Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.mft
File: HYP6iaSSDrq2qBlvp9MwdEFArnU.mft (raw, json)
Hash identifier: HVRdX0OZIcex29rlej/N0oUVSLFzxnS2XeQQxX2SAGM=
Subject key identifier: B1:C4:8C:40:9E:9C:68:80:B3:6E:19:DE:35:1C:E6:FB:0C:E1:DC:D7
Authority key identifier: 1D:83:FA:89:A4:92:0E:BA:B6:A8:19:6F:A7:D3:30:74:41:40:AE:75
Certificate issuer: /CN=1d83fa89a4920ebab6a8196fa7d330744140ae75
Certificate serial: 01965C4C628C2215709197CC160FA7BD61AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYP6iaSSDrq2qBlvp9MwdEFArnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 07:00:31 +0000
Manifest this update: Tue 22 Apr 2025 07:00:31 +0000
Manifest next update: Wed 23 Apr 2025 07:00:31 +0000
Files and hashes: 1: 0Ox66VfhpkksOxsQKvgplGDbF6A.roa (hash: 2hQepAwHuEvKh7LX4V/wopW78ujoteaNGMyduaqzBZo=)
2: HYP6iaSSDrq2qBlvp9MwdEFArnU.crl (hash: NNSMwvDX1RjR+uia9LHuiu5ikeWTcCOl6uxJgr3QpNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYP6iaSSDrq2qBlvp9MwdEFArnU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:62:8c:22:15:70:91:97:cc:16:0f:a7:bd:61:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d83fa89a4920ebab6a8196fa7d330744140ae75
Validity
Not Before: Apr 22 07:00:31 2025 GMT
Not After : Apr 23 07:00:31 2025 GMT
Subject: CN=b1c48c409e9c6880b36e19de351ce6fb0ce1dcd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c8:86:76:3e:15:98:1a:c0:be:83:6f:78:ef:
22:eb:cc:48:ea:f2:00:29:a6:58:5c:54:4f:be:74:
4d:a5:49:99:f1:c4:58:76:86:e1:e8:5a:b5:21:97:
cc:c0:3e:16:61:ac:14:88:68:5d:19:ef:74:0a:78:
3a:90:fa:0e:95:92:a9:06:2f:b4:db:b9:41:fe:b7:
23:c6:6d:72:64:d6:20:1c:64:76:0d:31:2b:58:cd:
28:8b:0f:37:a1:89:08:ed:0d:8d:d0:cc:69:73:63:
32:9c:67:28:d9:2f:54:0b:26:9b:d7:57:ba:f6:94:
f1:c5:c2:c3:06:a1:f4:2c:53:05:b3:54:c4:93:c9:
3c:5c:1a:cd:da:74:7d:e9:0e:b4:24:52:1a:17:6d:
5d:ae:1f:43:fb:77:f8:c0:c3:af:db:af:5b:7d:c1:
5f:55:46:c7:a8:3a:a3:b3:43:bc:08:19:86:99:a3:
90:87:f2:b3:1e:06:97:29:d4:98:ca:1e:af:40:33:
4d:ea:b4:29:9b:71:9c:9a:cb:eb:7f:46:18:96:9d:
21:76:09:c5:0b:3c:20:49:97:48:a3:8b:ee:d8:15:
3b:1a:79:76:b0:63:43:ba:ca:3c:dc:e1:1a:1c:ad:
10:2c:76:d4:3d:6b:07:c2:87:ac:9f:a0:58:e9:8e:
9c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C4:8C:40:9E:9C:68:80:B3:6E:19:DE:35:1C:E6:FB:0C:E1:DC:D7
X509v3 Authority Key Identifier:
keyid:1D:83:FA:89:A4:92:0E:BA:B6:A8:19:6F:A7:D3:30:74:41:40:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYP6iaSSDrq2qBlvp9MwdEFArnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/066dbd-b447-4b59-8936-c3bc5c521bc5/1/HYP6iaSSDrq2qBlvp9MwdEFArnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:aa:1c:6e:7f:d5:89:d8:b5:f2:8d:91:4c:9e:af:76:e2:98:
ef:79:fe:6b:b5:e6:72:8b:86:7f:ac:b9:3f:eb:2c:25:f5:b0:
4f:e2:f8:7b:2d:d0:0a:d3:a2:d5:8e:75:45:5e:e5:9f:a2:78:
36:ce:5e:74:71:0b:f5:05:93:9b:4f:9d:69:27:bd:91:4f:f1:
cf:68:08:43:33:a6:85:43:e4:d1:8e:57:70:4b:38:38:62:05:
82:95:b9:1b:92:2e:6e:3d:c8:0a:e8:83:0e:89:20:a1:a8:3e:
4a:14:14:d0:17:b6:5a:68:bb:43:2e:a7:2f:b2:1e:90:2d:ec:
0c:9b:db:d4:50:82:9a:73:78:8e:a1:ad:e9:ee:b6:d7:ae:95:
b3:c3:85:25:0f:fc:b4:c3:4c:6a:a0:c8:e1:0d:3e:a3:b6:12:
be:48:68:a9:c9:d5:d9:de:31:05:c2:7a:63:69:56:de:b5:cb:
b0:9a:c5:68:f0:d8:fc:d4:f1:93:bb:1c:9c:00:92:d5:ae:e3:
84:09:21:6c:f7:3f:c4:c2:aa:86:ab:89:b3:9d:f0:87:05:ed:
7c:42:1d:ee:85:9d:6b:c3:27:e7:42:dd:61:c4:46:a8:a5:4d:
2d:f2:e9:14:d1:84:7f:1d:e9:10:78:56:25:27:10:34:e6:7b:
21:00:86:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:28:36 2025 by rpki-client