Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
File: HgClX517dTlrS_oT54lgpaEvTvU.mft (raw, json)
Hash identifier: gEUe9t1uqkrFRiygcEJq8Zj7KBz9Laiy1UmJgJWLglk=
Subject key identifier: FA:9A:C9:CB:AC:85:13:E7:30:07:AD:8C:B6:AF:C7:14:71:FF:91:AC
Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Certificate serial: 0196C4CBF56B828FB38D1A35032AC6B13885
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
Manifest number: 0CEE
Signing time: Mon 12 May 2025 14:00:23 +0000
Manifest this update: Mon 12 May 2025 14:00:23 +0000
Manifest next update: Tue 13 May 2025 14:00:23 +0000
Files and hashes: 1: HgClX517dTlrS_oT54lgpaEvTvU.crl (hash: vYQ2Vxc833WtFszqlciSsoyohZTWK55Bfv9PsjBHdQM=)
2: Z9H2rikLSuyuU-ikn9teDCmjdUc.roa (hash: cRtnYLPeRJbchnmn6bYlPaowZvCX5uRJgotf5z/cank=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:cb:f5:6b:82:8f:b3:8d:1a:35:03:2a:c6:b1:38:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Validity
Not Before: May 12 14:00:23 2025 GMT
Not After : May 13 14:00:23 2025 GMT
Subject: CN=fa9ac9cbac8513e73007ad8cb6afc71471ff91ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4e:e2:ae:aa:30:14:a0:91:71:d4:f3:49:bd:
04:9c:56:20:a7:7d:2a:e7:ea:76:f9:d9:84:b4:eb:
45:3f:36:d4:d6:a9:62:57:78:21:07:81:19:4d:b1:
92:1c:34:da:9e:4a:e2:23:a3:86:bf:2d:cc:03:1b:
64:0e:ae:bd:92:f9:01:f3:fc:3f:ea:5b:c5:67:0e:
33:5a:19:cb:87:ff:1e:2e:fc:90:ba:f6:bd:7f:d9:
6e:a8:44:a3:0d:93:ae:9f:dc:82:73:52:de:eb:0a:
d9:7f:a1:4b:55:4d:ed:a0:4c:62:85:57:58:77:c4:
94:e1:8e:1b:bc:bf:d1:de:dd:1b:71:b2:d0:fb:30:
39:e3:18:bf:ed:8a:ee:d2:19:ce:e2:b1:27:ab:3e:
94:b7:ef:2e:86:b9:1c:a7:7d:26:9c:a2:cf:e1:b3:
1a:10:b7:18:5f:fe:fc:d5:c4:e3:5c:b3:a4:67:08:
68:ad:13:35:82:30:d8:d7:61:cd:6a:ed:38:14:7d:
8d:ca:3a:bb:32:ed:d8:89:7c:60:72:db:94:71:f0:
db:fe:9b:c1:9d:bc:7b:cf:b8:36:ea:09:3c:d8:64:
2a:98:43:7b:8f:75:a3:79:d8:37:c3:4a:e0:0c:06:
84:8c:60:e2:f2:50:4e:60:f2:a0:be:b0:7d:4e:71:
bf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:9A:C9:CB:AC:85:13:E7:30:07:AD:8C:B6:AF:C7:14:71:FF:91:AC
X509v3 Authority Key Identifier:
keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:9c:d9:64:7c:a6:bd:fd:b1:30:5e:bf:cb:74:e0:54:6b:ca:
7d:2e:64:8e:09:61:4c:ec:7d:e4:1d:e9:f1:c4:e9:38:33:9f:
ee:8f:99:30:9a:5b:37:08:5a:6b:df:2f:2d:7b:cc:20:1d:56:
41:d2:13:0e:22:9c:f7:dd:cc:8a:8e:d5:98:ae:7f:6d:9d:b6:
03:c5:ee:6f:83:b3:85:c2:a1:66:96:57:da:20:eb:6d:e2:94:
97:eb:92:f8:44:41:41:29:32:4e:f8:f7:8f:87:1b:e6:2a:0b:
8e:0b:47:02:0b:a7:72:6b:01:3a:24:69:0f:81:1d:cb:71:0d:
cb:0b:2c:eb:0f:d5:36:b3:a2:5c:5b:11:a6:c2:11:7f:6f:b9:
88:a7:44:00:d5:61:81:51:9f:6d:e0:90:9b:a5:11:b1:b0:51:
01:c3:e6:14:e0:a9:4e:57:fe:e5:7a:01:06:06:e3:05:cf:f3:
df:88:bd:eb:a2:08:d4:99:38:8d:4d:13:f7:43:9f:a1:36:58:
3f:ba:96:0c:e1:d2:ca:d0:6a:99:cb:9c:ff:82:08:02:7c:83:
58:49:37:a4:52:de:b1:b7:b8:58:66:49:f1:ab:3e:75:35:15:
ae:84:a5:25:e2:1f:82:b0:61:e6:dd:69:5d:92:a8:69:38:79:
b9:e7:fd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:07:05 2025 by rpki-client