Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json)
Hash identifier: UUAxA8cFoQ9GznOgNN3Snl3C7/g9vfrQSnOy3qOtCwk=
Subject key identifier: 70:6E:2E:61:EF:A1:33:7E:17:BD:99:34:85:3C:74:B8:A4:04:80:90
Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Certificate serial: 0196447AE4AB733688D854FEE4B8658973AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
Manifest number: 11E1
Signing time: Thu 17 Apr 2025 16:00:26 +0000
Manifest this update: Thu 17 Apr 2025 16:00:26 +0000
Manifest next update: Fri 18 Apr 2025 16:00:26 +0000
Files and hashes: 1: 42BfRq7Uq2Z4S_hnedC1PWND5eY.roa (hash: SUpoA58huBIRfI1PcJohNyNQhenW9V0GmIZXcKZjs0I=)
2: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: z8L1rdRnDUkevjBRUQEmhnW6Sh+YWvVe+7y+HAy2j6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7a:e4:ab:73:36:88:d8:54:fe:e4:b8:65:89:73:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e
Validity
Not Before: Apr 17 16:00:26 2025 GMT
Not After : Apr 18 16:00:26 2025 GMT
Subject: CN=706e2e61efa1337e17bd9934853c74b8a4048090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cb:01:8c:df:d5:d5:b1:14:f3:99:8a:11:0e:
65:11:88:42:75:7b:f4:f2:08:d8:c3:7b:68:aa:dd:
39:bb:38:2b:05:00:76:e4:d8:1f:69:01:05:f4:ed:
73:11:9b:e0:5e:0b:85:e4:37:24:c0:a3:b9:d6:02:
0a:c7:f3:ab:34:a7:55:a2:95:2d:a6:8d:ff:4b:86:
62:d2:6c:06:fb:6d:bf:b5:c5:6a:ed:1c:76:89:52:
76:75:84:39:c7:45:81:b5:1e:5c:86:f0:52:1c:8f:
df:c0:52:38:46:48:c3:3a:c1:98:bc:ee:c4:78:67:
87:a8:45:a5:49:a7:f8:f3:80:8f:39:22:1a:32:7c:
82:b3:f3:77:ff:cc:69:1c:bd:8f:24:86:df:61:b5:
11:80:0c:71:bc:22:e5:85:52:70:d5:0f:8d:9c:95:
e9:0f:0b:3e:24:37:fc:b9:c7:79:ab:43:c3:21:fd:
55:65:c8:3f:50:f3:07:5e:fe:41:7a:fe:09:24:e8:
2e:e9:c1:db:ca:50:bc:29:60:35:a8:bd:df:04:de:
08:c5:e8:6e:f0:6d:fd:ea:b4:8d:c8:8f:26:33:f5:
00:34:22:6a:aa:f9:1e:01:01:a9:38:90:01:28:cd:
4d:ac:21:ce:d5:e1:ac:60:7e:f8:ee:19:5b:74:de:
31:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6E:2E:61:EF:A1:33:7E:17:BD:99:34:85:3C:74:B8:A4:04:80:90
X509v3 Authority Key Identifier:
keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a7:86:03:16:0f:8b:40:48:5e:c4:dc:7b:14:a5:e1:14:f3:
41:af:69:b9:76:11:66:6d:69:6b:c9:fc:28:a1:e3:59:63:79:
c8:44:bb:80:7a:2a:02:56:4a:59:08:ad:aa:64:c2:8e:97:93:
2d:ca:a5:ad:c1:ff:78:77:82:1e:78:d9:6f:ef:a7:4b:60:ac:
f1:e9:76:0c:48:8b:0a:24:76:44:da:57:f6:d3:03:20:f8:fb:
94:74:33:8c:51:2c:7f:4d:84:2b:b8:21:46:d8:3a:d4:2f:ef:
60:a1:e7:9c:9f:8d:a4:07:31:97:5e:e3:08:b1:ca:79:66:b2:
d5:76:84:4e:10:af:84:a6:3c:12:8f:d1:a0:27:e3:5f:0f:50:
cf:97:65:0d:32:40:cf:b7:2b:72:3d:c0:7e:20:83:e1:fd:63:
f7:b7:dc:e7:7c:be:b3:61:50:93:65:71:96:19:b4:e7:3a:3b:
30:56:ee:8b:b8:7d:4f:0f:fa:4d:6f:b5:8c:49:16:65:8a:51:
1e:58:df:5f:f7:34:3e:89:3c:92:a2:20:03:ba:aa:51:d7:b0:
b2:3d:d3:c9:08:0d:52:53:55:68:8f:44:9f:7b:1e:57:d1:c9:
04:71:c3:6b:65:2c:e3:6a:49:41:db:ae:2f:d5:45:53:e7:a0:
e5:5b:3f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:37:31 2025 by rpki-client