Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: 6XA45D7TS9ju8rKjovEcsFlY0pQrHZo2Be4ztt5jU/c=
Subject key identifier: 9D:0E:F9:05:6C:54:64:F8:86:3B:9A:61:D9:85:5E:B2:75:ED:39:CE
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 0196BA11D76D7C6DB712465D4BB45DF25500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 1532
Signing time: Sat 10 May 2025 12:00:53 +0000
Manifest this update: Sat 10 May 2025 12:00:53 +0000
Manifest next update: Sun 11 May 2025 12:00:53 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: EY8EdVc2tAlfUpiHLEbC/lPHDYMgU5HjYjgn+36yD3s=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:d7:6d:7c:6d:b7:12:46:5d:4b:b4:5d:f2:55:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: May 10 12:00:53 2025 GMT
Not After : May 11 12:00:53 2025 GMT
Subject: CN=9d0ef9056c5464f8863b9a61d9855eb275ed39ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:3b:cd:40:6b:24:62:c5:83:ae:5a:b4:22:74:
50:c6:b1:92:50:cf:e3:7b:5b:d3:2f:d5:a8:9f:f1:
3d:e5:73:1f:b4:e3:a9:fd:03:df:52:93:07:40:6b:
84:4f:77:e3:66:19:df:36:9d:60:1d:5d:b9:33:0f:
12:56:96:4c:2a:09:39:43:ff:3b:6b:e4:83:69:b6:
a2:d3:c2:24:53:56:5b:a5:40:99:2a:48:c7:9e:53:
2d:e9:c6:8d:30:84:f8:95:95:be:b9:c6:83:4d:d2:
4e:1c:16:b0:7f:8b:a0:4f:c5:40:b5:c7:32:09:99:
e9:9d:25:06:2b:3d:d9:64:21:8a:3b:54:55:38:c2:
31:ce:03:3e:b8:8c:31:f1:3f:7e:42:54:15:b4:0d:
71:8f:6d:e0:96:0f:b7:c5:c6:9f:81:b9:66:d6:43:
3b:7c:eb:82:87:97:9f:fa:ad:b6:25:d4:c8:df:1c:
6b:e9:4d:d5:07:8d:f7:30:d3:4c:af:3b:aa:60:16:
c3:4e:6f:6a:11:37:3f:e6:73:19:e0:fe:b7:91:f2:
3f:73:d5:19:26:8b:12:a9:5e:42:80:0e:92:bc:fb:
56:a7:85:e5:17:78:b0:ad:97:70:ad:0f:d3:55:4a:
06:31:de:74:a3:a6:74:31:53:17:31:75:57:5e:20:
b7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0E:F9:05:6C:54:64:F8:86:3B:9A:61:D9:85:5E:B2:75:ED:39:CE
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:d0:b4:82:81:0a:d7:39:f3:da:1a:4e:6e:46:1f:12:1a:a2:
d3:ad:db:dd:37:76:dc:58:c7:41:15:6d:0a:34:31:a3:3f:60:
b5:a6:ac:dd:4e:19:24:6a:3a:d5:35:96:42:e1:6a:66:87:96:
89:b7:03:b8:12:74:f3:6c:fb:6d:0a:13:24:61:bd:81:35:0f:
91:66:ad:f6:67:0a:97:0c:37:6c:80:db:df:62:9f:78:5e:28:
46:46:f4:8a:16:0f:1a:9b:34:d3:12:0a:9c:92:78:a9:73:02:
dd:e2:40:20:f1:20:fc:f3:6f:21:0e:bf:50:15:3e:4b:24:93:
19:45:b2:02:6a:90:7e:82:60:82:18:e5:cf:c8:39:47:01:e3:
ea:bb:53:c7:4b:be:e7:27:34:1c:6f:1c:50:f2:d1:b9:63:b0:
57:ae:c2:4a:3b:8e:7d:02:e6:e0:f9:c2:71:eb:27:45:c4:ec:
96:6a:a6:e3:09:85:c8:e1:e3:a9:1c:a2:3e:ee:e7:53:4c:4d:
4d:98:b6:38:ac:f6:15:f5:5b:58:07:ab:0f:45:ac:16:4d:e4:
ba:0f:6d:3b:40:a2:ac:d7:32:98:de:c5:8c:6e:ec:83:fd:87:
31:57:96:f4:a8:5e:aa:47:a8:be:c2:67:b7:51:4a:9c:d7:02:
0c:13:b6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:52:20 2025 by rpki-client