Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
File: HdXNKgJh4eYGndd1iU2CbuiDbB4.mft (raw, json)
Hash identifier: tV55Ju7shfKWV4oDbWstdV7IJxagDVNjq8zIQycVIh4=
Subject key identifier: DC:45:6C:89:1D:85:44:C1:6E:B0:E8:67:A6:33:1F:94:8F:D9:88:78
Authority key identifier: 1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
Certificate issuer: /CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Certificate serial: 0196C45E2193E08863340D147D3C6B75CD92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
Manifest number: 1538
Signing time: Mon 12 May 2025 12:00:25 +0000
Manifest this update: Mon 12 May 2025 12:00:25 +0000
Manifest next update: Tue 13 May 2025 12:00:25 +0000
Files and hashes: 1: HdXNKgJh4eYGndd1iU2CbuiDbB4.crl (hash: J4V1SfMkAKMru5JTUw3D3LNFQmcXjrRNn9kNI9ANVug=)
2: Z-7u2MA1CjZD5hYP8TfU-VSZNR8.roa (hash: /80xhWNAq5Vxx5IxhDuQbH3UW7oLWMSaFXrTwbB6FYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 12:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:5e:21:93:e0:88:63:34:0d:14:7d:3c:6b:75:cd:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e
Validity
Not Before: May 12 12:00:25 2025 GMT
Not After : May 13 12:00:25 2025 GMT
Subject: CN=dc456c891d8544c16eb0e867a6331f948fd98878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:59:2d:4c:73:7c:25:df:71:8b:a1:15:b0:73:
3e:99:ff:a7:db:f6:c3:b6:a7:cc:46:a2:56:ae:e3:
c7:a0:35:13:07:f6:97:7a:51:56:4d:5c:4f:57:42:
1d:1b:e4:d3:f9:1f:ed:85:e4:62:0f:ae:8f:5e:47:
b7:69:e4:91:1d:8e:99:1f:f6:83:44:de:9e:9a:9c:
31:41:c2:1a:21:95:97:4e:ed:28:51:2f:19:5f:f3:
87:b8:d8:f1:c8:ca:31:79:01:82:dc:d8:1e:10:6a:
5e:77:76:0b:f0:18:03:60:5c:ac:4e:73:a9:f4:94:
6e:45:95:4e:6f:45:f9:24:bf:96:90:f6:db:47:9e:
cd:81:c9:2a:6a:a8:be:03:bf:2c:cb:76:9d:12:c5:
f5:a4:4a:ea:68:0b:2a:b6:ad:4e:b8:2e:61:55:26:
5c:f6:36:65:02:68:64:b3:eb:f7:fe:c4:51:33:da:
82:72:7f:a8:03:a9:81:32:3e:9d:5d:2a:6f:38:06:
65:b0:e6:9b:d9:a3:a3:25:84:42:76:13:b9:b8:c2:
21:f7:eb:1b:e1:18:42:25:8c:ac:ef:c0:e4:ab:1e:
19:c4:26:50:c2:ec:29:52:99:40:f8:60:bc:7c:e7:
eb:89:b4:60:c3:31:c2:65:8b:41:b8:e2:34:1d:a3:
69:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:45:6C:89:1D:85:44:C1:6E:B0:E8:67:A6:33:1F:94:8F:D9:88:78
X509v3 Authority Key Identifier:
keyid:1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:ba:ac:11:0c:77:eb:f0:1b:19:e5:fe:d2:99:a0:76:00:e3:
47:6a:d7:8f:39:9e:2b:47:f6:3d:22:02:da:64:05:74:f0:31:
8f:85:31:53:6b:92:3c:73:f4:bf:dd:0d:22:c7:05:52:7a:f7:
3b:8b:12:50:e1:f1:75:09:54:9a:28:b9:2e:16:b2:d1:77:ce:
32:42:5d:c9:a3:09:cb:1f:08:7c:21:0f:4d:71:bb:b2:56:db:
1c:74:66:0c:b7:04:c6:cb:8e:9b:6d:c2:0d:1b:ed:22:44:86:
cb:f5:0e:60:17:05:95:02:cf:42:91:85:f3:ba:5a:c7:6c:39:
08:fa:7b:31:ea:ef:6a:98:e3:81:0f:da:ed:5d:1b:b3:30:ac:
f9:cf:c2:d2:bc:7a:e0:cc:83:d2:05:41:ea:eb:6c:4d:fc:0d:
ad:51:f3:3a:ed:69:6e:ef:9d:f0:88:13:30:89:ec:41:6b:6a:
3c:46:a1:2f:c2:4f:04:6f:89:d3:71:13:94:3f:32:e8:a1:23:
f7:ab:bc:f9:3a:c1:33:14:fa:01:f1:6e:0a:3c:15:36:90:4e:
d6:d9:42:7b:7d:b8:d4:bc:e8:b1:fb:cf:8b:5c:67:64:93:86:
fb:cd:02:a3:e4:ac:00:29:0c:fd:54:29:8f:b9:5b:c8:dd:f7:
63:2f:98:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:49:24 2025 by rpki-client