Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json)
Hash identifier: a9OvxN5UpxN++bUjqRPyOI/0cGswf3ks8uRH6Qb9OdQ=
Subject key identifier: D0:0A:B9:1C:D3:A5:25:D2:26:77:C3:02:2A:07:18:9A:03:35:FA:90
Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714
Certificate serial: 0196AFFC1944ADD1E772DA12F3D5EAF3CF98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
Manifest number: 031E
Signing time: Thu 08 May 2025 13:00:56 +0000
Manifest this update: Thu 08 May 2025 13:00:56 +0000
Manifest next update: Fri 09 May 2025 13:00:56 +0000
Files and hashes: 1: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: XTIx4y+jLDGIQ9voW3FpFZbWCqkmxl3X05hOCDjAHEo=)
2: p8T_kCS-MYJ8fc4C7hUc5E1T1qg.roa (hash: CHS1S8lMOJ2pkxab6trVxWbo2qQA5JXICjYrqXb1IdY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 13:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:fc:19:44:ad:d1:e7:72:da:12:f3:d5:ea:f3:cf:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714
Validity
Not Before: May 8 13:00:56 2025 GMT
Not After : May 9 13:00:56 2025 GMT
Subject: CN=d00ab91cd3a525d22677c3022a07189a0335fa90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b9:a9:99:1b:f8:68:b1:26:58:45:1a:33:b5:
28:db:49:c4:9e:36:0c:df:ee:86:7d:3f:6f:eb:44:
94:0c:ea:e3:14:77:a9:04:af:1b:da:ba:28:0f:e9:
a0:be:7d:53:50:8a:8e:7d:1e:71:df:9f:11:21:4e:
96:37:b4:63:59:2c:ff:6a:0f:e4:8f:ea:f4:fe:a3:
cf:aa:e4:a1:b3:fd:a2:ec:41:c8:75:79:48:48:2d:
63:71:31:95:85:e7:6a:26:e8:e6:7f:f9:79:ac:59:
cb:49:5d:be:d4:dc:ab:52:39:4f:0f:8f:16:b1:c8:
2f:fd:4f:75:25:b5:f9:c2:fd:41:e9:ce:2e:df:c1:
04:aa:02:f0:22:78:a6:44:b3:cd:a3:44:71:2a:31:
10:33:30:34:ea:6c:23:df:a4:30:e5:ad:4e:b9:79:
29:5c:22:a6:0c:b2:fb:13:ec:58:61:4e:52:01:4a:
64:2b:1a:2a:6b:4b:b9:8b:c5:cc:43:8e:43:7b:76:
95:9e:41:33:d1:cd:b2:d3:e9:e9:50:55:72:a5:05:
20:b6:34:e4:d3:29:98:7e:76:18:9c:45:a1:bb:c1:
6b:a0:62:1d:db:0a:98:6f:ea:d5:3e:c5:58:88:d7:
51:6a:a4:e8:c2:72:3d:cd:11:94:67:a0:ba:b3:58:
10:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0A:B9:1C:D3:A5:25:D2:26:77:C3:02:2A:07:18:9A:03:35:FA:90
X509v3 Authority Key Identifier:
keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:cd:5e:fe:65:82:8f:3b:1e:dc:46:75:8e:5a:de:a2:89:36:
43:2c:45:9d:37:c7:98:70:fb:c4:11:a1:8f:59:04:4b:2f:6e:
26:77:7c:d1:b0:e3:61:2c:39:87:5b:83:f2:b7:87:d7:bb:08:
b3:93:db:c3:22:46:69:65:e7:15:87:97:4e:23:bc:23:ce:ec:
5e:19:c6:45:64:73:49:cb:42:63:c3:4d:e2:a3:70:61:90:0f:
55:8f:b8:5a:72:44:3b:80:8f:46:f2:c6:2b:df:74:6f:6f:0f:
06:fa:8b:bc:36:66:5d:b0:8d:56:c7:05:9c:8d:1e:3e:8f:08:
04:97:2a:c7:eb:aa:b3:da:ec:71:93:9b:c0:8f:52:91:02:2e:
bb:fd:0c:8e:13:55:54:1c:60:31:9d:93:7a:2e:e8:b0:7e:37:
db:98:8e:3d:6a:a1:ae:dd:8d:7c:5d:63:74:41:90:58:16:52:
aa:f5:da:a1:8e:47:3c:90:d9:76:6b:46:48:4d:67:02:1e:19:
7e:23:f1:a3:d5:33:6c:cd:c1:51:fe:22:e6:8f:90:86:4c:d3:
29:6e:32:e7:77:b1:90:d6:dd:61:67:a0:aa:f7:db:c8:a7:bb:
13:e9:bb:ca:6b:88:13:76:83:c8:95:5e:24:a0:51:5e:33:56:
84:cc:35:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 19:23:55 2025 by rpki-client