Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json)
Hash identifier: aiZZvhA5pfGysGp2v5GMK+rIa1eZHsa9T9Rc2uFdgZA=
Subject key identifier: 45:E8:A7:D6:C3:50:CE:AD:EF:2E:8C:66:45:22:1B:AD:70:48:A3:8A
Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Certificate serial: 019676435181331110E9BB22248A77B44FD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
Manifest number: 90
Signing time: Sun 27 Apr 2025 08:00:45 +0000
Manifest this update: Sun 27 Apr 2025 08:00:45 +0000
Manifest next update: Mon 28 Apr 2025 08:00:45 +0000
Files and hashes: 1: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: NYHG0VPwyP1Jx7iU4hRnch4KHNswvrW4z5ERO3Pp414=)
2: oc5FnjZHQbJL1Ibu8H1TNjc1eIc.roa (hash: bAkVUMLAu0PlBfnhDQgvC3qhQHCdqHrsGFxHYMF35cs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:51:81:33:11:10:e9:bb:22:24:8a:77:b4:4f:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d
Validity
Not Before: Apr 27 08:00:45 2025 GMT
Not After : Apr 28 08:00:45 2025 GMT
Subject: CN=45e8a7d6c350ceadef2e8c6645221bad7048a38a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e5:ec:44:c3:c0:b0:4e:d7:a7:53:d4:d0:e6:
c0:75:2f:98:5a:2e:90:75:17:ab:37:6a:a7:0a:75:
97:1f:3e:11:2a:ff:88:6f:cb:2d:0a:bc:e6:94:c2:
90:f8:1b:83:ed:b8:1c:c4:bc:7d:f9:e1:b7:c0:78:
3e:c8:ee:ec:7c:28:a9:75:07:32:d9:49:cc:5b:f8:
26:03:1e:db:d4:69:97:c3:59:30:e6:e1:6a:e0:95:
17:db:68:f6:f3:e1:98:9d:23:90:54:c9:24:10:2b:
e2:98:49:1f:5f:46:0b:2f:28:16:32:07:26:33:85:
40:82:d3:2d:c0:19:72:95:12:ec:9e:8f:aa:9e:47:
86:52:c5:41:ef:ef:53:82:ee:43:f5:10:f3:ab:50:
b1:c2:7f:f1:21:fd:aa:71:69:e0:76:83:26:82:f3:
d5:e4:51:ff:bd:3e:72:91:03:a5:9f:2b:bb:ff:7a:
ea:70:77:4f:c7:d9:18:20:87:dd:f3:71:23:92:75:
27:99:a1:cb:33:32:e9:6d:e3:c2:74:a5:30:ed:a3:
e9:89:6b:05:56:56:20:65:62:d8:e1:55:6d:f2:65:
fd:5c:14:fe:22:8d:2c:42:81:87:4c:cf:c8:4b:94:
d2:ab:08:4b:84:fd:31:56:be:be:0a:ee:76:88:1b:
e7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E8:A7:D6:C3:50:CE:AD:EF:2E:8C:66:45:22:1B:AD:70:48:A3:8A
X509v3 Authority Key Identifier:
keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:dd:69:3d:0a:e2:e3:0b:94:85:ff:0d:a0:c3:b6:a4:3f:66:
05:09:c7:90:fd:96:df:51:df:ce:29:e1:f6:bf:13:bf:a2:e3:
60:a5:9f:5d:6a:1e:9c:7b:95:b1:84:c3:f4:ac:33:6e:4f:f6:
68:b2:cf:f8:40:a7:8e:52:af:ed:51:c6:37:ea:9a:b6:76:06:
13:4e:fb:0f:e8:89:6a:87:04:09:e2:e1:bb:ec:33:df:de:b5:
5b:19:c9:c3:4f:1d:17:2f:03:c5:3a:cb:ab:f7:6e:af:c9:4b:
75:b7:53:9a:2d:50:8f:0e:22:80:3d:6c:32:80:02:74:c4:d5:
9d:72:4f:b4:c2:e8:42:b7:c0:bc:a6:3c:6d:e2:ad:25:37:d2:
f4:89:02:58:6a:d9:f6:58:9d:96:b2:d5:22:c6:13:c2:61:a3:
c9:33:34:b7:00:d3:22:f4:6d:c7:a0:a4:41:ac:86:16:2f:76:
e3:4c:4d:84:07:26:85:5c:e4:3f:fe:06:f6:5f:a5:3d:a2:47:
93:9b:35:55:d2:31:75:e8:14:27:a5:96:d7:82:68:69:84:2e:
1f:4b:88:8f:18:39:63:4e:d4:57:b3:01:5b:81:49:9c:06:7e:
4c:7c:fa:4a:f7:b1:9c:89:d6:02:5e:c5:5c:fe:f9:38:56:99:
b4:75:e9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:54:44 2025 by rpki-client