Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft
File: Hms-F_m50MMT0FMCNCUnWydF_IM.mft (raw, json)
Hash identifier: gL4P5EIvG7VMADLdbDvm6Vw1fpsZuRCcFNwB658iSAY=
Subject key identifier: DF:93:F3:57:FA:7A:55:54:85:B6:9C:80:DB:78:D9:9E:69:93:A3:B2
Authority key identifier: 1E:6B:3E:17:F9:B9:D0:C3:13:D0:53:02:34:25:27:5B:27:45:FC:83
Certificate issuer: /CN=1e6b3e17f9b9d0c313d053023425275b2745fc83
Certificate serial: 01967A1FAD17CF3625DA822FC22A468776A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hms-F_m50MMT0FMCNCUnWydF_IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft
Manifest number: 14A3
Signing time: Mon 28 Apr 2025 02:00:18 +0000
Manifest this update: Mon 28 Apr 2025 02:00:18 +0000
Manifest next update: Tue 29 Apr 2025 02:00:18 +0000
Files and hashes: 1: Hms-F_m50MMT0FMCNCUnWydF_IM.crl (hash: 5egBUY3aL1Pvmjaf0o70/CTYt52VEgwF2tTZqODPIC4=)
2: UdTz9ESnCBONhFhPnKTJSPAPKew.roa (hash: 0eKPRYHWi1Fk+s60KVEthvqfye7EFF2oFsVLARt647E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hms-F_m50MMT0FMCNCUnWydF_IM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 02:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:1f:ad:17:cf:36:25:da:82:2f:c2:2a:46:87:76:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e6b3e17f9b9d0c313d053023425275b2745fc83
Validity
Not Before: Apr 28 02:00:18 2025 GMT
Not After : Apr 29 02:00:18 2025 GMT
Subject: CN=df93f357fa7a555485b69c80db78d99e6993a3b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0e:a3:c3:50:21:78:b1:a9:8f:9e:f0:94:4d:
6b:62:61:95:e0:61:5a:4a:57:d8:de:48:d3:60:61:
b1:ee:1e:27:fc:ed:81:0b:14:4d:b2:bf:ad:68:f8:
13:84:14:82:d2:f1:44:52:9c:af:80:0e:c3:d5:1d:
29:78:60:3a:db:a6:73:39:6a:d0:83:6e:7d:b0:65:
a2:0f:61:4e:cf:42:61:6b:0d:e3:69:57:48:45:9b:
57:af:6d:a9:79:73:90:b3:bd:b0:6c:1c:3b:18:a5:
15:aa:26:e6:55:1e:2d:9e:94:31:65:4e:84:b0:e7:
c9:93:cc:60:76:6c:db:c3:a6:5d:e6:23:cb:1a:65:
c8:15:5b:4d:d8:a5:31:c3:b1:14:95:7a:3a:70:f4:
7e:25:e8:94:ea:ec:21:1f:fe:a2:a5:97:f1:90:1a:
1a:19:e1:85:11:51:d1:75:40:a7:2e:a0:07:0d:34:
d1:1a:7f:90:eb:ef:c3:f8:b1:1e:9b:b7:a4:98:56:
8e:3f:f9:e8:77:cb:df:25:5c:84:0f:88:d2:57:a4:
6a:0a:80:7f:15:b9:d2:1c:b1:2b:4b:f6:64:6a:be:
7a:4f:cf:6d:12:83:79:e8:a1:e9:14:10:74:c3:79:
37:f6:8c:cb:64:d6:db:c4:d2:f2:e5:91:8f:a5:81:
9d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:93:F3:57:FA:7A:55:54:85:B6:9C:80:DB:78:D9:9E:69:93:A3:B2
X509v3 Authority Key Identifier:
keyid:1E:6B:3E:17:F9:B9:D0:C3:13:D0:53:02:34:25:27:5B:27:45:FC:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hms-F_m50MMT0FMCNCUnWydF_IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ef:47:77:30:da:e6:11:54:75:d6:72:d7:a6:5d:1a:c8:39:
91:8a:ec:57:52:5e:14:f6:77:f1:09:f9:03:8d:f5:31:ac:ec:
49:2b:36:c8:8c:24:a4:35:34:79:22:27:c4:f8:1b:89:9d:82:
f9:6d:f0:ea:9e:9a:cc:17:0b:dd:67:95:e6:b8:86:93:a0:e4:
6b:e0:60:6a:11:e4:cd:71:7d:83:63:2c:4e:fb:2b:26:56:6f:
16:1a:71:9e:67:1a:f2:27:8d:e4:92:17:e1:ec:55:78:4a:bd:
bf:ed:d0:fc:df:9f:5e:a1:6e:a6:d4:40:52:ce:35:bd:a3:17:
ec:35:ed:b3:58:84:25:2c:82:1b:df:b8:79:37:85:f9:0c:63:
ed:19:41:23:d9:4d:56:7f:c3:85:de:12:18:b0:c0:73:25:58:
15:7b:aa:ec:94:ff:e0:83:cd:84:34:f0:e9:9c:42:af:6d:c3:
54:b5:a5:8a:d8:8b:b4:a4:a3:74:3e:10:a7:f7:c3:af:14:f6:
6a:57:1e:62:e7:51:43:45:75:ca:81:2c:e9:d3:04:9d:1b:bf:
11:c2:52:72:d7:24:9e:04:48:29:a2:a9:cd:fd:0d:37:01:cd:
b6:17:e9:47:1b:71:08:92:2b:1b:70:57:8c:90:25:fc:29:57:
b9:aa:b8:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:11:20 2025 by rpki-client