Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
File: HQrO6hf1PecI-ac6vAyHFk0gfQg.mft (raw, json)
Hash identifier: SZXpvjTbjM/0raOzJVwW2OHV3MaoXylAZ9ymg2Oa9g8=
Subject key identifier: D9:9B:13:97:D5:C8:BD:4F:63:20:44:72:F0:F5:35:9E:E6:BC:56:2C
Authority key identifier: 1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
Certificate issuer: /CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Certificate serial: 0196C34C1404EE10DDBB42AD48FBA555137F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
Manifest number: 125A
Signing time: Mon 12 May 2025 07:01:04 +0000
Manifest this update: Mon 12 May 2025 07:01:04 +0000
Manifest next update: Tue 13 May 2025 07:01:04 +0000
Files and hashes: 1: 9zhTOpiuNqKnk778yI8rOgQQ8-A.roa (hash: ABWXF/FnYjdj8H9UnlqrtLWEbBYpls+daSI459eMuZM=)
2: HQrO6hf1PecI-ac6vAyHFk0gfQg.crl (hash: 5CY56SfECPbCD84en1rdnHrydlYx+xiiZoDPCnQCx2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4c:14:04:ee:10:dd:bb:42:ad:48:fb:a5:55:13:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0aceea17f53de708f9a73abc0c87164d207d08
Validity
Not Before: May 12 07:01:04 2025 GMT
Not After : May 13 07:01:04 2025 GMT
Subject: CN=d99b1397d5c8bd4f63204472f0f5359ee6bc562c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2b:e1:89:1b:1e:c7:36:a1:98:76:4b:fb:a5:
99:8e:de:ea:ff:b3:a5:5b:4f:91:9e:bc:e4:6a:fb:
5b:74:37:88:c7:de:9c:30:24:6e:1a:4f:b0:c8:ef:
d3:38:4b:b2:62:ab:de:72:16:c1:6f:d4:01:b4:8f:
5a:fe:ed:2b:ab:01:2c:1d:fd:b0:3f:68:0b:24:52:
fc:47:63:87:e6:b0:6a:f4:8d:8a:af:63:27:45:f7:
ad:25:72:a1:f8:7a:8d:8d:40:85:f0:18:2c:7a:f9:
fa:20:56:c3:b6:63:72:c4:16:36:df:72:25:03:ce:
8c:e2:d3:fb:27:e8:d2:a2:dd:33:bd:ac:62:fe:c5:
90:f9:60:4b:37:57:0c:86:75:2e:84:58:82:90:f0:
c5:51:98:01:35:ed:97:1e:ec:e5:7f:c6:12:21:8f:
72:80:92:21:49:59:a5:0d:d4:e6:1e:3c:39:3b:17:
5f:51:6c:30:fd:23:d3:63:c1:0e:96:b2:85:1e:b7:
48:b9:b1:e4:c0:da:8d:86:e0:a2:f5:95:b0:4d:07:
75:9f:f5:5b:45:d4:10:71:70:96:83:30:58:00:20:
58:b7:d5:27:a4:7f:b1:d9:6a:c1:9d:48:9a:fe:5c:
3c:f8:73:36:c9:34:ed:06:93:cd:54:3d:dc:a4:9a:
09:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9B:13:97:D5:C8:BD:4F:63:20:44:72:F0:F5:35:9E:E6:BC:56:2C
X509v3 Authority Key Identifier:
keyid:1D:0A:CE:EA:17:F5:3D:E7:08:F9:A7:3A:BC:0C:87:16:4D:20:7D:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQrO6hf1PecI-ac6vAyHFk0gfQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/da56f6-1cf2-4388-96fa-c6bcca721471/1/HQrO6hf1PecI-ac6vAyHFk0gfQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:bb:41:c3:6d:01:03:a4:98:f4:81:14:d5:2f:cd:df:2e:d3:
c4:21:e9:f2:47:8b:b2:50:c6:8c:37:eb:08:85:cb:c3:c4:fa:
b0:3e:ec:08:b9:87:38:93:cc:2c:1c:7d:79:89:fe:05:ee:b8:
67:e5:e7:87:39:1e:d4:53:dc:02:7a:6c:db:ca:4b:3c:54:5a:
77:55:c7:c4:c1:02:6e:2b:16:1f:b0:2a:b1:8f:1b:29:48:84:
07:6a:8d:26:61:b2:0f:d8:f3:8d:6a:b8:eb:1c:86:d5:e8:0e:
c6:99:d3:8b:cf:8a:b7:56:41:eb:ce:92:a8:78:20:9a:7e:e1:
33:17:ba:ff:a5:ef:4f:81:d8:29:a1:2b:30:92:e1:27:d9:83:
df:09:49:a3:e3:83:4e:a1:12:37:b4:1d:df:2f:b4:31:1d:99:
57:9d:46:fc:72:f0:d8:8d:04:65:58:d7:99:98:ba:32:27:df:
05:31:36:58:d9:48:7d:74:72:67:d2:ef:f2:ba:e1:0d:d9:a0:
d3:30:86:2c:33:2c:6b:c9:8e:1c:d0:4e:e6:91:06:21:77:44:
56:5f:d7:63:44:ec:2e:9a:1e:ba:92:e9:b6:98:67:d3:ce:f1:
06:ca:30:da:3e:d6:0d:ab:16:c1:32:9b:47:29:a6:d4:7b:f8:
d0:76:78:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:32:43 2025 by rpki-client