Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: QoBiLE/7Mbh0KaGN75gT+eLi4HM/Q4J9aOxtkr7ppWc=
Subject key identifier: 9D:89:BA:62:3C:89:45:3A:70:B9:8D:E6:06:3C:B5:EF:F5:41:C0:D0
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 0196767A17E6EEEC9CCFB887DFBCC08B4354
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 35
Signing time: Sun 27 Apr 2025 09:00:35 +0000
Manifest this update: Sun 27 Apr 2025 09:00:35 +0000
Manifest next update: Mon 28 Apr 2025 09:00:35 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: DQQtRNiPMtkvXhMax64R5eaPiTN3yOauYlJqFW9zBu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:17:e6:ee:ec:9c:cf:b8:87:df:bc:c0:8b:43:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Apr 27 09:00:35 2025 GMT
Not After : Apr 28 09:00:35 2025 GMT
Subject: CN=9d89ba623c89453a70b98de6063cb5eff541c0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:28:d2:16:a9:d2:83:29:41:60:fd:6d:a9:b1:
f7:c3:85:7c:5b:76:38:7e:d5:1b:be:60:3d:2b:17:
a5:88:f5:8d:eb:65:b2:a9:68:f8:1c:a8:d9:65:15:
53:4c:93:3c:f4:f5:9a:59:a7:8e:27:4c:b4:f6:2d:
c6:8e:88:98:cb:f6:bc:f5:0f:01:d0:50:9a:fa:2d:
90:99:76:c0:e3:38:cd:89:b8:2a:ab:ca:25:e4:e9:
8a:8b:36:93:fd:71:cb:c5:a7:54:4e:4b:ed:cc:8f:
eb:5f:26:c9:ba:13:17:47:44:16:63:f8:1f:46:c9:
80:a4:e2:0f:70:48:c6:96:d9:19:ef:75:a5:8e:14:
e3:0c:28:e8:2d:ab:cf:b9:27:f8:b4:37:29:b4:98:
4e:85:9d:fe:cb:4d:7e:26:f1:07:2f:a2:f3:d4:34:
3f:09:e9:5c:ef:34:a6:79:93:dd:8f:c2:0a:77:2b:
bc:df:11:da:4e:84:97:f3:e4:29:44:b5:70:f3:21:
5c:55:50:5f:50:16:5c:8c:2a:1e:a5:64:59:50:98:
7d:65:a0:a5:d2:35:4f:85:41:c3:b6:de:c2:ea:92:
8f:c9:68:1e:b5:e1:26:71:19:50:ba:25:24:b5:6d:
ae:48:d7:1e:2c:14:9e:3b:75:6a:d1:7b:36:5f:43:
8a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:89:BA:62:3C:89:45:3A:70:B9:8D:E6:06:3C:B5:EF:F5:41:C0:D0
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:a7:ad:28:ec:40:3f:0a:09:59:09:73:6b:28:12:07:3b:87:
cb:0e:1f:b6:58:5d:7c:10:35:f5:db:25:1f:a4:45:e6:75:f9:
9b:74:4c:03:83:65:32:6e:3d:6a:2b:f8:33:d4:ad:15:bc:a9:
e1:a0:e3:ee:fe:44:f9:02:86:4a:95:33:fb:11:67:a3:83:cd:
be:6a:3e:98:af:c3:00:84:f8:63:7b:d6:f7:1a:46:70:c5:69:
ef:0c:b4:a9:b8:eb:7d:ef:8f:1e:04:e4:92:c8:13:22:23:ab:
5b:9f:2b:3e:a0:90:79:dc:4b:f4:61:1c:70:66:51:d1:6f:32:
35:88:af:41:53:8b:c6:2a:4a:50:5b:08:29:be:2c:8e:c4:d7:
52:b0:e1:3f:d9:7d:49:81:cd:1a:e7:58:5b:f2:24:af:70:4a:
8c:9f:74:50:fd:9a:6e:e0:a5:6c:fc:f8:3e:d8:a9:60:ad:72:
03:a5:68:87:da:ff:75:3e:8c:7e:a8:4e:5f:57:00:64:c9:b5:
f3:23:a1:1b:a5:8f:46:c3:69:7f:d7:1f:7d:3e:17:9a:ef:6c:
2f:9f:99:62:56:0f:a5:65:7a:cb:e2:59:c5:81:7b:39:d0:f0:
13:c2:3b:8f:89:fe:75:0f:ec:a0:7d:77:0e:8e:c2:35:8f:88:
6f:af:87:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:17:05 2025 by rpki-client