Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
File: hGlcglEp42VKUIs7xSn-Ols4ObE.mft (raw, json)
Hash identifier: cDROL+mz5j9iTBELtywNYYJXsHv5L0IeM2nXyTmk1Wk=
Subject key identifier: C1:1D:F6:45:BB:70:DC:ED:62:30:2A:9E:AD:FB:B4:3B:C7:E7:99:34
Authority key identifier: 84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
Certificate issuer: /CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Certificate serial: 0196C53A36BB437026C50A0BD3BFF5FAF470
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
Manifest number: 1089
Signing time: Mon 12 May 2025 16:00:48 +0000
Manifest this update: Mon 12 May 2025 16:00:48 +0000
Manifest next update: Tue 13 May 2025 16:00:48 +0000
Files and hashes: 1: DLIEmy-lWsyrr-sd36twYuEevio.roa (hash: aUcurTUu0ie7YyEr+ll+2DTq3WZheC8vTveKU2r56C8=)
2: hGlcglEp42VKUIs7xSn-Ols4ObE.crl (hash: Vv6AtVyozNvH5KvupRGjMTv+XFduuEms6AncdnkDK1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:36:bb:43:70:26:c5:0a:0b:d3:bf:f5:fa:f4:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84695c825129e3654a508b3bc529fe3a5b3839b1
Validity
Not Before: May 12 16:00:48 2025 GMT
Not After : May 13 16:00:48 2025 GMT
Subject: CN=c11df645bb70dced62302a9eadfbb43bc7e79934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:85:d8:3c:a3:8d:eb:7f:69:ff:02:93:d6:a6:
a3:80:97:e9:fc:49:6b:ff:d2:e5:86:da:04:31:4b:
29:43:4c:31:45:8c:71:4a:f8:06:d1:f8:4a:7d:4b:
53:22:96:37:2b:6a:ed:29:21:c3:72:32:36:3a:a9:
28:94:3e:97:2b:e0:66:17:a3:50:33:32:80:d0:f6:
8b:14:72:8a:97:92:c7:30:ab:20:ab:95:ac:e0:3e:
21:6f:41:43:36:42:af:f7:5a:f2:13:44:c6:3b:91:
2e:07:f9:96:f7:cc:3f:54:c7:b1:ea:d3:73:7a:86:
8f:9d:f1:3e:a6:07:31:7c:73:9e:9f:e6:6a:2e:2b:
2a:cd:e6:f2:8f:7b:d5:bc:02:31:b0:3f:17:79:41:
f2:8b:b1:ac:59:8a:93:96:2c:d6:15:70:6f:1b:b3:
05:e1:c4:b9:5f:85:ff:2e:92:a3:2d:58:8e:12:d6:
de:e8:89:68:ac:8e:e7:33:24:e6:cf:09:1f:4d:b3:
a6:87:22:10:9a:a4:99:74:2a:58:89:34:6c:f6:a2:
8d:d6:22:98:ea:c9:6e:e4:8a:db:f4:91:75:05:ee:
bc:f5:fe:cb:39:83:4b:af:9d:a8:65:20:2c:c3:f6:
d4:ab:a6:69:d1:a0:da:af:4d:03:a1:6b:b1:f5:5e:
48:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1D:F6:45:BB:70:DC:ED:62:30:2A:9E:AD:FB:B4:3B:C7:E7:99:34
X509v3 Authority Key Identifier:
keyid:84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:ce:fa:38:2f:4f:09:19:2f:f8:96:73:8d:ff:bd:b0:bf:2b:
96:66:3d:7f:7f:df:7d:5d:37:4e:ae:5f:74:b8:b2:ea:a6:3a:
78:39:55:ee:89:f8:3f:ee:12:39:ca:fc:0c:ee:f1:0c:74:e1:
37:c8:8b:ed:27:0c:bf:62:91:2b:54:b2:a1:c4:0e:a6:44:ea:
94:04:08:47:e2:f7:bb:2e:c2:6b:89:de:e7:6c:5a:2e:fc:82:
9a:f2:25:3f:23:62:a6:fa:f0:10:4d:0b:57:ae:97:b2:00:0f:
aa:83:34:ed:d2:78:e9:d6:d7:6a:e3:eb:6a:5a:78:0b:6c:af:
9e:f3:8a:dc:bb:49:9f:9a:84:a4:e1:89:2c:76:88:52:20:32:
90:2d:bd:ee:93:da:44:c3:bb:d7:2f:29:54:4b:66:7c:72:bc:
f4:50:0b:76:b1:f4:c3:5f:db:7d:df:14:f5:06:88:08:ff:e8:
b2:ce:26:39:f9:ee:b0:9d:b3:b3:87:80:1c:48:c8:d0:5e:78:
56:e7:a6:34:f2:f9:1a:af:b7:79:ee:64:98:ea:79:cf:fd:14:
2a:52:65:ca:5e:12:45:32:92:4c:c4:64:38:ae:63:71:fb:ab:
a6:d5:4f:9c:d8:03:14:00:04:8b:b8:1f:15:40:44:b4:05:b4:
12:26:a9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:42:58 2025 by rpki-client