Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
File: HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft (raw, json)
Hash identifier: GocKwLLWyrF/fE8OZ4gydOwSaXliLuCWeWjaOr8+P0I=
Subject key identifier: 7F:55:48:EA:7B:8F:8E:83:55:29:6B:76:24:E3:6C:B4:D9:40:CE:7C
Authority key identifier: 1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
Certificate issuer: /CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Certificate serial: 01965CBA1C2DC4FB687719A5FF852F13B370
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
Manifest number: 0A5C
Signing time: Tue 22 Apr 2025 09:00:22 +0000
Manifest this update: Tue 22 Apr 2025 09:00:22 +0000
Manifest next update: Wed 23 Apr 2025 09:00:22 +0000
Files and hashes: 1: Bh5IC48JAR5FB63v2dnakNOTX34.roa (hash: FMLGNxpZDrf8rppZSMEnpJR9pt6oa5eJBxowJrkMq7o=)
2: HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl (hash: Hgi2YUzsaK6ajyhdp+FdZkMFz6fndSeE+o9Ou1UZBjQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:ba:1c:2d:c4:fb:68:77:19:a5:ff:85:2f:13:b3:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5dbc0b610485d0f7e2194d8f816d6c1445326
Validity
Not Before: Apr 22 09:00:22 2025 GMT
Not After : Apr 23 09:00:22 2025 GMT
Subject: CN=7f5548ea7b8f8e8355296b7624e36cb4d940ce7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:70:da:ed:85:ff:62:18:c7:f5:24:6a:26:42:
80:e7:99:3c:13:e4:d0:ec:47:5a:e4:ae:99:e9:64:
89:a8:3b:ac:55:9a:3a:72:2c:bf:6e:de:3b:91:00:
94:94:47:8e:25:dc:db:6f:11:bc:9e:71:f1:43:b1:
52:a2:a2:df:d0:fe:42:11:3c:66:9f:be:ff:cf:12:
af:f5:a3:5a:b1:25:14:39:6b:cd:4b:8b:61:60:50:
64:7b:28:ea:a6:20:18:bb:aa:15:9e:6e:3e:6b:59:
c6:37:79:9b:2a:31:4f:02:b4:25:d1:2c:95:ac:2d:
6a:be:3d:71:39:dd:4a:5f:a4:33:aa:78:2a:b0:51:
94:43:76:6a:8b:9b:fd:ea:30:50:22:b6:60:2f:2d:
5c:b3:6a:9f:a5:ce:2b:73:bb:c6:df:08:f7:8c:56:
bf:42:2a:88:45:f0:6f:ba:64:11:dc:bd:99:16:f3:
df:5e:bc:0e:61:56:8a:13:eb:f5:31:b5:4d:87:68:
16:5d:11:80:ba:63:15:bf:da:17:60:ac:67:3e:68:
ae:7e:87:e6:59:64:90:68:b6:c7:5c:3c:ac:de:93:
5c:82:89:ec:a0:e1:78:58:73:88:f7:53:e6:a8:49:
67:4a:84:23:6f:16:ac:14:df:51:69:f7:5a:49:07:
87:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:55:48:EA:7B:8F:8E:83:55:29:6B:76:24:E3:6C:B4:D9:40:CE:7C
X509v3 Authority Key Identifier:
keyid:1D:E5:DB:C0:B6:10:48:5D:0F:7E:21:94:D8:F8:16:D6:C1:44:53:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeXbwLYQSF0PfiGU2PgW1sFEUyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/e77b83-a23b-4897-b4dd-68eedf5f66bc/1/HeXbwLYQSF0PfiGU2PgW1sFEUyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:26:13:d4:c2:74:33:4a:b4:71:71:5e:9b:cd:5e:2c:7c:85:
22:b8:87:b1:75:f5:b8:35:1d:ca:fa:9c:19:51:45:ab:3e:92:
81:5b:b7:46:77:a4:2b:0d:79:48:85:fb:15:47:d5:18:3c:02:
fa:59:33:ab:9e:21:09:2e:b2:91:05:b2:b6:54:a8:f6:6a:67:
85:9a:6f:da:86:74:31:f0:66:9b:da:3f:48:b3:41:0e:5b:bf:
f1:68:12:3c:dd:0c:b5:2a:31:e7:81:36:30:7b:8d:bb:63:87:
df:ff:14:ca:15:2a:82:e6:b7:32:30:1c:e6:aa:20:45:43:82:
61:53:c4:fc:7c:0d:a6:e5:cf:3a:e1:16:11:f1:b1:1d:4f:ca:
7d:3e:0d:fc:9f:9f:58:15:38:1a:07:36:da:57:4a:85:5b:5b:
bf:5e:0c:fb:33:52:45:c5:a8:d3:52:9b:99:cf:24:63:34:96:
5a:36:72:85:5d:2c:f5:7c:66:cd:07:3a:d4:e3:c8:75:d9:0f:
94:de:9b:46:f6:1f:d5:99:02:a0:52:6e:9f:a1:8f:af:90:85:
dc:9e:aa:01:a9:81:78:49:e7:4e:81:04:39:dd:c8:e6:7a:4b:
bc:cc:88:3e:09:aa:d6:51:a9:bc:ab:9f:1f:92:b3:f5:60:7d:
77:88:d7:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZcuhwtxPtodxml/4UvE7NwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZTVkYmMwYjYxMDQ4NWQwZjdlMjE5NGQ4ZjgxNmQ2YzE0
NDUzMjYwHhcNMjUwNDIyMDkwMDIyWhcNMjUwNDIzMDkwMDIyWjAzMTEwLwYDVQQD
Eyg3ZjU1NDhlYTdiOGY4ZTgzNTUyOTZiNzYyNGUzNmNiNGQ5NDBjZTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1nDa7YX/YhjH9SRqJkKA55k8E+TQ
7Eda5K6Z6WSJqDusVZo6ciy/bt47kQCUlEeOJdzbbxG8nnHxQ7FSoqLf0P5CETxm
n77/zxKv9aNasSUUOWvNS4thYFBkeyjqpiAYu6oVnm4+a1nGN3mbKjFPArQl0SyV
rC1qvj1xOd1KX6QzqngqsFGUQ3Zqi5v96jBQIrZgLy1cs2qfpc4rc7vG3wj3jFa/
QiqIRfBvumQR3L2ZFvPfXrwOYVaKE+v1MbVNh2gWXRGAumMVv9oXYKxnPmiufofm
WWSQaLbHXDys3pNcgonsoOF4WHOI91PmqElnSoQjbxasFN9RafdaSQeHXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH9VSOp7j46DVSlrdiTjbLTZQM58MB8GA1UdIwQY
MBaAFB3l28C2EEhdD34hlNj4FtbBRFMmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVYYndMWVFTRjBQZmlHVTJQZ1cxc0ZFVXlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9lNzdiODMtYTIzYi00ODk3LWI0ZGQt
NjhlZWRmNWY2NmJjLzEvSGVYYndMWVFTRjBQZmlHVTJQZ1cxc0ZFVXlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9lNzdiODMtYTIzYi00ODk3LWI0ZGQtNjhlZWRmNWY2NmJj
LzEvSGVYYndMWVFTRjBQZmlHVTJQZ1cxc0ZFVXlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlyYT1MJ0
M0q0cXFem81eLHyFIriHsXX1uDUdyvqcGVFFqz6SgVu3RnekKw15SIX7FUfVGDwC
+lkzq54hCS6ykQWytlSo9mpnhZpv2oZ0MfBmm9o/SLNBDlu/8WgSPN0MtSox54E2
MHuNu2OH3/8UyhUqgua3MjAc5qogRUOCYVPE/HwNpuXPOuEWEfGxHU/KfT4N/J+f
WBU4Ggc22ldKhVtbv14M+zNSRcWo01Kbmc8kYzSWWjZyhV0s9XxmzQc61OPIddkP
lN6bRvYf1ZkCoFJun6GPr5CF3J6qAamBeEnnToEEOd3I5npLvMyIPgmq1lGpvKuf
H5Kz9WB9d4jXlQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 10:27:06 2025 by rpki-client