Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: +EE3vJsoIpWOcM730ifyNWBaaRRlm/LchBCyjAyQ710=
Subject key identifier: 91:C4:D2:7C:65:A5:5C:DB:39:CB:24:B8:FC:82:75:81:8D:FB:C1:DE
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 0196AF1FDA2A4681136DBCA456E1D729E104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 08ED
Signing time: Thu 08 May 2025 09:00:22 +0000
Manifest this update: Thu 08 May 2025 09:00:22 +0000
Manifest next update: Fri 09 May 2025 09:00:22 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: VMKoLPMuplxj/0guWV39/6ZsZlnvmX4vTdJ1/0wnd7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 09:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:1f:da:2a:46:81:13:6d:bc:a4:56:e1:d7:29:e1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: May 8 09:00:22 2025 GMT
Not After : May 9 09:00:22 2025 GMT
Subject: CN=91c4d27c65a55cdb39cb24b8fc8275818dfbc1de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:72:33:20:94:ae:37:9a:3a:ab:e6:0e:7b:bd:
e3:b1:ac:7b:49:97:ac:4c:7b:e8:3f:49:ee:5e:1d:
0e:3d:33:09:1c:3e:54:92:3a:b0:04:29:77:52:12:
50:fa:f4:93:5b:b7:7d:0b:d9:01:b2:dc:59:e1:a7:
f5:fe:12:12:25:38:32:3b:ca:50:82:c2:5e:c1:53:
e2:2c:cd:62:a5:e8:61:72:94:f4:bb:96:97:bf:60:
5d:9f:7b:3a:fb:9f:d5:c4:7f:8a:b4:18:80:97:c8:
9b:c1:c6:06:a2:30:f1:0e:d3:d7:8b:16:54:98:2e:
a2:10:f1:99:6d:5d:e6:70:3d:7a:f2:48:e0:2a:f7:
9b:20:82:eb:1b:dc:e7:39:a1:af:0f:9d:49:7d:c5:
13:63:18:cf:00:55:e2:ad:cc:dd:14:63:18:e7:c4:
f7:98:90:ff:b2:76:1c:62:e7:7c:6a:ce:00:6e:f5:
83:12:d9:97:d4:e3:d9:9c:b3:6f:13:b9:e2:2c:b5:
ec:92:4c:96:85:a3:d1:6d:c0:7e:65:64:27:27:9a:
4d:57:3e:b4:cf:bf:5f:94:e1:7f:ae:f1:b2:13:1c:
46:bc:44:4c:70:3f:eb:61:8b:55:a8:85:cd:6a:3f:
9a:cb:12:c1:39:f5:da:15:a0:ca:78:03:e8:e7:49:
1d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C4:D2:7C:65:A5:5C:DB:39:CB:24:B8:FC:82:75:81:8D:FB:C1:DE
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:44:69:24:27:1d:23:a2:56:ca:0c:4a:aa:c6:b3:7b:81:77:
43:45:48:5f:07:77:b0:8a:05:1a:91:c8:76:cf:15:84:2a:78:
e8:8d:26:a3:31:7d:fe:32:1d:07:2d:87:66:6d:11:70:f9:29:
dd:b6:8e:23:db:c0:ab:7b:0c:29:34:f0:4f:08:c7:8d:31:7b:
67:d7:ed:5a:8f:e0:21:90:95:3d:ed:9a:c8:e5:18:c2:bb:63:
ff:e3:e7:bb:a7:f4:9e:03:d4:dc:56:17:45:08:bc:c9:6e:80:
5b:9d:f3:01:e1:37:ea:56:a9:df:e1:eb:04:c9:92:bb:07:c0:
56:ec:2e:3e:05:20:b7:41:9c:a4:cb:a9:c7:d2:53:7d:07:0b:
24:c5:2c:bc:21:04:d0:c4:25:b1:c8:82:83:04:18:33:16:b3:
0e:20:26:33:19:83:e6:de:76:85:3d:47:3b:8f:46:13:81:4f:
7c:a2:8a:27:76:76:0a:f8:fe:09:cd:d8:bd:30:d7:5e:7c:8d:
7e:31:04:e6:90:e1:ee:a2:d6:13:50:76:7b:2b:11:66:15:37:
23:6a:3b:17:9a:a4:24:72:54:af:e7:ed:d6:68:b7:a3:33:62:
76:8f:e7:52:b5:c3:88:df:73:74:50:ff:bf:cc:9e:a9:34:33:
6a:d8:56:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 18:51:04 2025 by rpki-client