Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: OeYfJo7LDfoMfjOPxWbbWpca8O70f7Xnf0lEMmsPcHA=
Subject key identifier: D4:FB:83:90:E3:8E:1C:2B:CD:D4:98:87:68:61:44:DF:62:9A:D9:2D
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 0196C7CD6C5E509CA4CD0C8D41A178FEF54F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1543
Signing time: Tue 13 May 2025 04:00:50 +0000
Manifest this update: Tue 13 May 2025 04:00:50 +0000
Manifest next update: Wed 14 May 2025 04:00:50 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: M41y3eog6Kqq3BpUdaGOY5pfek0NQt2D2FUJquHqB9o=)
2: MCvxtXhDv-4sOFSG3-70es9IbCc.roa (hash: zG6t5oGWGri6Roj7Zds9875D3+Pp2Gk1iyyfA9Fh0BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 04:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:cd:6c:5e:50:9c:a4:cd:0c:8d:41:a1:78:fe:f5:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: May 13 04:00:50 2025 GMT
Not After : May 14 04:00:50 2025 GMT
Subject: CN=d4fb8390e38e1c2bcdd49887686144df629ad92d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fc:86:ce:b4:95:8d:60:b4:8e:ee:25:55:0c:
0f:17:e9:48:34:7d:eb:72:47:98:8c:dc:0b:1b:5c:
2c:91:a7:5d:13:f4:d9:6f:05:2d:f1:55:27:78:cd:
f2:f3:49:eb:d6:9f:43:d4:16:f8:55:31:0b:0c:5e:
d2:a4:85:08:a0:94:62:ca:97:3d:da:2e:6a:f8:23:
8b:e1:50:f2:e0:4a:cd:44:51:ff:eb:53:93:3c:5e:
2b:c4:cd:9c:66:f3:df:b5:70:e6:57:66:e1:61:fd:
5b:da:ed:d3:9c:c1:90:8e:f4:e8:39:9f:1c:83:d9:
52:8b:f3:17:8d:bc:6b:9d:cc:5a:d3:a9:8e:a1:4a:
a3:ca:c4:30:ca:50:6d:27:62:ed:a9:ae:fa:f7:21:
15:6a:f7:50:34:26:35:fb:89:29:fc:47:cd:03:02:
0b:c9:95:76:f4:a8:03:1f:50:df:50:91:10:ab:62:
07:db:94:44:ef:e9:12:c9:bb:0a:bb:ee:7d:b6:17:
01:8d:55:cc:cf:7c:c8:82:d7:9a:a7:7c:69:f3:07:
c1:a1:d2:b2:75:e1:21:1b:72:be:b1:03:8a:ef:7e:
ff:e7:4a:f6:fc:15:14:ca:e7:c3:78:11:27:04:72:
a9:d4:21:55:54:6a:9e:f3:24:54:93:89:e2:5b:dc:
96:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FB:83:90:E3:8E:1C:2B:CD:D4:98:87:68:61:44:DF:62:9A:D9:2D
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:a8:ff:20:02:d3:c9:f0:61:25:1d:ec:f2:8b:a3:ed:d5:83:
19:b7:1d:26:66:40:8d:72:aa:e7:0b:d8:34:49:16:40:e4:dd:
65:5f:66:1a:7a:00:29:03:0b:ac:5c:19:78:39:40:c9:52:9a:
a5:6c:ca:2b:ca:08:ca:8c:1a:24:1b:cc:d8:7a:6a:d2:f1:fe:
1e:05:82:55:83:51:53:fa:b4:01:b4:3d:a8:74:52:09:60:42:
ec:86:2d:2f:76:27:88:7a:33:30:1b:da:73:1d:42:e7:aa:59:
d2:d8:3e:d4:c5:b2:30:06:28:0b:6b:2d:0e:c5:e0:06:a0:0d:
95:92:41:75:5e:4e:89:03:f9:e9:32:e9:3e:3b:a7:1f:5f:ef:
ec:f9:c4:9a:ac:7e:cb:68:23:ad:2f:6b:d5:d7:3e:f9:03:08:
1d:49:1d:8d:72:e9:45:6d:57:de:8e:44:a9:ce:41:9e:39:e5:
11:9e:07:50:3d:04:d8:28:e1:df:4b:ef:41:84:51:34:fb:73:
a7:9a:ac:d5:c5:7d:69:49:07:c8:60:dc:ac:f5:57:29:81:98:
68:b7:09:9d:ab:f9:5e:7f:15:a1:b7:9c:df:a0:86:60:6f:6d:
33:28:a1:1c:17:71:54:47:fb:48:52:1e:dc:43:ee:1c:e5:76:
8b:17:4e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:10:35 2025 by rpki-client