Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: Np+hTrnwSDqHnDhAlD4V7SOGD6O2b5NSMn0JsrwXePQ=
Subject key identifier: 8C:FC:E4:D7:9C:E5:2D:94:FD:2D:C1:53:1C:58:99:CD:7D:38:15:F6
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 01967F7D29A5285D65153398BFFC4F5F4525
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: BC
Signing time: Tue 29 Apr 2025 03:00:31 +0000
Manifest this update: Tue 29 Apr 2025 03:00:31 +0000
Manifest next update: Wed 30 Apr 2025 03:00:31 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: 9Y034bj/BjiYlWjBJj0FiQB2M/d80NGPFNBCwo8sAO4=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:7d:29:a5:28:5d:65:15:33:98:bf:fc:4f:5f:45:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Apr 29 03:00:31 2025 GMT
Not After : Apr 30 03:00:31 2025 GMT
Subject: CN=8cfce4d79ce52d94fd2dc1531c5899cd7d3815f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4b:63:5b:ac:8c:2e:b1:a3:40:c3:bb:81:26:
9b:8c:04:a7:19:38:37:3a:17:c6:94:6b:49:97:d5:
fc:29:d5:75:94:fb:f7:66:6e:26:28:58:f9:85:35:
68:c6:5b:c7:43:a2:7c:a5:95:1f:99:67:eb:65:53:
c5:00:1f:aa:e0:1f:8c:32:cb:5a:5c:8d:19:4b:9f:
ab:3c:c3:c3:42:54:0b:bd:0b:65:86:27:c8:3b:b3:
39:62:8e:38:38:8a:e1:c0:e4:ce:a8:01:a1:e1:39:
3e:f7:14:26:b4:8c:29:5c:85:88:52:6f:0a:5e:3d:
4a:91:55:29:74:6c:fd:96:38:0c:60:53:3f:41:ae:
0f:41:98:15:cf:99:8b:73:98:a0:be:e2:e9:c5:e4:
9c:c6:82:c8:45:c0:47:7f:7e:43:69:89:dc:fa:7c:
44:7c:66:5f:7e:ce:e2:ac:fc:4a:8e:bc:0e:a3:b5:
91:12:5a:93:a5:f3:3b:4d:75:10:3d:14:11:f5:be:
18:65:86:1e:04:f1:eb:4f:76:9e:24:cd:e7:72:12:
a8:b5:b5:6b:b2:49:b4:e4:c4:aa:40:db:92:31:cf:
40:41:1e:71:14:1f:61:f8:fb:d8:dd:25:5f:3e:f1:
55:9c:9a:71:dc:86:98:cc:84:03:75:95:63:fb:cc:
6c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:FC:E4:D7:9C:E5:2D:94:FD:2D:C1:53:1C:58:99:CD:7D:38:15:F6
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:01:3e:98:5c:b6:3c:f5:57:0f:08:43:f6:0f:9e:fd:9c:40:
97:9c:e7:57:dc:53:84:5d:a3:6d:f3:3f:81:67:7a:37:14:88:
dc:7d:6e:61:31:2b:5a:50:cc:1e:21:10:70:f3:2c:93:63:ec:
a5:bc:59:78:71:1b:b5:4e:5f:a3:00:f9:f8:6b:11:a6:cd:f8:
71:be:6e:ea:9d:fe:db:e0:98:32:2b:87:18:30:cf:2a:39:4b:
2c:b1:5f:28:9a:27:c1:80:f2:a2:8a:2c:c7:3d:1a:5a:b4:bd:
69:9a:5c:15:e1:de:85:76:15:68:03:15:a6:1e:06:6a:2b:aa:
fe:01:2a:81:eb:2d:61:ad:84:02:a2:da:45:bc:1e:fc:5d:87:
89:54:63:fd:8e:87:77:90:92:9a:27:58:cf:bc:18:96:4d:0a:
5a:eb:91:a2:7f:0c:df:ef:e8:cd:ce:17:12:ef:ad:97:2c:b9:
ea:34:66:f7:43:7c:0a:9d:60:0f:35:ee:54:e4:f2:43:83:d7:
5a:ed:de:f5:70:09:1b:cb:65:aa:77:8e:2d:52:77:50:09:48:
57:d1:e0:3e:92:1f:8b:07:28:4d:de:55:26:d8:f3:2d:4e:51:
0f:2f:b8:4a:3e:fd:fc:40:8d:f6:41:ea:36:f7:71:f7:69:f9:
8c:6d:b6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:27:02 2025 by rpki-client