Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: 1M7INa+3MzyHZ97ZBhHqnz8KaD4f8SO76D/p12BYISY=
Subject key identifier: CD:F9:D3:30:D3:DF:14:A9:51:86:65:51:C0:E2:8E:18:49:E2:33:17
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 0196CC8588FCC6F70DF3F6FCFEEA4264C5D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 1540
Signing time: Wed 14 May 2025 02:00:25 +0000
Manifest this update: Wed 14 May 2025 02:00:25 +0000
Manifest next update: Thu 15 May 2025 02:00:25 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: CxQTQF+hU23GFX3TjCtRWaS69lLX/SXVq+iM+rlTJP0=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:85:88:fc:c6:f7:0d:f3:f6:fc:fe:ea:42:64:c5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: May 14 02:00:25 2025 GMT
Not After : May 15 02:00:25 2025 GMT
Subject: CN=cdf9d330d3df14a951866551c0e28e1849e23317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:d0:1b:35:50:a6:8b:19:0e:6f:08:5a:b2:
dc:b5:c4:67:9c:af:a0:47:9d:10:8a:08:a4:06:50:
59:9b:b4:97:07:6e:b3:73:70:4f:de:06:49:93:84:
4e:87:1c:89:9e:1a:e7:7f:36:89:d6:66:2d:76:cf:
a4:95:00:0b:12:38:db:ec:ac:12:08:9b:72:f9:f8:
46:54:de:39:bc:69:40:6e:84:b7:17:23:e5:39:3c:
a5:fd:95:ad:bc:4c:79:1c:90:b8:28:ae:a9:c3:90:
c7:4c:62:39:fe:2f:86:c8:71:67:41:68:a4:14:cf:
7b:e5:41:ef:d5:e8:24:f9:e7:21:4f:77:7f:c7:6a:
16:95:5b:8b:ff:d5:77:4c:3a:61:16:c8:ac:81:e6:
0a:57:a3:40:8b:86:8d:14:7b:b0:47:14:f2:de:74:
cf:91:cf:3b:83:c6:e1:9c:66:0b:c7:18:5c:55:c4:
18:6a:35:bc:33:72:96:50:ed:60:72:0e:49:4b:35:
b1:00:9d:0c:a3:33:19:79:15:b4:eb:ea:77:9c:50:
b5:d3:3b:fa:70:66:87:f0:28:f1:38:40:b2:9d:c9:
4a:25:a1:85:73:0f:8d:da:fd:26:26:12:6c:88:18:
7d:eb:bf:76:c1:40:33:ba:99:ab:d7:0d:40:62:53:
b0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F9:D3:30:D3:DF:14:A9:51:86:65:51:C0:E2:8E:18:49:E2:33:17
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:bc:b8:d2:4a:10:d5:07:9d:02:52:4d:cf:9c:8d:16:1b:ba:
a8:97:b2:40:81:86:51:42:9a:fe:dd:17:b2:d0:0b:89:12:36:
d3:7b:9f:3d:d2:34:19:11:75:aa:f6:71:48:41:5e:38:4a:52:
c1:af:16:ef:21:12:36:43:70:e1:3e:52:7e:a8:18:57:45:3e:
0e:09:1f:02:bc:d7:62:4e:7d:ca:d5:54:4a:91:7b:5c:0b:a9:
7e:11:3d:3d:f0:b2:11:df:8a:8e:32:9f:eb:74:16:a1:fc:6e:
ff:80:1f:9b:50:4f:8f:6b:3a:87:4e:c4:a5:1c:2f:53:66:5f:
c4:80:c1:37:4f:12:d0:0e:c5:54:c6:b1:ac:25:22:78:61:e9:
bd:e7:9e:ad:54:1a:e3:08:a4:dc:81:74:d7:31:88:63:80:97:
1f:fc:86:c9:b4:4f:b8:ca:97:06:b2:f6:6b:0a:b3:74:27:52:
04:3b:26:16:36:9a:8f:28:8b:b7:5d:66:af:8c:ad:b3:d1:a5:
f9:5c:35:e9:23:f0:a4:44:29:8b:d6:81:6f:1d:3e:04:4a:82:
c3:61:07:cb:9c:8b:a7:c8:c3:32:d0:32:5f:25:58:15:93:ef:
99:7b:82:2c:c4:cf:02:38:8d:a8:58:85:ac:6e:f6:d7:f0:fd:
4e:f6:19:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 05:06:04 2025 by rpki-client