Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json)
Hash identifier: eg5bh9AyuqrjRyFaE4zVFUEiwQZq+OtvI11oVir2NzM=
Subject key identifier: A4:7A:C1:AB:04:0A:8B:3B:5C:45:CA:4C:C0:5E:CA:ED:BF:71:DB:A9
Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Certificate serial: 01964D47089B9AB7A8A140CA2D16A1307AA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
Manifest number: A2
Signing time: Sat 19 Apr 2025 09:00:22 +0000
Manifest this update: Sat 19 Apr 2025 09:00:22 +0000
Manifest next update: Sun 20 Apr 2025 09:00:22 +0000
Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: K9nBqBq2UZf76OM9gSYvQUzRnFaLao6tceQU716R1Yk=)
2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:08:9b:9a:b7:a8:a1:40:ca:2d:16:a1:30:7a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de
Validity
Not Before: Apr 19 09:00:22 2025 GMT
Not After : Apr 20 09:00:22 2025 GMT
Subject: CN=a47ac1ab040a8b3b5c45ca4cc05ecaedbf71dba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:69:6f:2e:17:ff:2b:cb:0c:85:e1:bc:b0:5b:
89:fb:63:17:c8:9b:6d:9a:a4:94:fc:7e:31:0a:78:
c7:9e:80:8b:1f:d3:94:64:ff:c2:c4:78:17:ce:21:
da:5e:77:2e:c6:c0:ca:9e:ee:72:3a:82:8b:a4:9f:
59:09:ca:4c:2f:23:da:72:d2:f8:73:2b:0e:22:08:
9f:77:cf:0b:7a:f8:df:8f:81:b8:1a:a7:4a:af:70:
ab:8b:8b:87:99:b3:e3:bb:70:bf:fb:b6:b9:24:b2:
2b:4b:64:74:e2:73:68:a7:5e:90:64:04:b1:41:cb:
0c:b3:86:a2:73:7f:2b:64:51:74:93:65:32:1b:9a:
44:27:cc:63:78:93:cc:f1:70:b6:16:14:a7:71:e3:
bb:1b:c9:a6:8a:37:56:69:50:98:cb:60:ba:38:e0:
13:5e:8f:3c:89:05:17:30:76:56:93:c8:05:fe:8f:
2f:c2:c1:04:e4:55:6c:a8:13:e5:46:a2:c8:5a:14:
0b:3d:d3:7f:dd:59:51:7c:f9:9b:65:58:f0:b9:da:
8b:c9:7a:2f:40:36:81:e1:5d:77:fc:f0:ce:1f:7e:
9b:75:75:de:f3:85:87:2d:e3:fc:79:00:f5:d6:44:
ac:42:9b:24:c5:05:5b:c3:88:c9:f7:f1:a4:f4:46:
ba:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7A:C1:AB:04:0A:8B:3B:5C:45:CA:4C:C0:5E:CA:ED:BF:71:DB:A9
X509v3 Authority Key Identifier:
keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:01:75:f4:8b:5e:19:f5:77:34:58:04:9a:04:89:43:00:8d:
a0:70:91:81:12:61:db:5f:98:cd:a6:4a:34:b1:eb:87:ca:02:
a8:ab:20:99:2f:4b:e9:49:78:eb:cc:5a:b1:82:2e:e8:63:04:
9d:b6:34:ff:97:d3:37:bc:88:16:61:ff:56:29:b5:4f:ed:3b:
77:36:b5:70:52:32:f7:e2:db:39:e2:92:ff:45:a1:b5:99:14:
11:fb:63:6b:7b:79:40:55:d2:c9:a8:0b:db:64:29:26:3c:82:
ea:aa:44:41:a8:7a:66:32:e4:f2:e0:4f:8e:b1:96:3d:30:26:
bb:ca:01:97:2a:3c:68:5f:a1:bc:6a:c2:92:c2:cc:98:39:7e:
13:0a:84:1a:b8:d0:81:a3:4b:31:2a:fe:31:ec:a7:7a:4c:7d:
a9:0d:6d:c2:bc:80:f1:b5:a9:d2:92:e1:09:0b:41:e2:c9:2c:
d5:7c:21:0e:37:27:fd:3c:1f:a8:d4:89:9f:dc:b9:46:d8:cf:
9b:33:c3:a2:d4:bd:fe:c3:a5:f6:62:c4:a5:37:6b:f3:49:6c:
7e:91:3f:d5:29:ae:a5:fc:8d:32:ed:dd:6f:57:3a:2d:29:7f:
e8:51:f2:a9:62:b2:5a:20:a8:6e:30:4b:58:b9:8a:19:39:1f:
ff:d8:db:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:14:14 2025 by rpki-client