Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
File: Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft (raw, json)
Hash identifier: r+lKRfUtLKL7ld9jKB9CsU+w7EvffOl9QIDl4YJuiWs=
Subject key identifier: 1E:24:AE:49:81:5E:30:17:96:E3:17:C5:3F:7E:8A:40:1B:47:01:5E
Authority key identifier: 1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
Certificate issuer: /CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Certificate serial: 019651C8B5DD4D4E86C9E6BD19FD78E706E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
Manifest number: 0B2A
Signing time: Sun 20 Apr 2025 06:00:30 +0000
Manifest this update: Sun 20 Apr 2025 06:00:30 +0000
Manifest next update: Mon 21 Apr 2025 06:00:30 +0000
Files and hashes: 1: Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl (hash: cYxb/00EhUmhl8EjQ/Zv4eUDwP0A3nR7Qd5yKUEN9SQ=)
2: oaQkn5zr2sFy17og-aVMkuLXdds.roa (hash: VtZ3pTO5W1yzA+ps5HMSQhypm611YNtn0vckyLuCUAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:b5:dd:4d:4e:86:c9:e6:bd:19:fd:78:e7:06:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3
Validity
Not Before: Apr 20 06:00:30 2025 GMT
Not After : Apr 21 06:00:30 2025 GMT
Subject: CN=1e24ae49815e301796e317c53f7e8a401b47015e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:7d:61:6e:9d:1e:8f:0d:23:f4:2b:36:bf:01:
f6:38:7b:3e:b8:ad:42:af:c2:48:cd:49:ad:07:ef:
b2:47:77:40:c2:a0:6a:7f:bc:f4:9c:63:0c:fe:2c:
c0:6e:36:3b:fd:bd:72:4c:05:76:ac:23:23:35:6f:
ac:cc:57:4d:99:7d:63:68:0d:2a:87:20:d6:73:c6:
65:60:df:fe:ac:c3:5f:dc:d0:2d:05:d5:1d:e3:0b:
7e:cf:e2:38:49:e7:06:22:ce:0e:4b:50:8a:9c:c1:
6b:bd:e1:e5:42:f3:4b:37:4d:2f:db:e8:ae:9d:cf:
5c:cf:d6:95:cd:c5:b6:85:e4:0f:cb:ca:c0:c1:cd:
34:f8:9c:6b:56:c0:a9:e1:7b:2e:6d:e7:5f:05:f2:
b2:4e:f1:2a:d6:f4:07:2e:67:5f:16:fb:43:ca:50:
1f:d8:89:4c:e3:5b:73:e4:56:44:64:da:58:87:b8:
f9:6a:6d:de:91:08:9e:c0:43:ae:31:0b:45:46:60:
8b:95:c6:fa:97:d8:b7:da:be:17:ec:b9:a5:54:b6:
bd:77:cc:28:ad:08:69:38:a7:02:25:fb:70:c5:d0:
3e:b1:a8:f8:33:57:79:ec:a4:4a:db:95:87:1a:a3:
22:48:1b:af:a3:2e:62:80:ed:a0:12:8e:0d:e9:94:
fc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:24:AE:49:81:5E:30:17:96:E3:17:C5:3F:7E:8A:40:1B:47:01:5E
X509v3 Authority Key Identifier:
keyid:1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:a1:b7:8f:30:d3:dc:eb:18:f9:d0:05:a9:38:ee:1a:74:44:
f3:21:11:95:bc:9a:40:dc:c4:21:85:f2:bd:c1:56:e9:36:7e:
ba:91:f2:de:88:98:17:24:42:d7:75:f2:d9:e5:c3:c5:3e:d9:
83:4d:41:cc:de:02:83:64:e5:b2:c5:be:f0:de:fb:17:3a:f1:
bd:6d:67:ed:80:0e:f2:8c:1e:93:7f:1b:99:97:97:06:84:c8:
96:d2:f9:4b:a8:5e:54:56:6f:72:26:a3:4a:47:54:9e:71:18:
98:45:46:c6:c6:ac:7d:b9:a0:e5:dd:b6:12:e5:f4:c4:1d:1e:
a9:f5:68:c2:86:20:de:07:c5:7c:62:37:03:6c:2d:3a:67:0f:
ef:b0:2f:66:f3:f2:04:11:c0:32:24:14:f6:a6:fd:4f:1a:78:
1a:c2:30:6c:2b:9c:06:fb:19:19:c0:e0:3f:80:52:f1:05:85:
d7:22:c8:dc:c1:0d:4e:c2:e2:f2:0c:ff:ed:5a:90:ae:9b:f5:
3a:46:04:42:06:3d:e7:7f:79:63:d0:eb:ff:f3:81:f3:bc:27:
6f:2d:15:4e:ad:f6:84:58:56:a8:30:fa:d7:1e:51:d3:aa:32:
c5:b9:53:d6:22:e8:be:df:4d:21:28:36:17:3b:81:dc:e3:b5:
84:5b:b3:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:17:25 2025 by rpki-client