Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json)
Hash identifier: yb86hjKLg58WKwsoZpLqGPJ6eFkpTD3ZapgABuows1Q=
Subject key identifier: A0:FC:0A:A5:E0:47:40:A7:9C:06:D7:BD:F8:08:C7:FE:9B:20:34:7D
Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Certificate serial: 0196556E800E7C6C6D57A2365FC554A60FC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
Manifest number: 1502
Signing time: Sun 20 Apr 2025 23:00:27 +0000
Manifest this update: Sun 20 Apr 2025 23:00:27 +0000
Manifest next update: Mon 21 Apr 2025 23:00:27 +0000
Files and hashes: 1: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: 7Ek/caKp/Sk+Lpb98oIn5MVc+nGumMjINYlTLwvSV/o=)
2: nfcB4W3-frcdsttLFxfqKvUAYPA.roa (hash: LSLZu1kedUT6p6v50vQ31LG0ikk6bjLybjbis0FT+ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:80:0e:7c:6c:6d:57:a2:36:5f:c5:54:a6:0f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca
Validity
Not Before: Apr 20 23:00:27 2025 GMT
Not After : Apr 21 23:00:27 2025 GMT
Subject: CN=a0fc0aa5e04740a79c06d7bdf808c7fe9b20347d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:18:53:3b:e2:2c:73:24:60:4d:db:bc:5e:a0:
05:13:5f:dd:97:61:4f:55:82:bd:9a:00:aa:1c:c2:
c6:19:e4:ea:c8:d2:8b:03:81:96:86:71:3f:4a:2b:
a4:1d:a7:5a:bf:1b:bd:f2:1b:67:25:8b:ee:16:02:
68:07:70:a3:b3:ca:f4:3a:cc:35:d3:7a:a1:bf:63:
f0:e3:8e:fe:12:65:4b:f6:e2:2a:df:f7:31:50:66:
4e:df:44:f5:87:bb:33:4d:53:a8:5c:09:d5:b0:08:
1d:0f:c4:d3:e0:19:2a:25:74:2f:22:4d:18:01:59:
24:ec:c7:0c:34:df:59:16:a3:34:07:48:a4:99:82:
01:70:fb:61:c7:80:8c:7c:fc:d0:04:23:72:2c:5e:
f4:7b:5e:3b:37:71:f7:ed:68:a6:34:63:b4:23:18:
9d:d0:3e:1d:a9:0d:2f:7c:7a:58:8b:5d:0f:5e:81:
1f:28:c6:5c:49:a0:1f:22:2b:af:59:db:fb:b3:0f:
15:14:c0:b6:e8:6b:15:17:cd:0e:7f:8f:48:d4:fd:
a3:b0:9f:bc:83:df:86:b4:b1:68:4c:89:54:2d:48:
be:3f:25:1d:13:5b:2e:dc:00:9c:00:cb:47:a4:77:
19:fe:6a:e0:16:e2:3d:ff:50:4a:d8:1b:e3:3c:f3:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FC:0A:A5:E0:47:40:A7:9C:06:D7:BD:F8:08:C7:FE:9B:20:34:7D
X509v3 Authority Key Identifier:
keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:25:d6:b1:f3:f5:3f:a0:e7:4e:09:7b:01:51:22:d0:f4:7e:
3d:1d:95:b5:7b:b6:29:2b:3d:13:6e:c3:0d:c0:9b:d1:f0:32:
99:f0:b1:a7:73:c7:ce:3c:fd:37:f9:ec:d6:89:8b:ad:57:00:
17:cb:f6:a4:00:3d:12:5f:35:8c:01:2a:dd:6c:c2:75:11:33:
56:d0:6e:88:e8:d8:00:08:03:02:9a:9b:9c:b4:ee:aa:c8:e7:
4d:24:b5:99:07:00:aa:29:16:1a:3a:b6:df:c9:d8:9d:80:bb:
60:5d:8a:df:a9:dd:61:e4:2c:9c:1b:44:59:e7:bc:c9:6a:7a:
c4:26:43:e9:76:61:25:71:14:4e:d1:7d:e9:a9:9b:a7:52:1e:
6f:0b:aa:17:1e:c5:2c:f3:64:c3:ef:e9:13:69:1d:3d:79:9c:
a4:81:ed:67:43:ea:ff:81:1e:51:e5:f6:e9:e6:3d:56:16:29:
ec:08:94:80:4b:d9:9b:1b:91:34:76:34:c9:e6:fb:f9:14:4f:
f5:5f:15:d6:93:59:fd:06:8c:c9:b8:a7:65:dc:60:bf:d2:08:
9a:44:98:31:89:2b:c4:b6:9d:f8:4f:93:2d:dd:0e:21:da:7a:
ef:ac:38:81:3d:7a:21:f4:d5:58:9f:b4:e5:24:43:5a:b6:ab:
76:74:79:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVboAOfGxtV6I2X8VUpg/AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOTUyZTg4MzczNmY3OWNiZDljNTY0NzA0YmYzYzM2NjIx
YjhlY2EwHhcNMjUwNDIwMjMwMDI3WhcNMjUwNDIxMjMwMDI3WjAzMTEwLwYDVQQD
EyhhMGZjMGFhNWUwNDc0MGE3OWMwNmQ3YmRmODA4YzdmZTliMjAzNDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4BhTO+IscyRgTdu8XqAFE1/dl2FP
VYK9mgCqHMLGGeTqyNKLA4GWhnE/SiukHadavxu98htnJYvuFgJoB3Cjs8r0Osw1
03qhv2Pw447+EmVL9uIq3/cxUGZO30T1h7szTVOoXAnVsAgdD8TT4BkqJXQvIk0Y
AVkk7McMNN9ZFqM0B0ikmYIBcPthx4CMfPzQBCNyLF70e147N3H37WimNGO0Ixid
0D4dqQ0vfHpYi10PXoEfKMZcSaAfIiuvWdv7sw8VFMC26GsVF80Of49I1P2jsJ+8
g9+GtLFoTIlULUi+PyUdE1su3ACcAMtHpHcZ/mrgFuI9/1BK2BvjPPNM2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKD8CqXgR0CnnAbXvfgIx/6bIDR9MB8GA1UdIwQY
MBaAFB6VLog3NvecvZxWRwS/PDZiG47KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iMTQwYWUtYzA0Ny00ZmY2LTg2NGYt
MzU2MDM1NjU3MWE3LzEvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9iMTQwYWUtYzA0Ny00ZmY2LTg2NGYtMzU2MDM1NjU3MWE3
LzEvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAyXWsfP1
P6DnTgl7AVEi0PR+PR2VtXu2KSs9E27DDcCb0fAymfCxp3PHzjz9N/ns1omLrVcA
F8v2pAA9El81jAEq3WzCdREzVtBuiOjYAAgDApqbnLTuqsjnTSS1mQcAqikWGjq2
38nYnYC7YF2K36ndYeQsnBtEWee8yWp6xCZD6XZhJXEUTtF96ambp1IebwuqFx7F
LPNkw+/pE2kdPXmcpIHtZ0Pq/4EeUeX26eY9VhYp7AiUgEvZmxuRNHY0yeb7+RRP
9V8V1pNZ/QaMybinZdxgv9IImkSYMYkrxLad+E+TLd0OIdp676w4gT16IfTVWJ+0
5SRDWrardnR5Ow==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:55:59 2025 by rpki-client