Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: Oiv5g1yujds8J+e+uT9lzVXiZF5rfTf3cauFn8ebCyg=
Subject key identifier: E5:AF:8A:EC:26:05:F6:28:E2:47:94:C5:F5:6B:25:9C:0A:70:9F:F0
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 0196A80B6633D1613EF33BFB69FEAC93B67E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: D1
Signing time: Wed 07 May 2025 00:00:41 +0000
Manifest this update: Wed 07 May 2025 00:00:41 +0000
Manifest next update: Thu 08 May 2025 00:00:41 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: 3hijK6sml0hpUFiPKyrY2FTD+V0aYH7/bRQrrJ9jkBk=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:0b:66:33:d1:61:3e:f3:3b:fb:69:fe:ac:93:b6:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: May 7 00:00:41 2025 GMT
Not After : May 8 00:00:41 2025 GMT
Subject: CN=e5af8aec2605f628e24794c5f56b259c0a709ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:42:c6:74:8e:e9:27:65:7a:57:af:05:87:df:
b6:8f:94:8b:d5:bc:dc:2d:2e:61:a6:c6:37:56:d4:
1d:81:2a:d0:70:82:88:b2:6d:bf:e5:75:b7:4e:39:
ea:b1:e7:f5:f9:11:b1:40:c4:7c:90:2c:f2:48:7e:
59:11:d3:3b:38:ae:6c:1b:83:0d:69:ed:09:da:d3:
25:3b:c4:5b:98:be:99:5f:22:ea:ed:fb:0a:aa:fa:
d3:64:9c:3e:e4:4a:fb:58:5e:0e:bb:3f:2b:34:37:
22:ed:85:18:b3:85:e4:a0:40:9a:42:fd:a6:89:ba:
26:e2:72:d4:ae:d8:fa:a8:e8:aa:82:85:2c:a6:34:
6c:d7:7a:1a:2e:ac:dc:9a:ba:1d:91:0c:90:90:bb:
96:70:10:e8:8a:76:79:bf:42:b5:ce:8a:58:ff:8a:
0f:39:6a:62:5e:a0:35:c9:2e:96:e3:31:05:8d:bc:
6f:6e:e0:a7:a2:32:c0:ea:58:7e:b0:7c:51:42:23:
ba:6f:81:69:ea:61:f3:9b:35:ca:bd:ae:f1:07:ab:
8b:c5:b5:e6:89:e8:4f:cc:01:df:93:3e:cf:b0:f5:
89:56:c7:54:0b:aa:df:4b:33:aa:01:d4:3f:a9:3d:
2f:e6:22:41:e5:82:f0:a1:6e:a9:7d:d2:50:f0:ec:
12:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AF:8A:EC:26:05:F6:28:E2:47:94:C5:F5:6B:25:9C:0A:70:9F:F0
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:f1:65:c9:0b:aa:d4:64:15:18:26:c7:d8:df:95:ad:9b:ae:
3d:2e:e1:df:19:56:2d:12:17:98:fb:ac:14:59:9e:40:74:92:
32:83:99:02:ca:95:25:ac:fc:73:8d:8a:6b:16:04:ba:1b:ea:
1d:50:15:df:1b:69:0d:d0:8a:eb:1f:d9:a8:1b:be:57:f5:b1:
0a:5f:0c:bd:90:61:20:ae:ab:c1:8d:22:aa:b1:b0:37:cb:33:
b9:63:74:3d:9e:3f:1d:bb:fe:68:13:43:17:75:ed:57:b4:20:
e8:cc:bf:8b:96:81:e1:51:06:63:93:a8:dc:0f:19:bd:0b:b7:
cb:3d:ba:47:15:6e:87:d2:9d:e1:10:f0:93:fb:b7:08:a5:af:
6b:f4:97:78:ad:40:73:56:55:98:ed:d1:2a:fb:0e:8b:f8:cd:
34:b5:56:a0:34:60:45:92:fa:a4:70:ca:8c:ab:51:51:89:59:
54:49:41:d7:dd:bb:3c:46:53:d5:da:ac:d8:b7:6f:72:26:fa:
d4:52:ad:d4:a4:e9:76:d7:3f:41:91:a6:4b:1d:b2:7f:30:27:
22:1b:5f:98:4f:f0:89:b7:50:34:59:27:c0:e2:f0:73:41:1f:
a3:a1:4b:e0:ac:a4:43:09:9c:dd:d3:2f:84:8e:dc:5d:45:42:
e0:67:de:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 08:39:31 2025 by rpki-client