Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: CoS4+9l/FbCOYTydXwVAjBp0RU892XE+Q41Xqi+GwRA=
Subject key identifier: 03:D6:FA:59:64:5D:98:5C:88:7C:AB:A8:93:F1:00:20:90:C0:C4:3D
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 0196B9A46BEC2FB865A145904A5E4B9871D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 0828
Signing time: Sat 10 May 2025 10:01:22 +0000
Manifest this update: Sat 10 May 2025 10:01:22 +0000
Manifest next update: Sun 11 May 2025 10:01:22 +0000
Files and hashes: 1: 1GUi9iA8Rgrr5GN4QB6VlqMrvms.roa (hash: s/MIypH3pMJ3iuiuGr8K68PmgQyO6HFRzwvdBy3o4FU=)
2: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: bjlwgufU9UFrUdgqM/h4etIjSSYMQaQVz8xU7KpgsJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a4:6b:ec:2f:b8:65:a1:45:90:4a:5e:4b:98:71:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: May 10 10:01:22 2025 GMT
Not After : May 11 10:01:22 2025 GMT
Subject: CN=03d6fa59645d985c887caba893f1002090c0c43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:d8:0f:b4:c7:b0:a5:ce:a2:42:d5:ff:d5:
20:d0:0b:87:63:bc:94:0e:10:79:0e:bc:8f:b8:7e:
8a:81:52:bf:df:1e:3d:56:e5:f6:c6:c6:a1:c8:a7:
28:5e:b6:12:a4:0c:b2:7a:70:1a:74:92:c5:c1:e7:
98:74:ee:f1:bf:68:87:fe:5a:81:aa:db:49:fd:3b:
4d:3f:33:1d:32:8b:4d:a3:fb:e3:d8:2a:2c:c0:8b:
f2:e8:2c:aa:3d:7c:7a:fe:23:03:ef:f2:26:1d:3a:
37:f6:eb:9c:87:3d:88:45:6b:51:ab:dd:0e:60:fd:
1b:3b:19:73:cb:09:d4:83:27:c9:fc:09:9c:51:5c:
59:3c:d8:c8:23:a2:45:ab:19:ae:c8:60:b9:b3:e6:
fb:21:32:78:8d:14:d0:8b:2f:bb:df:73:4d:2f:34:
15:81:f4:a6:15:9f:29:dd:2a:93:8e:ad:a6:0b:0f:
fb:e7:62:88:1e:c2:cc:e8:07:a1:a7:30:ef:63:04:
57:e2:27:13:94:49:40:f2:d3:11:ab:12:b8:dd:48:
c3:1b:91:31:c0:13:ad:ca:cf:0b:bd:d6:46:d6:e4:
4d:f9:cd:07:18:95:85:d2:d6:a8:e4:84:ef:e7:d2:
6e:da:5f:68:33:2d:56:20:96:95:01:7e:96:e5:5f:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D6:FA:59:64:5D:98:5C:88:7C:AB:A8:93:F1:00:20:90:C0:C4:3D
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:4b:a3:24:36:64:24:45:0f:80:a6:86:2c:ee:b4:0f:82:20:
ac:66:ce:14:c3:2d:07:9f:5d:bb:cc:6e:b4:f3:31:be:88:d3:
15:3b:a4:fb:27:81:32:95:85:90:f4:62:07:09:6a:0f:bb:5f:
2a:bb:37:f8:75:98:4d:64:20:74:6f:d9:3c:94:76:6c:e9:21:
60:b8:2f:b0:e5:ab:03:08:16:72:b7:2a:15:c6:26:ab:02:16:
91:2d:34:59:e1:91:47:d9:ef:37:40:0e:45:8e:71:2f:30:4a:
21:aa:9d:0c:15:11:65:65:e0:13:e5:d2:3d:02:55:00:cb:da:
92:c2:7c:ad:66:e2:fd:37:67:64:01:67:48:1b:ba:b4:3d:3a:
57:93:2f:08:81:5c:8a:0d:ce:93:03:14:58:5a:1e:8b:8f:a5:
50:e7:5c:2e:99:9f:ed:d2:ee:db:25:3e:e5:74:64:e8:cb:68:
7f:a2:ba:5f:38:66:7a:e3:7b:30:1c:dc:14:48:48:a2:9e:2c:
bb:0b:ac:2f:81:09:0e:45:8d:67:e4:1f:98:9a:b5:91:98:c7:
af:22:ad:e6:9d:50:8f:f1:59:4e:60:2d:d2:96:3b:60:02:41:
03:2b:9f:e7:84:05:7a:96:ee:54:dc:7d:aa:16:9b:a5:83:c6:
ef:c6:e3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:41:57 2025 by rpki-client