Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
File: HT0ETAkeiLgLSyaeu3lrPyRUS18.mft (raw, json)
Hash identifier: Yl1hMAFZma3l3NfvNj3x86Q02dNoWTXFslkiDR6xPF4=
Subject key identifier: 73:2D:C3:E1:C4:0A:75:84:EB:07:BF:B3:3F:F7:9B:8D:E9:95:6A:D5
Authority key identifier: 1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F
Certificate issuer: /CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f
Certificate serial: 0196767A8C82846A7CC4FA07C4E4B3498C32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
Manifest number: 05A4
Signing time: Sun 27 Apr 2025 09:01:04 +0000
Manifest this update: Sun 27 Apr 2025 09:01:04 +0000
Manifest next update: Mon 28 Apr 2025 09:01:04 +0000
Files and hashes: 1: HT0ETAkeiLgLSyaeu3lrPyRUS18.crl (hash: RAGtmFeA4/9HvSGQIokLbMJ3cKYY1geZ3VE+4PD2Vv0=)
2: NW7G420E0Tk7pMi-UVKL9EO5zTA.roa (hash: Q3IRZsTEhDqe1ExEIgIekgobeYaG4FmT5pyujXNfnVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:8c:82:84:6a:7c:c4:fa:07:c4:e4:b3:49:8c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f
Validity
Not Before: Apr 27 09:01:04 2025 GMT
Not After : Apr 28 09:01:04 2025 GMT
Subject: CN=732dc3e1c40a7584eb07bfb33ff79b8de9956ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b6:49:65:9c:7a:0e:7c:3c:59:2c:d0:9b:83:
de:a0:eb:0a:27:1a:0a:17:86:a0:e2:d7:b7:31:32:
8c:e6:62:3e:d9:90:80:c4:f3:f3:30:36:0d:3e:b8:
80:7b:e6:0e:14:75:e2:4a:af:ff:db:6d:87:31:f1:
75:48:a7:98:a8:cc:50:0b:d4:fb:91:7b:9a:e0:68:
b1:0e:66:55:4c:b1:66:1b:f6:64:63:ca:ab:d6:88:
cf:19:d5:69:56:9c:1e:37:68:dc:e9:ef:d3:43:07:
2c:62:e0:45:3d:51:b3:1d:cb:b7:44:61:02:5c:83:
32:1d:5c:4b:21:51:ec:b0:88:2c:a7:a7:7a:3f:8a:
4e:35:50:6f:08:f4:6a:b6:4c:ad:c6:9b:aa:a9:85:
c6:7d:d5:2f:ca:db:a2:ce:f3:16:d1:31:16:1e:a3:
f4:45:89:68:4a:8d:73:a1:8e:7a:18:5f:00:41:d6:
e9:3b:3e:9e:d9:bc:71:c0:69:d5:58:a8:0d:21:4e:
d4:86:3f:8c:41:33:ae:31:1a:a1:67:4b:5a:b8:9b:
9f:83:9d:23:21:ce:df:61:d7:a9:d1:bc:73:29:0a:
00:1c:08:b9:f1:6e:a7:63:b2:3e:d4:d5:e8:4c:ce:
da:08:ee:66:10:53:f3:13:3d:f9:b4:73:c2:97:44:
04:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2D:C3:E1:C4:0A:75:84:EB:07:BF:B3:3F:F7:9B:8D:E9:95:6A:D5
X509v3 Authority Key Identifier:
keyid:1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:63:b7:90:a9:26:33:3f:1f:3c:6d:5a:55:51:58:8b:78:95:
d4:3f:6e:a9:6d:78:d3:77:5c:e6:cc:15:3f:2c:f6:88:a1:c2:
31:d7:d2:e2:6b:2e:ae:c5:e9:81:00:06:88:d9:0f:00:2d:95:
27:7b:e3:54:47:a3:67:7d:6a:e1:94:f9:3b:d8:05:87:5a:cb:
7b:73:de:0c:26:c0:a3:23:2b:1b:80:0d:17:b6:d2:ad:01:54:
f3:10:7b:29:fd:24:4b:59:cc:8a:d0:08:22:72:8e:30:b3:61:
19:b9:ec:ab:a8:14:4e:ab:3c:06:87:04:ec:1f:f4:d3:59:1b:
92:f5:c5:a5:a6:5f:d6:14:6d:45:7d:e2:6e:1c:bf:12:3a:27:
a2:74:ee:44:57:c1:6f:70:d1:83:d3:b2:46:25:03:e8:7d:1a:
ba:1a:3d:fa:4c:06:5e:24:3d:97:2c:ad:30:a6:2e:c8:de:93:
9b:59:64:f6:2a:c2:c6:dd:94:50:ec:37:e4:60:5e:78:43:19:
20:ab:a6:50:a2:8f:c1:8a:d9:a7:d1:a3:0a:50:3d:71:6b:90:
54:3f:57:a2:65:53:b4:30:2a:0c:87:97:5c:78:c8:be:e8:39:
93:b1:1c:7f:b0:a5:9c:98:7e:98:51:6d:39:91:bc:2d:6b:ba:
73:35:66:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:09:21 2025 by rpki-client