Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json)
Hash identifier: IcnRVyEsolqSLuFox8BE8ok9LVVIWAW9N+vJ7fuw2fo=
Subject key identifier: F4:C3:76:11:6B:B6:74:6B:E9:6A:F9:94:F0:17:0A:C1:A1:71:A0:53
Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Certificate serial: 01964E2337C832B08A1401841E3557048BD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
Manifest number: 1504
Signing time: Sat 19 Apr 2025 13:00:52 +0000
Manifest this update: Sat 19 Apr 2025 13:00:52 +0000
Manifest next update: Sun 20 Apr 2025 13:00:52 +0000
Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: Dj+acwvCshkjY/2PGZYLPyaLEewqi3aXUITAojdwWBQ=)
2: MCvxtXhDv-4sOFSG3-70es9IbCc.roa (hash: zG6t5oGWGri6Roj7Zds9875D3+Pp2Gk1iyyfA9Fh0BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:23:37:c8:32:b0:8a:14:01:84:1e:35:57:04:8b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9
Validity
Not Before: Apr 19 13:00:52 2025 GMT
Not After : Apr 20 13:00:52 2025 GMT
Subject: CN=f4c376116bb6746be96af994f0170ac1a171a053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a1:93:59:bc:60:c9:8b:c1:a5:af:8d:2a:91:
88:0f:c2:3f:29:86:d0:49:81:65:2a:e1:91:d0:65:
46:ec:79:5d:0e:c5:5f:51:2e:96:2d:c7:ca:21:bd:
fb:02:2c:01:b0:91:88:d2:f8:b7:43:96:3c:0a:66:
b2:ab:71:97:e3:55:17:23:14:c1:1e:33:83:28:84:
35:ec:d1:4c:a3:8f:d7:69:9a:cc:20:cd:b0:9d:b2:
d8:4b:49:d8:84:a2:2d:91:80:cd:92:6c:76:8f:99:
99:c6:48:d9:0f:48:b3:14:e8:b4:b2:ab:b5:f7:f3:
07:3b:39:05:06:8e:99:10:38:c6:d5:c3:94:9e:b7:
01:f4:b5:41:b5:db:48:98:69:95:0a:5f:26:d0:33:
4a:9f:86:1a:10:7a:ad:c2:78:f5:98:14:f4:01:ff:
00:f0:b7:d1:05:55:9a:05:09:ef:94:69:59:8e:02:
ff:f4:59:95:2a:08:6e:d5:ba:3d:13:0b:e3:92:7a:
cf:2f:d1:b7:e3:ac:0b:e9:30:14:3e:84:4f:77:64:
8b:ef:33:d8:65:78:e4:cc:c9:9f:a4:19:4e:7c:88:
d4:98:1c:a7:f5:f7:59:78:dd:2d:1a:db:10:00:e6:
f0:fe:18:0b:f2:1e:3c:25:bc:92:1c:e6:e6:af:e6:
09:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:C3:76:11:6B:B6:74:6B:E9:6A:F9:94:F0:17:0A:C1:A1:71:A0:53
X509v3 Authority Key Identifier:
keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:66:37:b2:4b:b3:e5:29:e8:90:5a:c0:af:4d:eb:90:09:48:
72:38:80:24:76:dc:6e:2c:b7:8f:5f:0b:84:78:b1:8f:55:ba:
ee:5b:0f:46:7b:bf:90:a9:5b:08:ec:79:26:f4:6b:94:9e:16:
47:11:84:45:80:1e:1a:3e:cb:6b:d6:2b:8e:82:02:9d:3a:87:
17:9a:85:44:ac:a1:8d:0e:bf:6b:fd:66:4b:e5:0e:71:07:75:
ad:57:fc:85:ab:0c:ad:70:ad:a0:ee:1a:e1:bf:41:89:18:aa:
dd:59:da:6c:21:fc:1c:0b:b8:cb:5f:a6:f2:18:15:d9:ac:d5:
a9:65:81:b0:f6:55:11:6b:34:91:0e:75:82:fd:d6:70:31:f6:
df:32:15:e2:6c:5b:19:80:53:1b:a2:d9:b3:a8:9c:38:cb:d9:
9e:90:71:f7:f7:85:9b:f2:3c:b4:dd:44:df:1f:71:71:ae:fb:
78:b7:99:bb:6c:ac:9d:52:2e:0a:94:b6:78:d7:07:e4:3c:cb:
05:2a:52:4c:d3:1b:60:7a:89:d8:3c:5b:cf:81:53:a3:5e:06:
71:1d:b8:af:92:42:7e:8b:3d:b5:27:56:88:ee:71:a2:82:01:
17:ad:56:5c:67:55:62:7d:56:b4:1a:61:e1:f0:7e:8d:d2:a3:
24:7d:8a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:03:16 2025 by rpki-client