Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: 87VD2NBhmAx0LMObzuJbjY6xU8DxkQFb3IbxhThkO8c=
Subject key identifier: 50:F5:A5:B4:9D:31:56:07:8C:D2:E9:0F:BA:C6:24:9F:52:A2:B2:90
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 019686FF7A04120D6FE32088839F0E68DED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 1517
Signing time: Wed 30 Apr 2025 14:00:11 +0000
Manifest this update: Wed 30 Apr 2025 14:00:11 +0000
Manifest next update: Thu 01 May 2025 14:00:11 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: rfYrbSZyfQruLz7vWO3Xp+ZSeU93JCrNtGcCuC1U6xM=)
2: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (hash: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:ff:7a:04:12:0d:6f:e3:20:88:83:9f:0e:68:de:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Apr 30 14:00:11 2025 GMT
Not After : May 1 14:00:11 2025 GMT
Subject: CN=50f5a5b49d3156078cd2e90fbac6249f52a2b290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:c1:45:68:18:65:8a:7b:35:dd:c2:d1:4d:
46:ca:6d:31:cf:8c:9d:08:0d:1f:25:27:65:d8:8d:
75:25:ec:95:f2:e0:f0:03:ad:8a:06:81:42:37:5c:
3d:35:7d:1f:5f:81:bc:dd:6c:7f:1b:2d:3d:c5:5b:
38:49:eb:d3:4e:7b:86:62:5d:66:ec:f0:c9:76:1d:
3f:e3:53:3b:80:94:68:16:85:c1:b7:c4:e1:7f:b3:
27:35:db:64:eb:b9:56:bc:d5:b3:d8:cc:68:70:90:
70:f5:90:ad:d9:84:2f:24:91:f1:75:e4:7b:e6:8a:
fb:f5:a6:33:48:fb:84:eb:43:7a:72:ac:3a:4c:c2:
3a:c6:75:e7:9c:2f:23:ac:f8:b5:ae:03:e1:a7:51:
25:c3:ba:d6:49:bd:62:7d:57:90:c7:e9:07:0e:38:
96:47:e1:72:65:ca:ed:06:29:21:2a:41:81:46:3a:
91:e3:24:15:b7:2a:56:f3:f3:ef:cc:6e:3d:92:32:
05:55:a8:a1:50:75:b4:9e:a8:c3:24:19:76:8e:2f:
04:a6:d9:20:84:cf:c5:bb:8b:91:45:25:34:d8:bc:
58:54:28:88:a4:cd:3a:9b:e4:01:a0:65:7a:2b:40:
c4:94:3c:af:f5:af:0f:7e:79:8b:78:63:4b:8b:8a:
ae:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F5:A5:B4:9D:31:56:07:8C:D2:E9:0F:BA:C6:24:9F:52:A2:B2:90
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c7:eb:79:e8:e6:16:1a:57:ad:7e:42:dd:05:2e:6d:67:71:
dc:03:fb:bc:8e:02:4f:c5:b1:2e:55:bb:04:2d:65:bf:c4:7c:
6f:37:0e:63:db:e7:6e:d1:f0:fc:f5:56:96:58:cc:ac:58:4f:
d6:32:2b:41:98:d2:84:42:a1:08:07:4e:08:af:18:f0:d1:29:
c3:16:d3:1d:b9:bd:ab:97:66:75:0e:8b:fa:a9:1b:20:fd:f5:
28:4b:7f:ab:c9:e4:fd:9c:24:2b:fc:d1:d9:40:fb:c7:ac:d8:
cb:f1:a5:fb:c1:2e:8f:cc:82:9d:22:d3:d6:a3:76:c8:ee:11:
60:3b:f2:57:74:92:d7:b6:8c:a0:5c:a0:86:f8:d9:b8:44:0f:
1a:34:08:77:ad:a7:b9:0e:2b:2c:93:38:30:08:48:98:0f:d5:
c9:26:7d:77:e7:7f:97:42:7f:99:14:ad:3c:e4:e4:42:f4:3c:
b9:2d:00:e1:b5:67:3e:f1:b8:dd:f6:19:ce:32:81:0e:8c:9d:
d5:f3:0d:71:e8:aa:63:da:ff:dd:de:75:87:68:65:a0:5c:7f:
b3:42:9e:86:44:e8:d0:86:78:df:01:9e:84:ce:11:e2:0f:98:
ce:22:84:05:a4:62:16:c5:c3:5c:1a:3d:a0:01:2f:e3:9a:a2:
a2:b0:d1:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 16:31:10 2025 by rpki-client