Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json)
Hash identifier: ZMDc+HiX4v7lPt2TvKQwR5zzn4dvWRrjw51ePJPpbDM=
Subject key identifier: 6E:0E:65:35:B5:84:08:D6:D4:95:E5:D1:E3:92:F2:34:E0:88:99:23
Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Certificate serial: 0196A98B8DF4B559B07DAA7BD179724F9F1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
Manifest number: 1538
Signing time: Wed 07 May 2025 07:00:17 +0000
Manifest this update: Wed 07 May 2025 07:00:17 +0000
Manifest next update: Thu 08 May 2025 07:00:17 +0000
Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=)
2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: TWQB8xCDT3m5jiKAic/9AAePTub2GLbXiUQUZ2HePCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:8b:8d:f4:b5:59:b0:7d:aa:7b:d1:79:72:4f:9f:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed
Validity
Not Before: May 7 07:00:17 2025 GMT
Not After : May 8 07:00:17 2025 GMT
Subject: CN=6e0e6535b58408d6d495e5d1e392f234e0889923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e5:ba:a2:23:6e:ef:e9:72:39:98:d6:99:af:
43:5e:96:be:a8:2c:4c:fd:3e:00:1e:a4:4c:43:4e:
02:03:ba:66:a0:c4:96:39:13:59:64:32:ee:2f:87:
24:10:5c:7b:cc:7e:cc:8f:aa:42:c8:03:16:7f:9c:
7d:d5:ac:0e:0f:ba:1d:96:de:35:77:45:f8:a0:c9:
65:9b:93:e9:10:d9:7a:3b:69:7b:e4:04:6c:e5:86:
54:7f:43:01:0b:9c:60:81:fd:a4:0a:56:b0:e8:59:
60:3d:a7:cc:a4:7c:a3:03:f9:c7:be:24:11:9b:bd:
40:2d:15:4f:13:e4:7d:7d:73:cc:3a:ec:23:a2:5b:
c3:10:cc:05:0f:f3:b7:8c:22:39:a0:05:b0:86:ef:
f4:7a:0d:87:bc:dc:42:e3:d6:bb:9c:72:cc:c1:b1:
19:5b:32:08:88:ed:61:b9:7d:81:80:29:01:c7:bd:
2f:d7:a6:a9:e0:14:b6:fa:a2:5f:6a:0c:3f:d9:f7:
20:41:e9:42:e2:e2:b3:d2:42:26:8e:12:7b:78:b6:
7e:56:4a:ad:b4:93:a9:2a:2e:a5:7c:7e:f0:31:5e:
3b:fb:11:63:b8:d5:a1:04:59:97:4c:34:46:c4:aa:
c0:57:b1:7b:f4:b9:67:50:39:60:81:4c:e0:13:16:
83:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0E:65:35:B5:84:08:D6:D4:95:E5:D1:E3:92:F2:34:E0:88:99:23
X509v3 Authority Key Identifier:
keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:03:e4:ea:ea:70:d9:c4:51:6d:fe:03:f7:be:5f:7d:8c:0f:
a8:3a:d3:fc:21:25:ea:37:10:03:a2:70:a4:14:b0:50:0a:10:
ac:71:40:c6:55:20:fb:2e:8e:09:fa:f7:a0:d1:19:13:dd:78:
1b:b7:66:ac:84:96:3c:e1:31:81:74:c6:1d:6f:b8:5d:00:48:
59:dd:91:73:5b:03:5a:18:fe:f0:02:73:5f:30:11:82:f9:65:
3d:5b:49:0b:62:95:ad:ca:33:27:95:8d:2b:24:d0:c5:7c:8b:
94:0c:1d:7d:58:5d:1e:82:b3:6b:a6:ef:82:1b:f3:ae:40:81:
5f:17:d0:5d:d4:7f:eb:03:02:c0:c9:f0:78:10:2b:a2:1a:1a:
13:02:9c:f1:6d:6b:03:ff:eb:3a:6d:4c:9b:75:63:b6:d9:ff:
76:9b:96:65:84:22:a7:3f:15:b1:14:7e:b2:c5:9d:84:b9:e9:
4a:78:be:04:37:8c:1b:33:88:d3:a4:9f:85:2f:08:62:cc:1e:
71:44:63:26:cc:a0:50:12:85:f0:73:e6:51:d4:14:a8:03:e7:
3f:ad:cd:f8:5d:13:0a:80:9a:1c:9a:df:ab:c3:71:f3:ad:a2:
7d:eb:f6:a4:55:23:66:89:3b:f1:e0:c2:ce:b0:5a:11:50:1d:
fe:8c:7c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:14:53 2025 by rpki-client