Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: 3j0CQz+jqxbNHHbboYaDyeTsjz1aZrBpCuPCMwQ21uo=
Subject key identifier: 2B:59:76:12:03:07:6D:71:83:6E:E0:4E:79:DC:F5:78:8E:CA:54:CD
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 0196CA974CC41A8EC61751A649099FB8DA41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 135C
Signing time: Tue 13 May 2025 17:00:35 +0000
Manifest this update: Tue 13 May 2025 17:00:35 +0000
Manifest next update: Wed 14 May 2025 17:00:35 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: iC5Wt0eMfjrdfYg7EFTK2NUFI0BXk7Mp/FirD7QIhb4=)
2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:97:4c:c4:1a:8e:c6:17:51:a6:49:09:9f:b8:da:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: May 13 17:00:35 2025 GMT
Not After : May 14 17:00:35 2025 GMT
Subject: CN=2b59761203076d71836ee04e79dcf5788eca54cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:24:91:b6:64:5d:d0:47:9f:2f:bc:4b:54:b0:
31:6d:b7:05:e6:39:7f:41:96:d7:33:2c:8b:32:64:
1a:2a:46:0f:0a:05:38:64:58:23:02:1c:b4:cb:8f:
62:9e:7c:b5:56:13:0d:af:6b:16:fa:d9:b1:63:8d:
ba:d3:80:61:1d:d3:21:d8:e7:a2:44:a7:9a:4c:3a:
4f:7b:4a:8b:89:ec:56:11:b4:32:e3:9b:5a:e3:15:
85:27:22:1b:2c:45:4c:06:9a:ee:07:f0:d7:fe:a4:
ef:8b:c1:96:d9:51:a6:aa:c1:a2:61:83:bf:2a:ec:
4c:5f:91:ff:2e:b8:c6:aa:b4:e7:b0:b7:27:e6:5b:
6d:14:4d:38:1d:d3:ab:77:1c:34:fa:de:b4:30:e2:
71:bc:80:13:42:65:bf:d8:c1:2d:12:30:b9:2f:11:
7c:ef:e3:47:e5:ad:12:7f:ee:e6:48:65:70:eb:4b:
9a:6f:8f:39:12:5b:e4:e8:aa:ae:51:2a:67:21:f4:
f4:ae:33:93:e5:5f:ae:fd:d9:ce:68:25:cb:13:ca:
73:00:6b:62:8c:a2:76:c0:63:45:91:14:99:12:36:
2b:25:ca:14:46:a2:d5:21:92:be:70:4f:ab:64:fa:
38:ac:86:a5:89:2e:97:86:4c:ce:cf:b2:ec:f2:a1:
b5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:59:76:12:03:07:6D:71:83:6E:E0:4E:79:DC:F5:78:8E:CA:54:CD
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:60:50:c0:4c:24:e0:be:31:be:05:be:89:34:3c:03:0c:e2:
9b:6b:97:70:6e:25:23:ad:13:cd:b4:35:77:1a:3d:6d:9e:61:
1c:b3:67:f7:70:27:ca:bc:03:83:42:c2:5a:b2:b4:6b:b2:c5:
c8:1d:9a:37:fa:52:75:83:cc:f3:ad:a3:62:ff:f4:81:f0:f6:
b7:5c:eb:84:16:48:9b:c7:74:9d:27:dc:ec:42:b7:f1:48:e8:
98:5c:4c:ba:b0:3a:30:2a:21:7b:0f:fd:32:f0:e0:88:65:23:
93:a7:e0:e3:eb:8e:53:ca:e3:eb:73:53:75:cc:57:c7:96:56:
f9:2e:28:1c:68:b9:ce:c0:87:af:1d:4a:99:40:c5:3c:22:72:
cf:37:e7:61:38:ab:b9:8f:05:ce:40:8b:48:5f:1a:85:2c:d9:
b7:e5:f9:51:0c:20:fc:70:92:00:ba:10:e3:d1:ea:13:40:96:
31:05:be:f9:2c:8b:2b:a9:a7:e9:ac:28:3e:a9:f6:4d:f5:7d:
bd:ea:13:94:2c:c1:61:e6:1d:98:d6:88:70:bf:d2:2c:81:27:
f1:05:d1:94:6f:d5:2b:61:92:6b:16:be:2f:32:9a:c6:5d:5d:
cb:06:b4:15:e5:eb:d3:a9:ec:c5:b6:bd:bd:bb:6e:1d:09:d5:
20:75:2f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:25:40 2025 by rpki-client