Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json)
Hash identifier: BLE0n25zrButs8cwFrviK1gPSB+CGVEd6Eb7BMpeDX8=
Subject key identifier: 44:F9:A2:90:31:13:4D:10:5A:CF:C2:06:48:C6:25:88:6B:B5:3B:F7
Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Certificate serial: 0196C8DF7E1417F5C1FD8362449515944898
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
Manifest number: 1039
Signing time: Tue 13 May 2025 09:00:12 +0000
Manifest this update: Tue 13 May 2025 09:00:12 +0000
Manifest next update: Wed 14 May 2025 09:00:12 +0000
Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: 29tcv2pNORWIg8oPKyGA7N2NsfVMtAlJBiDXVvVhhAQ=)
2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 09:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:df:7e:14:17:f5:c1:fd:83:62:44:95:15:94:48:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a
Validity
Not Before: May 13 09:00:12 2025 GMT
Not After : May 14 09:00:12 2025 GMT
Subject: CN=44f9a29031134d105acfc20648c625886bb53bf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:cf:79:a3:e9:8f:23:5c:b2:52:8a:5a:d9:d4:
39:2f:b9:3b:3d:00:3c:23:61:07:89:4c:6e:d6:39:
2a:a4:99:0a:1d:7d:4b:f4:76:56:42:9d:be:39:cf:
c9:30:c8:e6:98:26:4a:be:b0:bf:63:d0:ec:4d:b7:
ed:47:1b:40:74:7f:50:78:05:8a:d0:b9:5a:f0:00:
a4:bd:fc:de:95:1e:75:a9:0d:89:f1:d3:d6:94:48:
fd:89:b4:06:f4:bf:3a:b1:bc:76:13:e6:b0:5e:85:
57:63:2a:97:5e:0e:5c:08:81:9e:a3:ba:6b:75:2e:
82:74:9f:3b:9c:83:4b:2b:46:d2:95:5b:0e:ae:e9:
f2:85:c1:8b:04:2a:d0:93:9e:26:15:4c:9c:2c:3e:
5d:b9:9a:de:41:37:59:da:e2:64:49:2b:bf:45:e0:
b4:7c:e4:a9:83:9c:3c:02:a6:2e:3a:1f:69:77:08:
4c:c9:93:96:95:93:fc:c1:95:ee:8f:15:8f:d4:c4:
ca:a0:35:f6:94:04:31:b1:03:d8:38:bd:00:36:30:
5b:67:d4:f9:14:44:e2:50:5f:ec:92:3b:33:46:92:
a7:ff:d5:c8:ee:ca:de:48:d0:26:7e:2c:2f:e3:aa:
30:ed:bd:c0:cb:49:73:d3:fa:58:e0:de:58:7b:72:
c6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F9:A2:90:31:13:4D:10:5A:CF:C2:06:48:C6:25:88:6B:B5:3B:F7
X509v3 Authority Key Identifier:
keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:63:5d:a4:56:ae:91:c0:95:02:d4:ae:6f:f8:eb:31:16:20:
cc:23:13:66:f8:d6:77:3b:e5:24:c8:cd:42:aa:39:ed:00:08:
31:7a:5f:ea:cc:a6:56:2c:6c:bb:ce:cd:74:c9:50:35:1c:08:
80:29:88:ef:76:47:eb:16:a7:ea:04:7f:5e:a7:ab:58:33:ce:
ae:35:65:c6:c9:96:33:a2:79:56:fb:80:e7:f7:4e:9b:50:ed:
04:b3:9f:60:59:27:f8:a4:6a:dd:47:0c:ce:c1:05:db:2c:1b:
89:b4:a1:91:9e:80:07:06:5a:9a:3e:ea:74:90:d8:6d:df:8e:
44:53:b0:28:02:33:28:60:d2:cc:9d:52:67:91:32:e0:cc:ab:
8f:64:5c:e8:ae:28:51:f3:1c:9d:3d:30:4c:5d:52:32:f4:68:
4e:2c:a1:51:df:6d:a9:de:db:a2:94:03:3e:8e:12:aa:f6:c3:
0e:6c:2b:f6:52:9b:cd:0c:ea:ce:76:e1:b0:0a:18:46:d1:f7:
4b:e6:d7:32:fc:98:35:c4:c9:69:fb:0e:b9:ed:81:c6:0d:09:
fd:1e:4c:aa:34:d5:c2:c3:4c:cc:4a:fe:47:c8:94:aa:c4:9f:
6d:27:c8:d8:24:a9:3f:00:7a:be:f6:c7:a7:eb:f5:78:b7:65:
a7:02:04:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 19:36:57 2025 by rpki-client