Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
File: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft (raw, json)
Hash identifier: 6ty7xmiF4pi698SJuRQZYshhE9xcsT1ARHzi0Iel5Fw=
Subject key identifier: 50:13:69:4C:54:99:2E:09:23:12:7C:F2:C5:DA:3B:96:A4:88:65:02
Authority key identifier: 1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
Certificate issuer: /CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Certificate serial: 0196BCDBE597B10DC4F651C545FFE03FDB93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
Manifest number: 14C6
Signing time: Sun 11 May 2025 01:00:49 +0000
Manifest this update: Sun 11 May 2025 01:00:49 +0000
Manifest next update: Mon 12 May 2025 01:00:49 +0000
Files and hashes: 1: HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl (hash: aJ0WQ7+7g1rjvI3dJ+jMPy/pOKncys7tGgzdsXCzenM=)
2: hIagYPgcgLqF5hqMfUhJY2-sJAs.roa (hash: ZaaWq0BbjJoluHI5ROX+aFarBCsxRa8oHhsXlvsyUeU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:db:e5:97:b1:0d:c4:f6:51:c5:45:ff:e0:3f:db:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d90344dcaffbd33e68d84895d87d8abf53c74a3
Validity
Not Before: May 11 01:00:49 2025 GMT
Not After : May 12 01:00:49 2025 GMT
Subject: CN=5013694c54992e0923127cf2c5da3b96a4886502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d8:e2:f7:85:0d:c7:4f:19:c4:c2:4f:b9:68:
a5:4d:73:74:3a:57:f3:cc:fe:33:dd:65:98:fd:bb:
6b:bc:e0:fe:18:3e:5b:cb:b0:70:db:35:e8:2f:cf:
fd:a3:d0:c6:5a:ec:de:9a:87:79:d5:d5:38:68:84:
85:b0:f8:f9:8c:43:0c:01:3e:5b:2d:e8:af:da:6c:
f7:e4:e2:ce:ba:33:37:e4:82:21:17:52:3d:62:d7:
41:35:ff:da:92:1d:97:e7:b9:1b:f4:d6:a5:f6:61:
8b:f1:d3:bd:e7:c9:02:91:55:8d:89:61:f6:5d:67:
5c:28:4d:03:fb:49:58:4c:a2:95:09:25:5b:19:eb:
e8:a2:a1:a0:05:31:f7:a9:0d:1b:4e:8d:53:aa:83:
1a:e8:7e:ac:89:7d:4f:88:a8:a1:4e:61:a9:27:00:
3f:fc:1d:59:ea:4b:b3:f2:68:b4:95:4d:91:a8:67:
0d:ee:d6:ff:d3:f0:c7:28:4e:08:6f:1e:b2:9f:5f:
b1:60:db:c2:a7:fd:db:b3:67:9f:d5:e8:22:e4:7e:
1c:95:b7:d0:ca:a9:de:88:e3:46:f1:dc:b9:6f:3a:
b8:f0:39:cf:13:86:57:ec:2d:39:21:67:fd:f0:46:
7d:2e:28:98:16:2c:bc:27:91:28:33:0a:0d:2c:13:
c3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:13:69:4C:54:99:2E:09:23:12:7C:F2:C5:DA:3B:96:A4:88:65:02
X509v3 Authority Key Identifier:
keyid:1D:90:34:4D:CA:FF:BD:33:E6:8D:84:89:5D:87:D8:AB:F5:3C:74:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9c3d28-05d6-47b0-91ef-e5064db21b20/1/HZA0Tcr_vTPmjYSJXYfYq_U8dKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:73:57:40:e6:32:9e:f5:dc:98:a3:4d:02:79:b9:b1:34:08:
af:8c:36:43:9c:38:1c:2a:0c:3c:8b:54:11:2b:81:15:a7:99:
01:52:e2:16:54:b8:bb:94:ad:8d:8d:18:ae:1e:e5:c5:da:0c:
ca:7a:34:18:08:6d:39:52:5b:56:76:cf:e5:c7:f9:3c:16:83:
73:b3:59:63:52:87:00:46:e4:88:59:56:55:07:4f:d5:2d:ea:
c8:6d:c3:2a:58:0b:7b:5f:9f:57:95:d7:f6:69:5b:bf:62:32:
1b:2d:d4:f0:c0:c8:f5:76:1b:e5:ed:b0:e8:aa:e5:0d:34:8e:
0e:7c:4b:f9:41:82:b0:33:b9:d0:58:79:13:bb:aa:53:83:47:
8f:40:db:4a:a8:5d:51:46:72:e8:8a:32:4f:3c:fe:06:58:ea:
4a:34:1c:5b:0b:ce:5d:5e:de:2b:cd:33:86:46:2f:37:0a:52:
64:f4:1b:da:66:c8:99:ca:d8:4b:31:c5:d3:96:e0:d7:62:c9:
b8:4b:a4:83:2a:48:53:c6:fe:9d:e6:9f:ec:09:bc:f4:6b:ab:
43:8d:59:06:f8:f8:00:55:d4:25:b4:b6:69:dc:e9:01:9e:82:
84:62:67:0a:de:bf:26:82:e6:a3:e0:21:03:2c:94:82:24:f9:
5e:3b:59:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 03:36:09 2025 by rpki-client