Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json)
Hash identifier: iG7Ex/4cWdfk58ogidhdS4BsteP5o/AIDr6+ru7GCGg=
Subject key identifier: ED:FA:CC:1F:9F:26:BB:17:65:33:D6:94:8A:09:A8:12:9B:1C:DB:F8
Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Certificate serial: 0196D1E2CFCE62FDFAC097385F30268D2D43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
Manifest number: 1542
Signing time: Thu 15 May 2025 03:00:24 +0000
Manifest this update: Thu 15 May 2025 03:00:24 +0000
Manifest next update: Fri 16 May 2025 03:00:24 +0000
Files and hashes: 1: CCupZ2Z50lEeozRfCFyqGlk11BE.roa (hash: u0mXYzOevuF7/VUH3KREJcVDAaOJuSJnSH+Q3fKIqwg=)
2: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: 2dZW8HUCr5eR3dyoFlX/gVqQvzmS4KsRyddKDV1JPvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:e2:cf:ce:62:fd:fa:c0:97:38:5f:30:26:8d:2d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde
Validity
Not Before: May 15 03:00:24 2025 GMT
Not After : May 16 03:00:24 2025 GMT
Subject: CN=edfacc1f9f26bb176533d6948a09a8129b1cdbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:31:e8:41:cc:7f:45:0f:9f:87:7e:c1:90:42:
33:96:9f:de:59:9f:11:36:f0:8c:26:86:ce:0b:81:
a9:c8:b4:ef:6d:d3:f2:5f:7a:4b:71:a9:2b:e0:44:
93:49:c0:55:1c:6d:b1:a1:e8:e6:a1:36:cd:35:cd:
32:a0:dc:34:5a:55:9e:c8:8a:e7:ab:a8:74:5d:39:
5b:ff:e3:d9:e2:32:b4:c8:b7:24:d2:a6:6a:c3:35:
39:0a:92:da:6e:1d:b2:f0:43:83:98:1d:28:43:83:
a6:35:6e:19:4f:16:d2:9b:cf:b0:26:d3:6e:f2:9d:
62:81:53:25:17:0f:08:48:47:a9:b1:c0:50:77:e5:
b9:fe:cd:c9:15:24:bd:f7:9c:64:93:ea:d6:ba:af:
ce:3e:68:e4:60:7f:4f:ab:27:27:e1:74:4e:79:f3:
f9:9c:66:70:b0:1a:69:27:79:3c:16:81:2d:da:04:
f7:5d:69:5b:03:ed:6b:ef:ac:3e:6d:05:f4:1c:5b:
57:6b:93:26:43:6d:f8:04:96:ea:d2:d6:97:a4:1d:
03:11:d2:ea:17:69:df:16:33:ba:4f:fe:58:b6:05:
30:75:1e:b8:6f:f5:48:ac:fe:fe:6f:7c:d3:93:b8:
56:8b:a1:ef:df:f0:cb:42:c8:27:32:a7:8f:9b:1c:
1b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:FA:CC:1F:9F:26:BB:17:65:33:D6:94:8A:09:A8:12:9B:1C:DB:F8
X509v3 Authority Key Identifier:
keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:6a:e3:30:9d:d7:35:2b:a2:49:42:22:5e:3c:93:9a:4f:c7:
f9:43:29:82:fd:c1:13:79:69:6e:94:f1:b2:05:00:9e:a5:c3:
ee:53:92:0f:4f:60:a2:61:79:6a:ef:1b:73:f1:78:dc:53:3b:
71:d8:16:e8:ae:99:78:9d:99:26:3a:8b:b3:fd:fb:88:12:ae:
b4:88:50:d3:f2:f5:89:5a:90:8d:55:c4:99:0d:04:7f:d9:cb:
e7:d5:7f:13:4c:9b:04:44:ed:86:8f:51:73:d9:c8:cf:8c:ad:
42:9c:75:f9:1d:81:79:12:ec:d9:86:1f:00:20:5e:e2:6a:31:
7b:00:8a:0a:08:ac:5b:2b:6c:8b:7d:51:7f:b4:1b:7a:7f:36:
97:2a:e5:c2:b2:bb:8c:76:33:1f:11:12:7d:33:bc:ad:9a:74:
31:9f:70:fc:a5:46:5c:da:b2:65:2f:fc:c2:0b:f6:72:26:29:
fc:5e:fd:37:38:fc:69:72:e6:22:2e:9a:9a:89:03:20:88:ba:
c4:9f:43:de:37:53:de:32:ba:a7:3f:3c:24:fe:fa:3d:9d:26:
d6:be:81:dd:1e:79:e7:76:8f:c0:0e:94:48:e6:4e:5e:69:04:
c7:88:96:48:d3:cb:21:90:22:58:00:da:d7:ae:61:23:bd:02:
8a:58:02:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 08:57:17 2025 by rpki-client