Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: MUaQmkxszCrX9N2Kun7PRY+ZI6eR7lrBrr0aWQwrB/M=
Subject key identifier: A0:B5:27:EE:39:27:79:D0:F1:48:46:EF:4D:23:82:49:AE:85:DC:C3
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 01967642FDFA188BC2DEC73D37C4CBBFA058
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0C94
Signing time: Sun 27 Apr 2025 08:00:23 +0000
Manifest this update: Sun 27 Apr 2025 08:00:23 +0000
Manifest next update: Mon 28 Apr 2025 08:00:23 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: qCbv0ODsXNDknSDOntJ3yg2N9VUYFO2ZpYbYjq8HkZM=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:42:fd:fa:18:8b:c2:de:c7:3d:37:c4:cb:bf:a0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Apr 27 08:00:23 2025 GMT
Not After : Apr 28 08:00:23 2025 GMT
Subject: CN=a0b527ee392779d0f14846ef4d238249ae85dcc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0e:3d:b6:0d:f3:42:54:30:ae:c3:6d:c0:24:
ad:85:a5:1a:e4:63:72:78:3b:b0:8d:b9:00:78:0c:
6c:5a:df:43:9d:36:cc:dd:0a:0e:2f:84:d1:e8:dc:
6a:1e:99:30:1c:ab:73:7f:88:eb:9a:e0:fb:df:f6:
0b:4c:0a:6b:3a:f1:98:8c:7c:a5:d6:94:cb:29:f6:
6b:0b:6e:13:82:a0:6d:d8:db:f6:77:ba:f3:66:59:
bf:a7:08:e2:e3:fa:1c:09:d3:7e:ac:0a:09:77:20:
a1:93:6e:b4:5f:9b:2d:8d:38:06:c1:b8:74:6f:46:
19:5a:3f:c8:f8:cf:6b:e5:7b:e2:95:3b:8b:d4:4d:
d7:67:6f:2a:2a:0b:95:9c:43:da:ae:21:ac:10:63:
6c:c6:c9:f3:91:a4:55:38:da:82:b0:aa:50:e5:e7:
01:8b:11:7b:1b:ed:e6:79:4b:5a:a1:a4:c0:2f:c2:
0c:71:1f:50:a5:44:ab:1b:a8:fd:17:57:67:32:be:
65:f1:3d:15:ee:ab:0b:60:7f:74:9a:f1:43:5d:5e:
d2:a1:c3:f3:71:20:e1:90:29:75:0d:08:87:bd:10:
e1:2f:66:7b:44:c2:2e:06:60:51:d7:c5:a4:fa:3d:
66:bf:41:38:d1:5d:d6:53:76:c9:fb:c5:03:61:e9:
38:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B5:27:EE:39:27:79:D0:F1:48:46:EF:4D:23:82:49:AE:85:DC:C3
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:87:2d:d5:20:a1:43:e0:41:8c:be:3b:cf:4b:bd:f9:17:f0:
ee:e4:df:27:a5:eb:31:77:cf:55:f7:da:86:f7:b9:4b:40:52:
dd:e3:2c:96:9b:a1:5b:93:be:c1:2b:67:62:bf:63:7e:5d:2e:
23:02:12:3a:24:d0:e5:6a:9f:34:dd:72:f6:79:ea:20:31:a5:
ac:f7:71:4b:78:0e:36:e3:f1:b0:1c:2a:7b:ef:89:d6:42:e9:
14:51:14:08:6a:87:7f:2b:64:45:d9:62:bc:d5:36:47:48:18:
b1:a1:5a:67:4f:af:38:87:4d:d0:2b:27:b7:42:2d:f3:8d:62:
70:81:9a:ae:22:fc:55:8b:a8:5c:fa:b8:67:f1:38:6a:2a:63:
cb:77:00:6f:07:55:b7:ea:2f:62:4e:ff:0c:0f:d9:a8:9b:8a:
b1:73:33:cf:f5:64:59:38:6c:ca:cd:22:63:4e:88:69:df:7b:
d2:af:aa:83:2a:f1:02:16:ac:1f:4a:92:ae:a3:37:9c:c4:7f:
37:1b:ae:ba:73:a6:1a:a6:17:56:c9:cd:2c:ae:96:5d:7c:f0:
18:89:54:ad:59:71:8c:58:64:42:2b:6c:9a:8c:e0:67:46:e8:
18:f1:83:e9:36:80:5d:57:9c:ad:1a:86:cd:36:75:43:81:db:
30:15:bf:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:58:18 2025 by rpki-client