Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: ajZaswI2ppmfp8NfKrNZVemo0Z5Ko+XFHwiHHcjaS1k=
Subject key identifier: DB:F1:3A:69:D0:B1:7A:36:4A:7F:C9:4B:84:CA:B1:EC:ED:FE:71:5A
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019640303A9833FF278D08DA8A6ABA34AA9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0C78
Signing time: Wed 16 Apr 2025 20:00:24 +0000
Manifest this update: Wed 16 Apr 2025 20:00:24 +0000
Manifest next update: Thu 17 Apr 2025 20:00:24 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: IGReItCj1esBFk1aavqnztscUsLrG1RuvIeD1YdwH4E=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:3a:98:33:ff:27:8d:08:da:8a:6a:ba:34:aa:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Apr 16 20:00:24 2025 GMT
Not After : Apr 17 20:00:24 2025 GMT
Subject: CN=dbf13a69d0b17a364a7fc94b84cab1ecedfe715a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4a:22:bb:93:25:d9:84:2c:08:da:4e:63:dd:
09:92:cb:a2:b6:8c:8c:ca:de:79:7d:14:ca:87:c4:
65:1c:84:88:14:93:80:55:91:4c:f6:60:23:5d:0d:
2f:31:7b:4c:84:40:55:a5:99:8e:d4:2d:ac:f8:f3:
05:ca:93:75:71:c5:69:3f:60:c1:21:a5:d4:ba:4e:
87:2d:1e:2f:1e:fa:46:9a:13:be:20:c2:6b:b2:49:
ad:5f:0d:fc:5e:43:ac:83:37:95:be:3f:69:f8:10:
b5:41:4f:4d:fb:35:d1:4d:2b:18:9d:3a:21:ef:e3:
ac:ed:1a:45:04:44:29:de:a5:8a:c2:32:3e:0c:46:
d3:72:7c:91:16:93:81:7c:c1:27:28:77:a8:66:a3:
0d:ab:ff:f0:6f:3b:7f:6a:8d:08:26:d2:d3:a5:9b:
6b:7c:21:a8:fb:2e:61:f6:59:66:b1:94:3b:eb:3d:
6c:eb:b9:2f:72:e9:89:3f:a1:7c:69:4e:a6:85:5d:
28:b8:42:20:16:f6:c6:11:08:f7:fb:ee:de:2a:3e:
6f:56:53:c7:5e:36:05:3f:c8:4c:82:e7:9e:1b:68:
ca:ef:9b:e2:c8:ff:f6:80:ee:fa:10:9d:8c:ab:48:
68:b7:b7:a4:48:31:0c:12:59:f0:91:91:c3:18:a0:
bd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:F1:3A:69:D0:B1:7A:36:4A:7F:C9:4B:84:CA:B1:EC:ED:FE:71:5A
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:f8:41:d1:a2:52:a5:1f:fd:83:0b:6f:f9:f4:f5:75:c8:70:
2a:47:92:a4:eb:b2:aa:f3:d9:0d:74:ae:27:41:05:86:e2:87:
ed:b9:f7:15:c6:7a:51:da:69:90:b4:d2:05:d3:ff:4c:f9:56:
2d:1a:12:2e:1d:88:b9:2f:5d:f4:7a:a9:79:01:0e:7e:6e:28:
16:b1:e4:c8:20:ef:fb:cc:62:d0:01:39:3c:39:7b:c5:81:ef:
17:71:8c:57:1f:04:77:81:4c:d9:e4:3b:01:16:13:3f:e0:fb:
b6:34:d8:40:b1:9f:00:30:f0:a5:a2:58:16:af:f5:28:0d:26:
82:cc:57:87:0d:9c:1a:92:a9:91:f5:f8:a1:41:7c:5c:6e:db:
83:99:ad:20:ad:c0:0d:16:9b:f6:08:1f:72:d1:77:a0:eb:2e:
40:7b:58:e4:18:fa:d7:1e:38:aa:58:bb:49:31:f9:93:41:bb:
cd:cd:a3:35:6c:5a:09:3e:2f:e7:eb:aa:42:01:a5:77:95:e9:
bd:b3:d0:7d:38:94:fc:e7:78:ce:9a:ee:39:c5:e6:35:17:a9:
d4:ae:ca:d7:13:b4:19:20:56:14:0b:4e:07:fb:a0:7a:19:8c:
81:2e:26:34:96:ec:57:02:18:83:52:c5:e0:4c:b8:9f:df:c7:
81:93:24:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:58:05 2025 by rpki-client