Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
File: HqsBKTydvRqdatyGGCtSDNF2wAc.mft (raw, json)
Hash identifier: t/wS5SLaCRxuRZI5kEGkr5SGAFgOlaHFKpwYyyTx94k=
Subject key identifier: E1:F8:30:45:45:C4:A3:40:CC:AD:FE:78:07:74:68:83:EA:1A:B3:AB
Authority key identifier: 1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
Certificate issuer: /CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Certificate serial: 0197488C2F7E5249E8CA42F89C27277E4014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
Manifest number: 132E
Signing time: Sat 07 Jun 2025 04:00:36 +0000
Manifest this update: Sat 07 Jun 2025 04:00:36 +0000
Manifest next update: Sun 08 Jun 2025 04:00:36 +0000
Files and hashes: 1: HqsBKTydvRqdatyGGCtSDNF2wAc.crl (hash: GUzxzKEyNkaSxhxRWAqbxxW/lQqJCwq27KGcGa4t2ss=)
2: ub3jhWL8KmU55QyzLWlOgggBar8.roa (hash: uMoRi+7KkYToPIHx+yE4FpiPieRkes7ACBQfGkW0VCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:2f:7e:52:49:e8:ca:42:f8:9c:27:27:7e:40:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab01293c9dbd1a9d6adc86182b520cd176c007
Validity
Not Before: Jun 7 04:00:36 2025 GMT
Not After : Jun 8 04:00:36 2025 GMT
Subject: CN=e1f8304545c4a340ccadfe7807746883ea1ab3ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ad:af:20:a4:f2:44:b8:98:9a:ba:95:fb:86:
b2:b3:2c:ab:36:c8:4b:d8:34:ab:ca:a7:f0:ab:70:
21:b4:dc:ef:28:fb:58:74:21:b2:f4:18:5b:41:9c:
cf:69:9b:57:58:aa:31:1c:05:fe:c2:b8:2f:4b:49:
14:5b:47:fd:00:12:fe:b0:8e:72:df:e6:cc:b8:07:
c5:cb:f6:55:c5:3b:81:70:81:6b:61:33:bb:4a:db:
0d:0e:44:eb:7c:fc:63:ee:bf:f3:03:fd:d3:5b:2e:
ad:fc:fc:62:0a:75:19:62:eb:ad:6a:2b:16:e3:66:
7e:61:d7:7a:a1:9b:5d:ab:2c:19:98:96:77:67:8f:
78:da:af:7a:c0:10:72:cb:12:e2:46:41:99:fe:60:
46:8a:02:64:cd:56:11:be:1b:66:e8:0a:80:96:d0:
db:3f:d8:23:a0:c9:d2:d6:ca:52:79:bd:05:9a:ef:
61:08:8e:0b:24:a2:50:8c:2f:66:e0:cb:d8:a7:e5:
b7:86:0e:93:d3:d0:ab:b1:b1:67:04:8e:2c:a2:b4:
af:59:28:3d:83:fc:ec:d2:b7:8a:5b:90:c4:3d:d6:
46:af:ab:02:28:8e:fe:b8:5b:2c:4f:89:77:2d:df:
3a:bc:04:7b:26:5a:ae:ef:5d:a7:7a:63:fe:b9:95:
bf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F8:30:45:45:C4:A3:40:CC:AD:FE:78:07:74:68:83:EA:1A:B3:AB
X509v3 Authority Key Identifier:
keyid:1E:AB:01:29:3C:9D:BD:1A:9D:6A:DC:86:18:2B:52:0C:D1:76:C0:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqsBKTydvRqdatyGGCtSDNF2wAc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c00c13-791a-4e15-baf7-e03ac589a03f/1/HqsBKTydvRqdatyGGCtSDNF2wAc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:e6:09:b4:83:a7:07:da:6f:41:af:f9:f0:1d:54:53:2a:db:
b9:21:af:4e:5e:2c:96:1c:a7:32:0a:21:b4:46:b5:7c:70:7b:
13:96:dc:d5:ed:9d:30:33:6d:4c:4b:4c:ff:1b:fc:07:fe:e8:
90:16:aa:ae:b4:7e:62:50:e4:39:6c:c8:cb:9b:19:cd:7a:34:
db:8c:48:a7:f2:3e:9d:72:34:de:88:43:57:4a:fb:c0:24:0a:
03:3f:20:ae:fa:e9:63:b6:0d:c7:e6:e9:69:2f:63:22:8b:d2:
a8:4a:90:6f:62:5b:7d:c3:cc:1d:2f:28:59:51:85:d9:bb:4f:
2d:4b:c7:dc:c7:3f:db:d4:da:60:dc:47:fc:3e:b0:4d:3a:87:
98:af:64:7c:8d:59:f1:69:90:94:87:5d:f2:a9:76:46:21:9a:
66:b0:8e:77:f8:dd:23:b2:b7:23:f6:f2:23:ea:cf:2b:55:3e:
34:69:34:03:33:f4:21:bf:df:1c:eb:fd:66:27:6f:9d:33:d1:
36:fa:5a:8c:9b:2b:0e:48:77:42:9a:7d:36:90:1a:f0:1c:4f:
41:eb:a8:6d:38:76:00:d6:03:9d:dc:44:54:6d:92:3f:bc:0a:
20:92:1d:12:d1:af:0e:d4:97:48:0e:cd:ce:88:05:6c:6c:be:
42:e8:c9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:43:09 2025 by rpki-client