Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: kLGHQclZdb52PlYJD7rSY+HoAa91eoo4nyb9zvajqQw=
Subject key identifier: 3C:30:52:3C:60:A6:E7:BD:BB:6B:41:6C:55:E3:80:91:12:E8:1D:40
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 019677FAEDEEB0BE02A74FDCD4FBC4F51447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0806
Signing time: Sun 27 Apr 2025 16:00:55 +0000
Manifest this update: Sun 27 Apr 2025 16:00:55 +0000
Manifest next update: Mon 28 Apr 2025 16:00:55 +0000
Files and hashes: 1: 1GUi9iA8Rgrr5GN4QB6VlqMrvms.roa (hash: s/MIypH3pMJ3iuiuGr8K68PmgQyO6HFRzwvdBy3o4FU=)
2: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: cPbP3FCDHc0tQXJmlPODNnqJNE8+xlTkVnjCh2kCRC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:ed:ee:b0:be:02:a7:4f:dc:d4:fb:c4:f5:14:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Apr 27 16:00:55 2025 GMT
Not After : Apr 28 16:00:55 2025 GMT
Subject: CN=3c30523c60a6e7bdbb6b416c55e3809112e81d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a9:b7:51:ee:9f:21:8d:d9:b5:b5:0c:8d:07:
3d:77:bc:48:03:b2:05:b7:49:a8:e9:e4:f2:6c:27:
c4:be:ee:70:6b:56:84:ff:dd:1e:92:91:c5:4b:ed:
69:10:08:ae:04:cd:e9:9a:8d:60:1f:5d:89:18:46:
01:f2:60:6d:a2:e8:13:24:0b:7a:23:d1:07:00:2d:
eb:0c:5f:ee:67:89:fa:cd:a2:a9:03:16:4d:4f:ef:
47:bc:2d:72:69:4d:a3:43:ef:e2:13:5f:09:42:7e:
7e:36:de:9a:7c:11:f9:63:32:1b:a9:1f:7c:55:8c:
f0:ac:a3:b9:7a:8d:56:07:4b:ab:d7:5f:dc:77:08:
ba:66:6f:25:be:1d:00:52:45:6d:5e:8e:f5:52:f7:
b7:14:04:ba:59:02:2a:84:a3:6c:43:98:a0:ab:ec:
d7:30:35:f3:ee:db:78:08:ac:6d:bc:53:f5:f0:f3:
7d:eb:09:fa:60:e8:10:0d:ee:b5:87:16:37:8f:af:
a9:22:97:8e:d2:24:e7:04:c7:d4:2b:3d:c3:86:29:
94:5d:4a:a7:52:00:53:48:7e:3a:30:4b:0d:20:a4:
a6:d9:32:72:35:80:36:75:f5:95:ad:74:a3:73:2c:
8a:39:8a:f4:86:13:ef:70:b1:29:af:c4:82:b3:a7:
e8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:30:52:3C:60:A6:E7:BD:BB:6B:41:6C:55:E3:80:91:12:E8:1D:40
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:01:53:40:c2:12:34:bc:85:2a:92:5c:9c:c8:97:da:7f:c9:
f2:c2:0d:bf:23:5f:13:ea:49:5d:df:ff:cd:e6:49:22:70:15:
f2:93:06:b1:87:3d:56:5b:ed:bf:13:cb:12:28:e0:9e:8e:34:
91:60:02:05:db:9d:a7:43:76:fc:e8:26:c7:64:f1:78:f9:78:
ba:85:40:37:cb:c9:0b:b5:3a:d8:a6:07:d5:27:34:60:48:b8:
1e:fe:4d:5c:14:f5:c1:2d:bc:2b:07:1f:f6:ed:a6:3c:9b:cc:
e9:e1:4c:06:49:0a:91:f3:00:ff:a8:40:de:cf:96:20:ff:73:
04:03:1d:4d:43:4c:4d:de:d8:60:39:bb:1e:a1:4c:c7:a1:b4:
26:f2:34:d3:d5:a0:4f:6f:d3:55:53:32:37:99:66:13:4c:65:
da:9a:1b:19:44:d9:0e:05:3b:98:75:f6:9d:e3:7b:29:3b:88:
ff:a0:6f:ab:d2:be:02:9b:59:58:6a:f7:f0:06:d8:3a:f4:29:
84:e8:0c:fe:2a:da:00:5c:05:fe:99:d5:e0:6f:a7:bf:95:ac:
4f:89:16:e8:cb:d3:92:12:9f:65:0e:f1:a7:84:08:e6:ba:c5:
be:1d:20:f4:d9:40:1b:08:d7:b5:3e:4a:18:51:cf:75:9e:13:
dc:cc:f0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:19:42 2025 by rpki-client