Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
File: Heds5TXPuOIW7A0k3rV50aTKDgY.mft (raw, json)
Hash identifier: ioR1D1zO+4U970jgDUN0cFEqA6UCZtymK5Twj1JRNTw=
Subject key identifier: 73:44:AF:A7:09:5A:62:F4:EC:5A:75:5A:84:BA:77:FD:5F:16:0D:B0
Authority key identifier: 1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
Certificate issuer: /CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Certificate serial: 0196AF203E501381E1D2EB5D20961D8ACF9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
Manifest number: 025E
Signing time: Thu 08 May 2025 09:00:47 +0000
Manifest this update: Thu 08 May 2025 09:00:47 +0000
Manifest next update: Fri 09 May 2025 09:00:47 +0000
Files and hashes: 1: Heds5TXPuOIW7A0k3rV50aTKDgY.crl (hash: V2VJRsNmJOFWS5j/uGgUGzgFN4DTss9GBt1z5Mp9aLA=)
2: Xrjd26KSD1TzQLdbZ0iBnuMSgeo.roa (hash: EiQGdbjr/bLCsj+VsiQM91wVnJzTPBjoFf00fG7D2D0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:20:3e:50:13:81:e1:d2:eb:5d:20:96:1d:8a:cf:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Validity
Not Before: May 8 09:00:47 2025 GMT
Not After : May 9 09:00:47 2025 GMT
Subject: CN=7344afa7095a62f4ec5a755a84ba77fd5f160db0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:02:7d:31:23:04:8c:57:1b:c0:d4:08:f8:40:
52:58:62:f6:d4:16:52:9c:f9:ed:e4:ef:12:a5:22:
08:fd:e4:59:bc:d1:b1:0e:20:3e:1c:fa:43:56:35:
aa:3d:2a:08:72:de:7c:a0:bf:75:c0:e8:73:17:05:
e0:71:f1:ba:73:2d:3b:ef:09:64:a3:1e:e1:b4:09:
21:87:46:95:53:79:ac:b1:d8:23:fa:64:51:be:13:
f6:07:d2:88:38:6c:7a:25:fd:78:f8:91:2b:14:25:
10:95:f3:e2:f4:f7:5f:12:71:a4:a5:a6:3b:73:9b:
e1:6e:ec:b2:b2:3b:86:2b:df:10:bb:1f:31:70:5d:
61:8e:4a:46:cc:b4:c8:fe:28:4d:94:1c:dc:49:8c:
42:8b:95:9a:a6:28:dd:fd:44:45:93:52:96:03:3f:
4c:fa:9e:17:9c:9f:1b:16:92:96:ef:b5:64:a6:76:
81:7c:e7:5a:73:5e:a0:25:74:af:8a:1c:b2:89:5c:
e3:ef:73:fc:7b:27:04:bc:08:af:bd:cc:78:d3:d7:
e5:ea:e7:e1:47:b4:4b:11:da:f9:91:5b:37:44:9c:
ef:84:2b:11:7a:65:7c:2b:e4:df:2e:7a:4c:6c:ae:
99:b8:77:00:75:d0:b7:59:65:05:58:dc:d0:27:28:
9e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:44:AF:A7:09:5A:62:F4:EC:5A:75:5A:84:BA:77:FD:5F:16:0D:B0
X509v3 Authority Key Identifier:
keyid:1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:c1:c6:e8:9f:ce:4e:40:e6:d5:e5:ad:f6:ce:5c:b2:0c:30:
36:fd:3d:f1:88:67:ad:88:90:c1:1a:1c:49:67:0f:ce:cc:bc:
ec:b6:8f:be:e9:3c:c1:db:d3:66:57:ad:d9:f0:90:8f:9d:4a:
ca:dd:a5:ac:b3:ef:83:d7:d4:7c:b9:36:60:af:0b:08:a7:be:
8b:2d:62:3f:f2:26:7b:0e:64:a8:6c:09:de:6e:78:54:d5:52:
aa:e1:14:c1:ec:73:45:47:7d:37:d8:dc:be:bc:ef:37:6e:fc:
4d:6d:ab:1a:64:31:ff:a1:04:6a:f6:9b:02:b8:1e:e5:ac:06:
cc:2c:8d:32:53:aa:ff:e5:4d:b1:b9:b8:63:30:ed:46:5b:58:
e9:8e:cb:bf:cb:72:37:04:59:8d:02:9d:09:fc:a5:a8:fb:50:
c3:e5:16:41:10:c2:ed:56:da:85:91:d0:e9:12:e4:c2:9e:d8:
e4:ef:da:ca:f7:69:f0:22:87:db:18:ca:c9:d6:f3:ba:67:41:
76:05:9f:40:08:fe:1c:6c:06:78:f1:af:9d:70:49:58:9e:b1:
54:f1:e6:7b:a5:e0:1d:72:9e:07:47:37:da:c9:4a:0f:6c:1d:
1f:28:d7:07:ee:24:1e:fc:b8:5d:4e:10:a5:7c:be:15:ec:fc:
c2:97:81:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 14:43:47 2025 by rpki-client