Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json)
Hash identifier: cdcutn/qV0gVRVxFI2SYN5p5BJR/WSTrdhhq5dGRzIg=
Subject key identifier: 0F:5C:22:1E:AE:E6:74:86:6D:1F:53:06:59:F7:C1:C0:D0:89:3F:2A
Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c
Certificate serial: 019745C284675DB8EA35162D904688BE9515
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
Manifest number: 093B
Signing time: Fri 06 Jun 2025 15:01:05 +0000
Manifest this update: Fri 06 Jun 2025 15:01:05 +0000
Manifest next update: Sat 07 Jun 2025 15:01:05 +0000
Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=)
2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: ex2jUVdjaEizMTxapXNRnSaRmd5zMcgMmHdQmjbuBjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:c2:84:67:5d:b8:ea:35:16:2d:90:46:88:be:95:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c
Validity
Not Before: Jun 6 15:01:05 2025 GMT
Not After : Jun 7 15:01:05 2025 GMT
Subject: CN=0f5c221eaee674866d1f530659f7c1c0d0893f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:c2:e6:42:00:7d:b5:14:76:af:12:70:a1:
68:6d:61:6c:d0:df:a5:6e:64:77:aa:be:06:8f:8f:
c1:98:e4:26:c0:2b:3e:5b:a0:95:7a:fd:53:ab:a8:
41:d5:71:6d:7e:52:df:4c:7c:87:51:3a:dd:bd:6d:
f4:7c:d9:10:f4:37:07:40:7e:de:82:c7:8e:0b:ff:
89:05:8d:d1:73:19:96:fc:0b:8f:fb:90:cd:3b:2c:
2a:c2:ef:ed:89:b6:b3:5c:4e:41:9d:ba:ed:e2:d7:
96:4e:fb:72:48:f3:fd:57:dc:ea:8e:10:5a:ca:95:
f1:8d:ba:eb:42:f1:b3:5b:91:90:8a:5d:5b:a3:e7:
03:11:db:be:14:91:68:25:ba:01:db:28:63:d6:b5:
d0:8c:6b:c9:05:24:f7:a5:7c:12:cf:4b:5a:61:ab:
8f:e0:d4:eb:82:60:77:5f:98:2e:eb:b6:e1:f9:4f:
51:fd:f3:0a:dd:8d:d8:5a:2d:cd:01:35:7d:41:d3:
7f:f2:24:f5:9c:85:32:20:84:66:d8:1c:41:ed:ee:
6b:23:bb:80:b2:8a:8a:5e:db:34:16:79:42:fd:9b:
90:72:fb:06:06:93:18:70:cf:ad:4c:63:d4:14:f0:
c6:30:68:56:78:fa:50:01:8c:46:5d:86:fb:b6:01:
c9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5C:22:1E:AE:E6:74:86:6D:1F:53:06:59:F7:C1:C0:D0:89:3F:2A
X509v3 Authority Key Identifier:
keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e9:6e:ce:68:ab:e5:48:bc:cb:65:28:84:c4:9f:8b:9b:9b:
64:c4:59:f4:df:1c:3e:7a:85:9a:1d:00:3a:8e:30:5f:83:83:
3a:60:dc:ae:3d:78:a0:43:39:a8:79:ea:8e:8a:3a:a2:63:24:
9c:cd:80:a3:1f:58:d6:8d:5a:66:b5:cb:6e:77:0e:7b:34:ba:
e6:f5:af:e8:c6:12:df:4a:58:10:02:25:c2:f6:4b:80:d9:9c:
16:0b:a1:9b:ba:c9:3b:64:b3:ed:2f:8c:1b:45:e3:d9:99:6c:
a4:e1:2f:19:c6:f7:b7:82:0f:6f:18:c8:01:f1:28:5d:29:ca:
3a:e0:2b:9a:f8:0e:4b:d7:29:d6:97:51:67:f0:0f:d3:9e:85:
4b:d6:95:90:9d:28:5e:6a:d8:48:9b:5d:8b:bf:57:13:74:95:
71:ff:b1:9e:4a:15:72:b0:ec:2e:d1:b3:ca:3c:55:4f:5d:eb:
f0:d1:e4:ac:72:f4:20:ed:19:9f:6b:89:00:fd:9c:fc:51:70:
9a:9c:4e:e8:d0:0e:c3:18:39:a4:b0:b0:8b:fc:0e:0a:78:a7:
89:62:af:15:21:b8:80:2f:e1:c1:50:04:2e:04:2a:e9:56:4b:
97:8d:07:50:fa:a3:2b:d9:29:eb:28:3a:71:9c:56:5f:b2:16:
f0:1a:55:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:13:02 2025 by rpki-client