Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: 2yit1Zt4Yh9ANrNIuFMW4O9LnEMWj9WjynyEQkS+8Ao=
Subject key identifier: 43:EA:83:AC:92:72:4E:8A:A2:A3:96:5B:11:29:55:A4:9C:0F:1B:77
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 01977188D02159E6332C5079A8AF58ECD4C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 1591
Signing time: Sun 15 Jun 2025 03:01:20 +0000
Manifest this update: Sun 15 Jun 2025 03:01:20 +0000
Manifest next update: Mon 16 Jun 2025 03:01:20 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: B3YFPdPa8Knv7t3vTozQguewI0DUaUreeSSKx1Bak/M=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 03:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:88:d0:21:59:e6:33:2c:50:79:a8:af:58:ec:d4:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Jun 15 03:01:20 2025 GMT
Not After : Jun 16 03:01:20 2025 GMT
Subject: CN=43ea83ac92724e8aa2a3965b112955a49c0f1b77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cd:21:2c:38:3c:b0:25:ee:88:32:09:d8:1e:
21:ea:36:26:53:89:c8:3c:02:26:a6:32:3c:b3:9c:
22:f1:37:bb:0c:f1:fa:f9:df:ef:fc:51:05:09:7f:
bc:59:55:4b:e5:3b:1a:83:e7:f9:8d:77:3c:48:8f:
fb:b4:f6:cf:1c:94:5b:69:67:3a:66:6d:28:11:5f:
b2:3a:2d:5f:61:41:45:6f:91:49:a3:38:07:86:ae:
fe:12:4e:92:00:d4:2b:33:16:d7:a8:1b:39:28:da:
5d:48:a2:a2:df:6a:9e:41:c2:5f:1c:b4:e7:e2:c9:
f0:e0:79:26:1f:05:71:c5:b6:83:d9:76:c2:e1:31:
67:b6:56:a5:06:4e:38:79:94:9a:d6:cf:52:92:0c:
23:4b:a4:9e:9f:61:72:b7:5a:cd:ab:7a:58:62:b4:
b6:36:99:e1:9a:6a:21:0b:0f:8c:b1:90:50:93:6c:
69:cc:7a:e0:0e:56:47:3c:4d:7e:f9:ea:b6:6a:38:
92:20:a1:92:00:66:53:0f:55:a0:64:de:66:38:31:
a3:22:ea:d1:29:5b:b2:4e:cf:07:7c:bf:0e:98:e7:
29:12:ff:58:46:0c:54:82:8b:0f:0b:7c:85:fd:ad:
a3:11:b4:d1:ee:5f:95:b6:bb:d1:51:94:06:0f:1a:
ba:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EA:83:AC:92:72:4E:8A:A2:A3:96:5B:11:29:55:A4:9C:0F:1B:77
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:62:09:7b:fd:82:a4:de:bc:53:0d:3d:94:52:13:84:64:49:
12:29:4d:36:97:bf:9b:44:39:71:b8:d1:f8:ca:68:33:b4:b9:
d0:01:e3:67:31:48:57:03:d5:a3:cd:d9:66:5a:48:d1:01:69:
55:43:f5:67:d1:60:94:ac:3e:2d:b2:64:83:4e:86:19:78:1b:
0e:8a:37:6b:11:6d:90:81:a2:4e:a7:5a:c5:e0:96:d5:78:59:
15:ef:11:59:40:98:83:83:16:4a:3e:36:39:6e:01:a7:35:07:
c8:97:55:54:d8:09:5c:45:ab:1f:38:56:9e:65:da:51:d5:8e:
fb:da:71:48:e2:a4:09:47:39:38:c8:f0:27:95:68:a7:78:f4:
b2:8e:5a:bd:e3:0d:96:0d:ef:25:75:03:6e:1d:06:cb:f6:c6:
bb:d5:ad:6e:86:91:4b:31:0c:d7:67:97:3d:9c:b6:33:56:07:
94:b9:f9:35:31:ce:6f:e7:79:d2:f5:c3:6d:6d:0b:e1:2b:7e:
19:f5:80:b1:9f:dc:b6:a0:27:e9:e5:cf:21:a5:40:7b:d8:aa:
cf:52:cf:93:ae:a6:ba:93:ab:b3:ce:29:91:df:ce:62:7c:cd:
0e:17:3d:89:f7:8b:a2:85:43:83:e8:98:6f:c1:8a:dd:71:a0:
af:1c:35:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 12:26:11 2025 by rpki-client