Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
File: HRxS8VUvbqDwZNejt521wc8Wa9A.mft (raw, json)
Hash identifier: CwuvW2NI4+W5ekSnyAcj0cbiaA78Js48EXVbeM5Kh00=
Subject key identifier: E3:FF:1A:81:C7:5D:FC:DF:6A:FD:15:FF:96:EC:8A:0B:95:31:3A:0D
Authority key identifier: 1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
Certificate issuer: /CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Certificate serial: 019680C6E91C13530EED0EBB8A7165BEF4D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
Manifest number: 14A8
Signing time: Tue 29 Apr 2025 09:00:41 +0000
Manifest this update: Tue 29 Apr 2025 09:00:41 +0000
Manifest next update: Wed 30 Apr 2025 09:00:41 +0000
Files and hashes: 1: HRxS8VUvbqDwZNejt521wc8Wa9A.crl (hash: cyKFk+uPP+quXg/kEFrXmSSxtHCqnXZGpSX7p8RKQPw=)
2: OqLUCxtgxChqlU1u5DSrV7o7hUE.roa (hash: 137N4QJ5LT3R5FaNUW+c79pvczICoEGACd1IGeCfKGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:c6:e9:1c:13:53:0e:ed:0e:bb:8a:71:65:be:f4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d1c52f1552f6ea0f064d7a3b79db5c1cf166bd0
Validity
Not Before: Apr 29 09:00:41 2025 GMT
Not After : Apr 30 09:00:41 2025 GMT
Subject: CN=e3ff1a81c75dfcdf6afd15ff96ec8a0b95313a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:be:32:ca:1e:60:25:09:b5:4e:7d:88:2e:d2:
f7:88:08:6c:00:88:37:40:99:36:f2:60:1d:80:1a:
ee:2d:63:80:8e:17:c6:bb:1f:47:16:07:fd:1a:50:
90:21:11:bb:0b:88:4b:94:32:5d:66:82:9b:df:49:
e3:f0:11:c1:6b:23:f0:45:53:7a:36:9b:5a:c0:78:
a5:80:be:7c:e3:ac:1c:c8:a7:5f:ea:a2:85:54:a0:
00:f7:4b:2b:03:71:ce:12:52:4d:95:57:2c:ed:67:
0c:bb:70:e6:ed:db:05:f5:e6:33:92:2d:85:e7:4b:
82:e0:37:d4:c1:25:03:67:e5:a8:ad:4c:21:a7:c6:
d0:c3:7d:d8:c8:76:74:52:81:da:cd:bb:81:46:9e:
61:f7:82:07:2e:79:d7:16:27:fc:ec:3c:10:87:2e:
6f:45:40:7e:47:84:c7:8c:8a:b8:9a:39:3b:3d:71:
d9:ac:63:82:28:a5:2e:63:52:7a:81:48:e5:5f:7f:
a1:d9:e6:13:13:09:c3:8c:01:50:5f:19:4a:27:a1:
42:46:a8:78:7e:59:79:3a:56:83:4f:33:e5:40:3c:
96:0b:cc:f0:fb:49:c1:9f:12:60:0b:3b:e8:e5:13:
b4:68:2a:be:b8:cd:da:61:17:74:c3:f0:57:0f:34:
04:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FF:1A:81:C7:5D:FC:DF:6A:FD:15:FF:96:EC:8A:0B:95:31:3A:0D
X509v3 Authority Key Identifier:
keyid:1D:1C:52:F1:55:2F:6E:A0:F0:64:D7:A3:B7:9D:B5:C1:CF:16:6B:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRxS8VUvbqDwZNejt521wc8Wa9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/64f539-feda-49fc-a922-201d5a9bb8aa/1/HRxS8VUvbqDwZNejt521wc8Wa9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ac:b8:f0:e2:95:b0:7e:db:9b:6d:87:a6:25:0a:bc:e2:a7:
7f:04:8c:c6:e1:e2:ec:0f:b0:e7:03:75:7d:91:99:92:83:09:
11:3c:9b:f4:d2:69:ba:8b:ee:7a:ba:40:6f:90:d2:31:93:4f:
74:f9:58:c3:50:e8:31:ec:3a:a7:28:56:c6:e4:06:84:05:c8:
dd:6d:30:d6:a8:27:34:0b:c9:e8:9a:72:0c:61:b7:0e:30:5c:
fe:00:94:85:b6:c7:32:c3:8c:ce:2a:2a:54:0b:5d:18:63:f0:
d0:bd:18:1d:9b:37:6e:f3:d5:31:49:7d:e8:e0:8c:91:b3:21:
e4:18:5a:eb:34:7e:c0:08:c7:c2:3b:6a:1d:72:f2:79:b1:26:
07:d0:6f:c5:4c:ee:7d:83:ce:d8:5d:58:d6:3f:0d:df:b5:36:
c1:66:32:09:1c:5e:d2:4a:47:cc:f8:97:c5:55:c0:57:2c:a1:
20:e3:f1:c9:61:f8:fc:a0:7c:7d:32:eb:b5:1b:75:2b:5b:b9:
54:75:4c:db:30:b1:e1:5f:0e:c2:a6:3d:3f:29:a8:ac:49:ba:
3a:93:8e:f5:7a:d5:12:09:23:98:77:26:59:c9:74:39:32:f7:
61:11:8a:d4:4c:0a:75:3c:b8:de:c4:40:7b:3f:ee:09:2c:13:
6b:80:bf:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:16:49 2025 by rpki-client