Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
File: HNq3BST9UTE7hPXY9GNio9jICBQ.mft (raw, json)
Hash identifier: oYqwDCFZQc8MtChE70glFFbTX1vHqwWkMB83S8dXALk=
Subject key identifier: 92:A3:A8:7E:E4:24:CE:82:59:F3:CC:48:40:83:74:76:D7:C2:58:0E
Authority key identifier: 1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
Certificate issuer: /CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Certificate serial: 01967EA156805075E49318B18E0913D8A8B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
Manifest number: 1514
Signing time: Mon 28 Apr 2025 23:00:24 +0000
Manifest this update: Mon 28 Apr 2025 23:00:24 +0000
Manifest next update: Tue 29 Apr 2025 23:00:24 +0000
Files and hashes: 1: 8H6vwz49R0kM-gbNtDLGiXSOgWE.roa (hash: 7d11KfsVtGX7lu3CgRTWP0J/PhStNQboteNSMa34UZE=)
2: HNq3BST9UTE7hPXY9GNio9jICBQ.crl (hash: hmwhBiri2SiYf7KuyiqXyDcD/IGEdYD+AKGk6eUvzbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:56:80:50:75:e4:93:18:b1:8e:09:13:d8:a8:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cdab70524fd51313b84f5d8f46362a3d8c80814
Validity
Not Before: Apr 28 23:00:24 2025 GMT
Not After : Apr 29 23:00:24 2025 GMT
Subject: CN=92a3a87ee424ce8259f3cc4840837476d7c2580e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:14:2b:fd:96:d4:a9:06:d9:b2:40:eb:1e:24:
e7:9a:47:94:81:b6:8b:06:ec:66:b5:1c:0b:f2:cd:
88:25:77:4f:39:1b:d6:eb:a7:f2:cc:d4:1d:15:f0:
bb:93:b3:96:32:2f:ce:c8:26:5f:1c:5c:0a:ab:cb:
df:21:af:26:bf:e6:70:46:95:31:cb:b0:c2:70:cd:
78:d4:e2:35:03:32:19:a5:c5:98:be:5a:d7:71:78:
04:93:d0:d5:40:05:95:3d:52:b2:31:46:76:75:3f:
08:15:ef:77:e5:c9:20:00:b3:19:50:e1:41:7b:c6:
f1:a1:e7:74:9d:9a:e3:aa:56:25:06:47:e1:0f:35:
29:04:27:11:64:5f:2d:17:af:bd:43:5d:26:56:01:
4b:93:78:80:11:85:0a:2e:27:95:74:ca:47:e7:0a:
3d:91:b9:c5:97:53:99:57:a7:bd:db:84:2e:04:b7:
ac:ac:21:b6:f4:9f:1c:b5:44:8f:d3:dd:7e:c6:f2:
11:27:07:4d:fb:4c:59:f1:dd:6d:4a:59:d2:5b:89:
59:c6:c1:d8:f0:43:d9:86:0f:91:0c:5b:d7:76:4f:
c1:70:1f:c9:8c:21:73:5e:30:19:bf:6e:ec:a2:f4:
e7:6b:a6:a6:3f:78:24:5d:b6:b2:ec:b1:bb:d2:15:
96:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A3:A8:7E:E4:24:CE:82:59:F3:CC:48:40:83:74:76:D7:C2:58:0E
X509v3 Authority Key Identifier:
keyid:1C:DA:B7:05:24:FD:51:31:3B:84:F5:D8:F4:63:62:A3:D8:C8:08:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNq3BST9UTE7hPXY9GNio9jICBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/19017a-4fcc-4fad-a572-99f693e45061/1/HNq3BST9UTE7hPXY9GNio9jICBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:cf:4d:fa:8f:56:00:ff:b1:b2:be:7c:72:48:25:3d:10:3d:
0d:90:97:2d:a1:85:7e:01:e4:01:56:34:13:8c:54:a1:9b:0e:
01:9b:03:ad:21:38:ba:e6:a9:44:ce:59:de:4a:7a:87:1f:32:
fb:b4:72:0c:cb:8e:a2:46:34:f2:3b:09:f6:9c:c1:d7:f2:e4:
a9:68:0c:92:1e:85:49:9f:07:5c:a6:7d:16:c8:a5:1c:c2:89:
5d:eb:83:3b:88:85:49:a8:22:49:be:60:cc:e5:62:43:33:03:
af:4d:6f:79:3b:85:55:a9:2e:57:66:7d:30:c6:bf:cd:b7:10:
df:6e:82:4c:23:5f:b2:48:bd:0c:2c:58:da:92:47:83:70:f4:
05:5e:3f:91:8f:c9:82:0d:56:b9:93:3a:42:7a:6c:f4:0b:fb:
78:56:5c:ed:af:73:23:38:c8:c3:60:55:42:13:8a:d4:2f:95:
26:bf:77:09:26:13:de:ce:b4:38:90:15:ed:45:70:a2:df:d5:
ef:3e:d0:9c:3c:af:27:90:65:2f:42:38:ed:7e:00:52:7e:32:
8b:e1:f8:89:b9:6a:52:78:bc:0a:da:87:1b:9b:d0:0c:d0:39:
8c:ab:77:7e:45:eb:9c:54:6a:b9:21:bf:bc:98:bd:48:28:13:
a5:ca:40:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 04:32:00 2025 by rpki-client