Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: HIbb9sHr+ZmSjb7QQfkZmSr2AV5+OFhISmyGwCO10MU=
Subject key identifier: 77:EB:B0:D4:02:88:C8:71:92:0B:53:A0:36:33:96:B0:CB:08:2E:AC
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 0196CB0513A7C61451AD1F5A2634DA35FF3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 1406
Signing time: Tue 13 May 2025 19:00:29 +0000
Manifest this update: Tue 13 May 2025 19:00:29 +0000
Manifest next update: Wed 14 May 2025 19:00:29 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: Y3HC3GLvx16KOib28D/Y16C2mYL7Zfz4mdxDHwtxOaQ=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 19:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:05:13:a7:c6:14:51:ad:1f:5a:26:34:da:35:ff:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: May 13 19:00:29 2025 GMT
Not After : May 14 19:00:29 2025 GMT
Subject: CN=77ebb0d40288c871920b53a0363396b0cb082eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:23:a3:df:4b:e8:55:c7:e4:91:00:b6:90:d5:
dc:2d:b7:76:28:5b:bd:d2:76:c6:00:60:b5:1f:14:
33:22:9d:60:ac:66:40:74:72:8b:2a:0e:12:d3:aa:
25:48:c0:a0:d7:f5:d9:8d:08:ce:ac:93:57:de:fa:
43:57:52:c5:36:43:0b:6a:ba:1f:87:18:a3:a1:21:
37:77:01:f0:60:de:5e:25:3c:2f:48:98:94:f8:0b:
f8:a1:b2:06:63:5c:10:63:5a:68:25:75:9d:64:2d:
36:10:ec:3c:62:de:02:aa:b5:f9:4c:c7:d8:c8:bf:
3b:20:d4:3e:6a:25:19:78:9d:77:ac:ec:e0:af:4a:
a7:b9:52:85:91:44:11:64:cd:30:8d:96:fe:05:35:
c4:f0:9f:55:40:56:aa:c0:15:58:93:f6:3c:3c:3f:
71:41:62:aa:6a:1b:1d:4f:0e:21:93:cb:1a:22:56:
fa:26:b5:be:68:38:58:2c:b7:23:40:8d:e1:4c:fd:
70:be:67:a9:33:57:d1:3a:a4:65:2e:a4:6c:af:2a:
01:8e:ca:da:15:5d:e0:38:1a:17:b2:dc:9b:0a:bd:
b1:3f:3e:e3:d8:61:fb:2e:6e:0f:9e:20:e8:33:1f:
72:5c:68:5d:41:6a:40:47:87:ad:3e:64:39:0c:88:
31:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:EB:B0:D4:02:88:C8:71:92:0B:53:A0:36:33:96:B0:CB:08:2E:AC
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:df:2c:4e:bc:77:7e:4d:fe:c1:17:77:03:44:ca:49:71:e6:
84:b9:98:2f:0d:5d:05:df:83:00:f7:f4:4b:16:44:58:80:ad:
2e:aa:4c:ce:95:df:f9:a0:ac:41:4e:47:79:52:1f:0f:c8:32:
7e:30:01:a8:94:3b:21:39:9f:ed:9f:4b:be:98:04:9c:c2:7b:
e0:80:31:c0:b5:fe:88:a8:93:c4:bb:e8:06:01:94:d3:a7:30:
61:69:a7:09:b2:c3:bd:70:04:7f:c6:ce:02:ad:15:af:b9:81:
31:0f:77:79:60:56:f3:93:eb:5d:22:56:d1:9d:f6:1e:88:f8:
22:b0:cb:a2:7e:00:1d:09:92:ae:e3:9b:7c:1e:58:db:b2:9d:
bf:84:a3:36:11:03:d8:72:21:7a:1f:80:08:21:74:07:2c:74:
c3:db:9f:46:4b:c6:f3:f8:ef:73:ff:cc:d4:9d:77:dd:8c:68:
3a:50:56:86:fe:7c:f8:45:ef:6e:b7:91:c2:75:97:df:a5:f0:
74:64:8b:a0:2c:06:4e:6f:4b:6e:94:93:62:53:0e:fb:e2:43:
15:24:3e:01:7c:16:b0:7b:2e:60:fc:67:e8:b6:2a:4c:40:dd:
c7:9c:fe:b0:a1:0f:dd:6a:1c:18:d2:f2:d8:dc:f7:6d:70:21:
4c:50:20:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:47:15 2025 by rpki-client