Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: LkNQQBFNGWYSOzoUth+/GgxMccI0VNCN7eKmcqOYCz4=
Subject key identifier: 2B:32:21:B6:2C:30:98:C9:A4:3F:13:54:5D:5B:D6:70:FB:43:D1:29
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 019675303EF35C62FA1B186D1D20A6B7BAC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 1510
Signing time: Sun 27 Apr 2025 03:00:18 +0000
Manifest this update: Sun 27 Apr 2025 03:00:18 +0000
Manifest next update: Mon 28 Apr 2025 03:00:18 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: ZdtXFLxFiuazu0wO8HQ28yHEaMgBCyVssGPe8UQfN1M=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:3e:f3:5c:62:fa:1b:18:6d:1d:20:a6:b7:ba:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Apr 27 03:00:18 2025 GMT
Not After : Apr 28 03:00:18 2025 GMT
Subject: CN=2b3221b62c3098c9a43f13545d5bd670fb43d129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cd:a9:ce:c3:ca:cc:34:65:85:8e:99:82:30:
1c:aa:e6:d9:8d:30:c6:a3:52:94:99:98:1d:ee:f1:
5c:c4:36:83:48:45:f0:73:ed:1b:1f:5d:af:44:a2:
6c:90:71:f6:89:ea:d7:e9:06:25:10:b4:35:38:96:
3b:70:d3:25:f4:4a:d3:31:15:a5:ed:40:9c:0d:98:
c7:52:93:0f:91:db:48:60:4c:e3:7e:94:78:df:2c:
6d:c1:f5:31:74:d2:65:3f:1e:47:ff:d4:01:32:8b:
75:6d:19:b0:3b:6b:fa:7b:2b:4c:31:9a:5e:2a:90:
1b:c0:52:5d:46:31:1f:f3:5e:af:b2:a0:ea:1b:5b:
b6:69:47:d1:01:b6:72:d2:4a:7a:1f:f9:c7:68:44:
76:0f:00:7c:cc:76:0a:35:e9:2e:20:1b:e0:fb:0e:
1f:ff:0d:4d:12:ec:1b:c7:14:4f:4c:31:6d:8e:44:
4a:e6:17:90:1c:e7:50:e2:30:46:77:6a:22:ef:6d:
98:74:42:f8:ec:62:38:e8:37:70:69:6c:3a:cb:6a:
b9:b9:89:55:06:62:9d:ce:5a:a2:71:c0:16:41:8b:
1b:8d:49:c8:d3:90:9e:2d:b3:a3:f2:93:21:08:dd:
f1:c5:a1:bc:70:96:3d:1f:26:32:39:31:32:b6:17:
d3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:32:21:B6:2C:30:98:C9:A4:3F:13:54:5D:5B:D6:70:FB:43:D1:29
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:28:3f:4a:12:b5:ce:9b:45:cd:83:2b:a3:43:89:ae:81:af:
bb:2d:49:5d:04:e1:fb:7f:33:7a:7b:93:15:de:95:56:cb:57:
17:90:07:b7:6c:f1:19:21:44:1d:b0:5a:6d:c3:9e:7d:6a:57:
fa:bd:5e:cc:18:4b:f8:d0:ac:e9:5d:73:70:21:f2:68:ec:ff:
a4:db:bc:ec:23:59:bc:bf:21:f8:78:99:0f:39:ba:1f:a2:fd:
ef:43:2a:55:f6:80:93:d7:f0:29:4f:c3:6a:49:7b:44:3c:a1:
d8:20:e8:df:27:1f:3d:9e:dd:f4:8d:02:83:f4:99:e0:0a:ac:
2e:1c:e3:e3:fb:94:f4:dc:d9:28:71:f6:7e:21:91:21:f5:04:
ce:ef:a4:6f:2e:84:6b:58:c2:cb:9a:aa:68:4a:3b:65:18:30:
91:86:1a:f9:41:42:d4:b5:55:e9:96:a4:2a:fa:ae:52:c1:47:
f7:c8:e4:20:5f:9b:4e:5f:63:96:9e:77:d4:99:c7:b6:1d:73:
fb:56:6a:b8:aa:c9:60:e4:a8:53:06:e1:14:0e:b0:f3:b5:88:
01:df:53:4e:f5:a4:a7:f4:a5:15:6d:47:93:dc:0b:2a:8a:9d:
4a:df:54:3b:d4:ab:d5:ea:c0:d2:90:17:ce:2d:93:32:1d:a4:
ca:3e:c9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:37:20 2025 by rpki-client