Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: NfRj/fj6a+guvAjycg/560f5XtrEMK7nCRNR5UTduZ8=
Subject key identifier: B1:FB:A9:81:EE:6F:E4:DA:46:46:ED:CC:E2:96:3C:C7:20:45:F0:78
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 0196BDB75DAB608537E1415CA333E59BDB07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 12A7
Signing time: Sun 11 May 2025 05:00:32 +0000
Manifest this update: Sun 11 May 2025 05:00:32 +0000
Manifest next update: Mon 12 May 2025 05:00:32 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: 8Wws3qGwKyXsHXWgXVGneVkXt3cCDu11uYLZQlnEB54=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:b7:5d:ab:60:85:37:e1:41:5c:a3:33:e5:9b:db:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: May 11 05:00:32 2025 GMT
Not After : May 12 05:00:32 2025 GMT
Subject: CN=b1fba981ee6fe4da4646edcce2963cc72045f078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a8:07:6d:26:29:52:50:77:cf:b7:60:de:2d:
80:33:bf:35:d9:f2:c4:1a:9e:0c:87:ff:99:8e:65:
f4:00:36:0d:9a:00:53:3d:c2:3c:95:3c:28:dc:00:
85:cb:22:13:11:13:6b:d3:d6:59:96:a7:2b:4a:5f:
74:a8:bd:0d:26:4b:aa:9d:c9:8a:da:e8:ce:b5:12:
c8:66:52:58:64:a6:d2:66:7f:31:c6:7e:91:52:1d:
c1:0b:19:78:f7:b1:f3:44:0b:32:03:67:50:52:5a:
48:de:0b:1a:b4:99:fb:3a:96:15:83:db:fd:77:52:
bf:62:37:38:c4:cc:24:1c:86:ed:ab:35:fe:8c:68:
5b:14:a9:d8:ce:bc:5d:3a:52:e9:35:55:7e:28:81:
63:4f:99:cb:ba:68:1a:5f:c1:90:42:8d:5b:5f:a5:
bb:0f:3e:6a:3e:13:a5:f6:82:76:10:6f:93:ea:d1:
d3:bc:1f:22:79:80:d0:c3:38:aa:46:f8:47:0e:c7:
62:7e:fa:8f:08:d3:82:ef:89:e5:fa:cc:c7:5b:eb:
e4:6b:3d:db:4a:d8:df:9f:7a:ca:eb:b0:80:3a:73:
d7:5f:43:59:59:b5:99:34:d0:db:4a:2c:1e:0b:5a:
c3:5f:d7:4f:87:a1:c7:33:98:8a:01:60:22:1a:64:
a7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FB:A9:81:EE:6F:E4:DA:46:46:ED:CC:E2:96:3C:C7:20:45:F0:78
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:60:b7:08:cc:ec:96:d7:db:e6:07:70:9c:47:c7:f2:f7:cc:
6e:be:05:0e:c0:b4:ee:46:e5:e6:dc:cb:b0:c5:5c:71:e8:2d:
86:73:72:61:5b:87:da:9a:d1:08:e6:21:72:1f:7d:14:56:4f:
78:50:a7:7a:34:63:c8:b2:80:44:a9:1a:08:9e:a2:0c:ba:53:
36:8b:d2:ae:37:a7:0b:7e:43:ca:0e:68:4a:e8:18:ac:d3:5a:
8a:ff:d7:96:a1:d8:41:7e:aa:f2:3a:ef:7e:e1:e4:05:dc:f3:
b3:2d:d4:23:b4:31:ea:8e:d7:2f:fa:e4:5b:6b:db:31:25:30:
f2:bd:16:c8:c1:fb:bd:ec:03:19:ac:39:78:08:73:b9:db:24:
4c:77:53:f6:69:44:f9:7f:61:64:cd:34:27:be:43:69:b1:40:
f5:df:d8:9f:f4:bc:9a:9f:bf:38:fa:da:ad:5f:d8:36:4d:67:
7f:20:1f:5a:d4:39:57:21:3a:f1:90:a5:07:dc:d7:74:a9:7a:
1a:d7:18:d6:34:4b:c1:75:e4:c4:e5:8b:c7:21:ee:93:5f:9e:
58:9d:66:1c:53:4c:30:73:d7:04:f1:3f:c3:69:b2:26:a2:1e:
6b:bd:2c:17:08:be:c6:25:02:07:c2:ef:3c:fa:51:f2:14:3e:
b8:84:db:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:19:28 2025 by rpki-client