Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
File: HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft (raw, json)
Hash identifier: igj7ALoBNyPSJy8zZqsQe2d+QZMZZR6/MytLd1WHM8c=
Subject key identifier: 6E:71:C4:E3:CD:A0:6D:59:5F:A1:DB:FE:EC:23:C1:32:0B:87:F9:B1
Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Certificate serial: 0196A91E245761D4BD7878C79556418B35A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
Manifest number: 114F
Signing time: Wed 07 May 2025 05:00:46 +0000
Manifest this update: Wed 07 May 2025 05:00:46 +0000
Manifest next update: Thu 08 May 2025 05:00:46 +0000
Files and hashes: 1: CSj4rvQmRyDsyaDEw0jstidXLzo.roa (hash: 3pSnEcRnf/ULKrT/Poc1HoH7UgR2xUCZ7SNrN3hfNmI=)
2: HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl (hash: QswajPLzccYxeSHco72QBepiZ4qD/yg49EEAv7ZOIbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1e:24:57:61:d4:bd:78:78:c7:95:56:41:8b:35:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1
Validity
Not Before: May 7 05:00:46 2025 GMT
Not After : May 8 05:00:46 2025 GMT
Subject: CN=6e71c4e3cda06d595fa1dbfeec23c1320b87f9b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:81:0f:76:df:f0:fc:33:e0:a1:f6:32:04:d1:
85:75:45:f0:56:a9:21:4b:07:e9:55:6b:2c:b8:29:
33:2e:fb:66:fe:10:0b:50:be:c5:7e:e0:15:fe:96:
8b:b3:41:2e:32:be:e2:d1:48:3e:a8:df:8b:fb:99:
ee:31:04:77:18:84:94:71:21:7b:a0:68:55:dc:ee:
0d:8e:c6:59:a1:f0:76:ed:fc:15:bb:ea:d5:a8:94:
7f:08:0c:d2:88:64:46:e6:72:b1:31:77:b4:60:97:
db:5f:61:dd:af:8c:a9:ec:24:c5:e0:59:8f:8b:0d:
2c:29:98:50:a6:4a:f6:a6:32:c7:6e:10:59:fc:dd:
f2:4f:de:8b:26:d6:ce:48:c7:fe:df:28:c0:86:97:
14:b7:e0:28:15:d3:2a:e9:33:c8:c3:0f:dd:e1:1c:
79:1a:d3:c1:fa:7d:fa:a5:c1:dd:e0:05:f8:db:6b:
51:7b:c5:3a:e9:91:99:4c:bf:46:e2:01:aa:6e:5c:
07:43:3b:72:9c:52:5c:37:0b:e0:a7:5e:7d:a3:e9:
4c:34:56:92:41:62:0f:8a:01:f4:2d:c9:8e:6a:30:
85:6d:5c:32:53:2c:3b:df:d1:9f:ca:30:d5:a6:58:
8c:ac:33:14:52:7a:bd:c8:1c:93:57:d3:3a:9e:d5:
cd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:71:C4:E3:CD:A0:6D:59:5F:A1:DB:FE:EC:23:C1:32:0B:87:F9:B1
X509v3 Authority Key Identifier:
keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:11:70:19:8c:24:b3:46:77:18:3e:cf:ad:b2:36:55:0e:6c:
db:61:1e:61:61:a7:8b:ce:23:64:79:81:c5:c4:b5:5a:ea:e8:
16:20:00:b0:e7:f8:f6:75:cf:ed:89:e7:53:54:bf:2b:1d:ba:
64:82:9a:de:60:ed:f0:8d:b1:ad:85:e7:6c:ad:41:4e:91:91:
3e:0b:45:fb:69:a1:13:47:eb:c8:b9:07:e5:e2:41:bc:66:fa:
27:c0:41:65:04:de:0e:55:2d:5e:ee:04:7b:9f:d2:53:b2:f6:
66:14:a7:ea:ea:e6:8c:a8:0b:30:41:ae:01:db:d8:39:9f:40:
e2:72:c3:b8:96:61:a4:06:cf:68:c5:d9:5c:c1:9c:01:8b:18:
b8:12:0b:9c:99:1f:01:ae:83:fb:32:94:a8:5c:1a:eb:4f:21:
d7:98:90:19:37:e8:f1:91:67:8c:94:3c:67:ab:9a:ca:5c:cc:
2a:bb:2b:6d:33:65:81:cd:53:06:53:4e:83:df:39:cb:9b:2c:
a2:d0:7a:80:2b:a8:b6:4b:ad:79:66:e5:f3:c1:1d:9a:26:d3:
e9:70:24:13:81:2b:4e:0a:3c:22:fb:90:33:0b:62:1f:e0:e1:
32:25:52:3e:78:9f:0e:9c:60:df:19:de:11:af:01:b9:2f:a8:
45:74:3a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:31:18 2025 by rpki-client