Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
File: H0MPwJpxOySayqdniRHo0eMjOv0.mft (raw, json)
Hash identifier: CO2PaWGF2Col+oCYh0P9hogUI8lQO7rNvhuTkmuHoUg=
Subject key identifier: 51:35:CB:21:EE:E3:57:D3:1B:2A:16:D8:63:95:7F:42:A5:D5:AF:7A
Authority key identifier: 1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
Certificate issuer: /CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Certificate serial: 0196BAED505EAFF172DF8C21D0A54D240790
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
Manifest number: 137D
Signing time: Sat 10 May 2025 16:00:36 +0000
Manifest this update: Sat 10 May 2025 16:00:36 +0000
Manifest next update: Sun 11 May 2025 16:00:36 +0000
Files and hashes: 1: H0MPwJpxOySayqdniRHo0eMjOv0.crl (hash: VdVbizNyqcXKbYbOc5CAc1Iwp/VwLA0oO5BPWYzlXTY=)
2: z1mTOG8VE9-v8P-Co5yPmIlf6B0.roa (hash: qAv01E+pevkkYz421oysRUur++ptzgLO7RhPrCkAgu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 16:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:ed:50:5e:af:f1:72:df:8c:21:d0:a5:4d:24:07:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f430fc09a713b249acaa7678911e8d1e3233afd
Validity
Not Before: May 10 16:00:36 2025 GMT
Not After : May 11 16:00:36 2025 GMT
Subject: CN=5135cb21eee357d31b2a16d863957f42a5d5af7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:97:4e:0d:21:f0:0e:9a:80:45:98:32:97:00:
98:e4:66:df:4e:de:2d:e6:58:cc:fa:64:ff:b8:97:
56:a1:b2:fe:40:84:ea:99:17:f6:3e:2e:4c:31:21:
32:72:b8:51:f7:f6:fe:84:a3:4c:1a:46:6d:f8:9c:
46:b0:70:4b:30:e1:58:41:1f:9b:8e:d6:ed:b1:87:
11:c8:dd:eb:b7:cc:85:66:ff:d7:fb:33:38:71:64:
1e:ef:5a:cf:81:d1:08:49:b3:7e:24:df:9c:33:49:
7e:e7:9a:f7:5a:af:b8:eb:b1:20:66:3f:4c:92:ef:
79:92:6e:c9:df:14:1f:5e:96:b8:51:68:2a:ba:d0:
03:bc:87:12:e1:6c:9e:f5:cd:3f:8f:a7:44:6f:0f:
4b:79:d5:bf:3c:fd:ba:a3:d1:d4:6d:ce:9d:0a:0a:
c6:29:bf:db:49:db:a6:2e:15:fa:b4:bc:4b:3b:14:
fa:da:83:64:00:0f:f9:23:d6:8d:54:b0:6f:93:3a:
c2:2b:8d:5a:10:77:74:67:ee:3a:8e:b1:4e:21:35:
18:02:a2:ac:f6:cb:d4:d4:a7:a2:b1:ce:96:25:b3:
9b:bf:35:f3:08:21:ad:30:49:f0:81:51:37:60:93:
18:9f:90:fc:dd:5c:68:da:77:5f:df:da:99:00:14:
b5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:35:CB:21:EE:E3:57:D3:1B:2A:16:D8:63:95:7F:42:A5:D5:AF:7A
X509v3 Authority Key Identifier:
keyid:1F:43:0F:C0:9A:71:3B:24:9A:CA:A7:67:89:11:E8:D1:E3:23:3A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0MPwJpxOySayqdniRHo0eMjOv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/26761e-7c6f-488e-a21d-be3917c5e2f7/1/H0MPwJpxOySayqdniRHo0eMjOv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:d1:29:c2:5f:83:9b:0c:8f:46:3b:2f:e2:0b:f9:6d:4d:e4:
32:6e:3a:d4:4b:d2:31:f6:38:6c:93:22:7c:68:63:31:1f:30:
be:17:d5:e3:5e:fa:b8:64:31:01:23:d4:f1:91:98:b9:db:e9:
9b:b7:32:49:67:db:69:69:cf:07:57:56:f6:0b:13:7e:d6:cc:
34:e4:39:47:c3:85:c4:a9:80:84:54:3b:62:28:f5:4f:1b:6e:
76:11:13:85:aa:b2:be:6c:2c:99:b8:c9:a6:50:8a:0e:04:49:
cc:ee:7e:6c:2d:28:36:26:b0:d4:3f:e6:9e:4c:a0:9d:b1:ba:
c8:cd:8d:b6:5e:0f:2d:ff:c6:6b:86:ac:96:8f:d3:cb:ff:6b:
8b:4b:67:b6:bf:ce:db:ae:26:e2:86:91:fc:1e:6c:29:a0:1b:
6b:0f:c3:5e:52:5b:df:fe:51:be:5f:76:47:54:1f:0e:d4:6b:
c1:b4:16:88:72:c3:ff:14:25:e4:8c:0f:b5:fb:2d:07:54:fd:
41:26:97:ed:43:bb:d2:78:fe:26:38:cf:2d:89:8d:79:0d:6d:
0c:c1:ef:75:f1:2a:66:f1:74:f3:1e:e7:d6:3a:58:99:c7:52:
53:ea:4e:ed:27:8d:cc:7e:8f:62:99:97:98:fc:38:5a:a4:08:
dc:cf:9c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:28:42 2025 by rpki-client