Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/862e24-00f6-4e84-a8ca-752625928fef/1/HvSYurfzu5cWbaV5KUqLRxRQ51w.mft
File: HvSYurfzu5cWbaV5KUqLRxRQ51w.mft (raw, json)
Hash identifier: CaTMiOSGJRBIs5nA+gt6QCgh9hJ1VxGGBx8tali4BVU=
Subject key identifier: 2E:67:33:32:A3:C7:0D:50:1D:8E:19:75:EE:E5:DD:4B:1C:83:D8:7F
Authority key identifier: 1E:F4:98:BA:B7:F3:BB:97:16:6D:A5:79:29:4A:8B:47:14:50:E7:5C
Certificate issuer: /CN=1ef498bab7f3bb97166da579294a8b471450e75c
Certificate serial: 019653EE77511DABB5771599324FE5ECE5D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvSYurfzu5cWbaV5KUqLRxRQ51w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/862e24-00f6-4e84-a8ca-752625928fef/1/HvSYurfzu5cWbaV5KUqLRxRQ51w.mft
Manifest number: 055B
Signing time: Sun 20 Apr 2025 16:00:59 +0000
Manifest this update: Sun 20 Apr 2025 16:00:59 +0000
Manifest next update: Mon 21 Apr 2025 16:00:59 +0000
Files and hashes: 1: F7xrxdbn_XCb6hAz8sT6b-tUYk8.roa (hash: rn01kFBYtcMCz9gh8LCxCPZJ6H8UjKqO4aqrKRZuT5A=)
2: HvSYurfzu5cWbaV5KUqLRxRQ51w.crl (hash: VUDkdJ5584VOrwSpUPr9c1OvMfpJ8q61zKZupf+1gcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/862e24-00f6-4e84-a8ca-752625928fef/1/HvSYurfzu5cWbaV5KUqLRxRQ51w.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/862e24-00f6-4e84-a8ca-752625928fef/1/HvSYurfzu5cWbaV5KUqLRxRQ51w.mft
rsync://rpki.ripe.net/repository/DEFAULT/HvSYurfzu5cWbaV5KUqLRxRQ51w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:77:51:1d:ab:b5:77:15:99:32:4f:e5:ec:e5:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ef498bab7f3bb97166da579294a8b471450e75c
Validity
Not Before: Apr 20 16:00:59 2025 GMT
Not After : Apr 21 16:00:59 2025 GMT
Subject: CN=2e673332a3c70d501d8e1975eee5dd4b1c83d87f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e7:f6:3a:0f:d9:3a:f3:ff:95:93:1a:f8:55:
6c:22:df:51:e1:bd:24:0e:78:f8:4c:03:e0:32:c0:
0b:d1:99:42:f8:10:81:e8:6e:0a:d1:f7:53:5b:00:
5c:2a:3a:45:6e:cd:c9:71:86:19:ed:60:0a:d0:ec:
7e:d6:b7:10:ef:de:f4:d8:a3:5b:0b:45:2e:7f:00:
c8:aa:99:c0:85:21:27:60:23:96:e7:b5:5c:d4:a0:
3d:f8:70:d4:eb:a8:30:65:ef:ff:20:d5:8b:59:93:
58:c6:8c:12:7c:ee:93:2a:a5:be:2a:ee:a2:5d:9e:
9e:0f:18:a7:5a:ab:87:21:28:db:10:40:05:9d:04:
de:9b:94:69:2d:1f:20:1e:ae:e9:aa:9a:c6:4b:e0:
74:e9:b3:5d:49:fd:0a:d0:46:f8:2e:f0:0e:64:ce:
92:ed:17:db:bf:0d:9a:d7:74:41:0a:62:37:37:8d:
9a:d2:f6:2b:e2:d0:79:cd:80:4c:7c:29:6b:7f:a4:
92:70:9d:29:48:1a:2b:fb:35:13:e0:c1:a1:ed:dd:
df:73:d3:88:48:c5:2a:31:e4:a2:49:51:a6:3f:d2:
d9:7f:97:ce:a2:94:76:55:e8:58:2c:7d:32:e1:92:
84:65:e1:29:61:e2:01:dd:d7:4a:79:7d:ec:8f:ae:
06:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:67:33:32:A3:C7:0D:50:1D:8E:19:75:EE:E5:DD:4B:1C:83:D8:7F
X509v3 Authority Key Identifier:
keyid:1E:F4:98:BA:B7:F3:BB:97:16:6D:A5:79:29:4A:8B:47:14:50:E7:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvSYurfzu5cWbaV5KUqLRxRQ51w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/862e24-00f6-4e84-a8ca-752625928fef/1/HvSYurfzu5cWbaV5KUqLRxRQ51w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/862e24-00f6-4e84-a8ca-752625928fef/1/HvSYurfzu5cWbaV5KUqLRxRQ51w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:59:46:05:90:df:5f:ec:71:59:76:c2:22:6c:ce:c9:61:a4:
bc:21:4f:5d:cf:41:44:ea:7b:93:73:49:59:a3:07:b2:ef:6e:
67:c6:e7:86:df:59:c3:27:9e:f0:19:f7:18:54:aa:ef:cd:db:
b1:f8:8c:b2:e6:5d:1b:20:1e:8f:9d:9f:1e:45:0a:e4:74:aa:
37:a4:f2:7f:36:a3:4f:f7:6d:f5:dc:77:b6:e4:88:33:d4:9f:
ef:4b:42:a6:8c:84:18:87:8c:64:65:53:52:6e:57:db:fc:1c:
9d:c3:47:e2:7a:4b:aa:f6:9c:70:b3:12:ad:b0:5e:0c:21:a6:
b8:10:fa:38:7d:ed:2c:60:ae:c1:1b:e5:b6:e6:36:c9:7c:1a:
06:0f:78:41:cd:cb:d1:cd:b4:6c:53:38:de:29:af:70:25:93:
fb:a8:67:47:4e:47:63:40:90:dd:73:c0:6e:f0:e7:7c:aa:aa:
1d:e2:50:73:ae:e6:8a:be:d5:9b:29:ca:3c:48:60:41:b2:ce:
b1:3a:a1:e0:a0:d5:72:33:ae:ad:1d:a1:9f:2f:0e:96:64:ac:
ed:fd:b6:6d:da:e8:b5:c2:e8:1f:aa:a0:d8:74:9d:8b:5b:eb:
61:04:8a:9f:c5:39:59:b6:5d:e3:cd:18:fc:d2:39:b9:a4:58:
76:fb:37:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:51:09 2025 by rpki-client