Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: zvKROKvlAqggf6TmWZ9HDwFqrp6wIZARRCPw6hfNJXg=
Subject key identifier: DD:E2:13:E0:19:DE:D4:47:62:32:6D:93:DE:51:51:C1:1E:01:17:D5
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 0196BFA5EEC10B867BB2593BA729B125B7F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0CBA
Signing time: Sun 11 May 2025 14:00:44 +0000
Manifest this update: Sun 11 May 2025 14:00:44 +0000
Manifest next update: Mon 12 May 2025 14:00:44 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: 80x8j9t1bpCUeDkE7zLVAGlDbm5z+4eOCUIxRqK8wNM=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:ee:c1:0b:86:7b:b2:59:3b:a7:29:b1:25:b7:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: May 11 14:00:44 2025 GMT
Not After : May 12 14:00:44 2025 GMT
Subject: CN=dde213e019ded44762326d93de5151c11e0117d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:67:ca:1d:de:85:b3:1a:e3:61:37:f8:1f:dd:
75:15:62:1a:83:e5:5e:61:1e:b4:05:41:c2:39:f6:
83:0b:ea:64:f3:7b:5b:e9:55:e1:f5:ad:1c:30:fc:
61:44:ec:1f:6b:57:4e:37:45:d4:27:b3:be:bf:47:
9c:d1:64:fa:c0:ad:21:6e:d8:c6:bc:66:61:87:06:
62:59:77:3d:0e:bc:23:51:54:64:51:81:c9:54:89:
89:f1:9e:65:35:bc:17:d0:8d:c6:3a:41:4d:9d:c6:
6b:83:2d:5c:4a:16:5d:06:9c:7d:49:a6:8c:b3:f4:
a2:a6:85:14:ce:a5:60:d0:d0:eb:c8:a0:da:a0:48:
af:4b:a5:14:59:13:fd:9c:3c:fc:50:df:23:dc:a4:
bd:bc:6b:62:6e:74:ce:b1:80:ef:7e:85:4b:42:fe:
9e:5e:de:ab:41:d9:cf:78:f5:2e:93:f5:4c:01:11:
dc:9e:4d:32:ef:8b:f1:d3:b2:1b:c8:12:a1:71:fc:
cf:74:93:f4:5f:5a:73:28:00:c7:7e:13:14:e6:92:
5b:1a:fa:25:e9:ac:4f:15:e1:94:6a:00:6f:a4:9c:
11:4b:86:01:b6:56:ca:db:88:7e:a7:d3:20:4d:3c:
ad:51:05:67:32:80:34:de:c5:61:cb:16:32:c5:a1:
b3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E2:13:E0:19:DE:D4:47:62:32:6D:93:DE:51:51:C1:1E:01:17:D5
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:77:6c:71:80:6c:24:6b:b6:8a:79:6f:96:80:e1:cb:72:de:
02:6b:ba:bb:f7:81:b7:e2:39:64:2f:7b:6d:a2:3f:d1:5b:9e:
2b:de:17:ff:1e:ce:80:4e:7d:f1:3f:70:09:9b:af:49:a2:fc:
65:08:92:fe:59:7a:47:15:d9:a2:61:95:0c:04:54:fd:cf:55:
f3:6f:77:a6:cb:ad:1f:99:d6:11:49:a1:28:6c:b1:fa:70:91:
01:6f:dc:0f:71:ec:ef:9d:e5:80:7f:7b:23:8f:7a:e9:89:1b:
4d:44:e7:ba:ae:9b:bf:36:c9:1d:74:e1:76:11:f3:5d:fd:71:
9c:9f:10:6f:eb:fa:30:09:dc:3d:ec:40:14:4b:16:37:30:8b:
57:a4:89:6b:ec:44:b0:30:d6:88:a3:66:d5:be:98:04:ed:e6:
ce:dd:77:d4:af:70:33:44:be:7c:bf:d3:9b:6f:22:0f:13:0b:
98:e5:07:1d:e0:64:f4:72:3e:33:49:55:7a:af:77:2c:ec:cb:
4c:b4:c7:73:05:ef:18:27:59:ee:5c:2d:1a:2d:82:a4:ea:51:
72:ae:9b:72:0e:61:6a:ea:76:4f:07:d3:58:4a:45:24:54:80:
7e:65:58:35:49:7b:e9:c8:fc:d0:cd:1d:5d:3a:ad:db:29:16:
fe:3a:df:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 00:16:59 2025 by rpki-client