21wY3OvQT+LpqZMHLK4FRn2uTJQLL3NGiso=
Subject key identifier: 10:D8:5B:6C:4C:9C:AB:EF:F8:6D:93:B7:C6:55:42:F0:90:14:1D:AD
Authority key identifier: 1E:D5:5D:23:57:9C:64:12:71:55:AE:F6:50:69:6E:79:53:1D:50:8D
Certificate issuer: /CN=1ed55d23579c64127155aef650696e79531d508d
Certificate serial: 019674F9E423FFEE42FDC3E058C12F1DFFDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
Manifest number: 115D
Signing time: Sun 27 Apr 2025 02:00:55 +0000
Manifest this update: Sun 27 Apr 2025 02:00:55 +0000
Manifest next update: Mon 28 Apr 2025 02:00:55 +0000
Files and hashes: 1: 6JyLUIA_3_F6lFc7OjrgVvilXiM.roa (hash: Uy0b+c0tNGh5Lnfz6gBjiWLD/+3F2702TS3OgZODmXc=)
2: HtVdI1ecZBJxVa72UGlueVMdUI0.crl (hash: P0dV/mPXsUt/pJeDwzpCB8knNWX+2TiftQYbNdM6YCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:e4:23:ff:ee:42:fd:c3:e0:58:c1:2f:1d:ff:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed55d23579c64127155aef650696e79531d508d
Validity
Not Before: Apr 27 02:00:55 2025 GMT
Not After : Apr 28 02:00:55 2025 GMT
Subject: CN=10d85b6c4c9cabeff86d93b7c65542f090141dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e0:44:4d:3a:45:70:58:45:c6:1b:1d:3d:8e:
7e:4f:ed:b6:97:61:ed:ee:e6:af:2c:61:01:dd:ea:
fc:25:fc:57:98:2e:fa:62:61:6e:1b:89:42:cd:a4:
1d:f3:80:8a:46:3c:3d:64:bb:37:b4:b6:b5:bf:6e:
f9:a5:00:ec:eb:6a:5f:da:d1:d5:cb:05:70:d8:af:
9f:7a:d9:03:9d:1a:a2:2f:70:f8:e5:e5:ac:48:c5:
39:c5:4f:01:3b:6f:fd:a6:59:1d:3d:d9:d7:94:98:
e1:b1:e6:28:3c:4b:51:60:4f:0a:77:f2:d7:e6:73:
ed:0b:8f:f5:43:33:66:b3:ce:cf:0c:ca:4c:a9:5a:
86:83:d4:14:de:9d:d6:24:4f:96:ac:a2:d0:2b:ac:
96:da:6a:e3:6a:87:48:f3:44:a7:dd:c5:28:2c:99:
95:45:71:87:45:48:a4:cb:67:39:9e:fb:67:64:f9:
39:b0:c1:78:83:5b:5e:0b:fc:f7:0a:7e:dd:7c:aa:
51:2e:17:3a:4a:ac:a8:15:cf:62:ee:5d:23:d3:6c:
76:04:86:73:cd:99:c7:91:fe:8d:bb:1c:6d:41:b4:
24:75:bc:9c:d0:fb:6b:88:2a:36:73:37:e3:fb:bf:
40:a0:fa:ec:62:1b:c3:b6:4f:12:91:54:5f:90:ba:
09:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D8:5B:6C:4C:9C:AB:EF:F8:6D:93:B7:C6:55:42:F0:90:14:1D:AD
X509v3 Authority Key Identifier:
keyid:1E:D5:5D:23:57:9C:64:12:71:55:AE:F6:50:69:6E:79:53:1D:50:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtVdI1ecZBJxVa72UGlueVMdUI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4fb274-d84f-4fba-938e-1e9ff91808c2/1/HtVdI1ecZBJxVa72UGlueVMdUI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:04:8d:17:7d:17:e7:17:ce:95:6e:16:25:a0:1e:5d:01:60:
b6:12:af:61:d5:49:d7:51:47:3c:62:c6:39:33:73:dd:c2:74:
70:c6:c4:6f:46:86:3a:06:03:37:c2:f0:00:8a:96:65:4a:72:
cc:13:85:38:b1:1d:61:87:c0:80:da:ee:a5:de:ae:93:39:43:
dd:f8:44:b3:94:e1:b9:15:84:ce:29:ec:b1:fc:00:95:a4:bb:
ff:05:1c:50:d2:0d:6e:2b:32:a7:b0:a1:6b:6b:af:76:ba:18:
57:65:66:46:ab:c1:93:22:76:72:dd:7e:4a:cc:e4:2f:b1:4a:
c1:11:c5:c3:23:7c:21:76:0f:8c:89:44:b3:cc:ed:e8:11:fc:
8b:be:c5:a3:6d:1d:7c:1f:d8:8c:58:a1:70:43:17:79:20:bd:
54:47:f8:bf:02:a2:4f:b9:f7:cb:57:58:be:7f:31:16:74:41:
2a:d9:ab:3a:7e:8e:f9:46:46:4e:0d:c7:f1:c9:6f:fa:2d:17:
35:cf:57:ca:40:7d:f8:a2:ec:99:b6:8b:3d:22:b3:a3:ad:ea:
7d:e6:13:ee:c4:25:64:f3:99:63:26:4f:65:a4:26:a4:07:25:
61:9d:ed:af:f5:d7:3a:5c:de:4b:49:64:7d:13:46:0d:37:34:
31:81:f4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:10:11 2025 by rpki-client