Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json)
Hash identifier: LVZh8D3rSDivHc4ZOwWu7fDyhrHzUdSQ9yp4TrEAfN0=
Subject key identifier: 62:6B:C9:25:34:AA:95:D2:10:6B:7A:3E:D7:0C:E0:71:BE:2F:AA:41
Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Certificate serial: 019510FDCF2D624B4BBE1DD2ED2C07717CC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
Manifest number: 0BDB
Signing time: Sun 16 Feb 2025 23:00:23 +0000
Manifest this update: Sun 16 Feb 2025 23:00:23 +0000
Manifest next update: Mon 17 Feb 2025 23:00:23 +0000
Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: iy0x3fmt0XxYmDa6fGyieskTMaFbjp/rWWO8gkGv+sg=)
2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fd:cf:2d:62:4b:4b:be:1d:d2:ed:2c:07:71:7c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1
Validity
Not Before: Feb 16 23:00:23 2025 GMT
Not After : Feb 17 23:00:23 2025 GMT
Subject: CN=626bc92534aa95d2106b7a3ed70ce071be2faa41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4b:5b:08:1a:81:67:ed:29:03:66:4e:e2:c2:
ea:11:1f:6d:01:0d:da:87:c2:9c:91:00:b0:68:00:
bd:b7:24:0c:ef:e0:c4:f7:fa:55:d3:fc:ea:37:9e:
a6:fe:dc:28:0a:3a:69:c7:f4:35:4b:f7:85:92:8e:
3e:8f:06:27:be:c6:3d:53:f2:fe:ae:9f:c3:9a:ea:
ca:53:c6:dc:d9:ca:c1:dd:bb:a2:5a:f4:80:e6:8a:
77:ab:52:e3:bc:58:e4:2e:a3:e7:c9:6e:7d:ab:45:
63:83:89:bf:57:f1:32:c2:fa:5a:64:23:6f:62:c8:
c2:74:c3:87:a3:da:45:75:ff:63:f7:c6:ba:e8:c2:
a5:88:62:d7:de:4a:b8:b5:a2:72:da:7a:a3:be:a7:
7f:78:34:75:0d:aa:6d:b8:d8:93:78:1a:ca:1a:76:
94:71:48:61:b2:39:03:7b:76:f6:86:b7:fc:5f:eb:
d4:2e:12:ad:ec:3f:da:b9:9d:35:5b:05:e2:26:55:
67:d8:66:5a:62:47:b3:be:e8:98:2a:84:dd:85:9a:
43:e9:27:53:a6:b5:6d:fb:32:a6:95:b3:5e:8c:15:
32:ce:99:a3:c5:3a:b5:4a:5f:e9:d9:af:fb:ec:11:
2a:3f:5e:b1:5b:ab:5e:b1:ae:a8:81:71:c7:e0:c6:
d1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6B:C9:25:34:AA:95:D2:10:6B:7A:3E:D7:0C:E0:71:BE:2F:AA:41
X509v3 Authority Key Identifier:
keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:d9:f5:10:44:ce:4d:aa:7d:75:a3:e2:9a:27:ad:53:b4:ad:
0d:91:c3:55:a8:04:03:15:ed:48:5d:4f:f1:5c:75:5e:08:bf:
ad:f9:f9:e1:cd:63:ca:2a:62:42:6f:d6:f5:38:91:b2:4f:c1:
11:3f:ad:b6:63:90:af:e0:2d:29:bc:be:5e:c0:4c:f0:8c:54:
73:ac:6f:de:7e:90:d3:52:c8:76:4c:ab:6d:45:a2:5d:e1:b6:
51:b6:e4:a9:7e:a3:00:1e:41:29:9c:78:a3:d1:ec:33:8f:b4:
f8:96:54:cf:ad:68:8b:3f:b2:63:89:48:4d:95:af:0d:36:1f:
82:c4:85:34:b6:f8:eb:e5:5d:00:78:39:81:7f:eb:f6:21:03:
c3:fc:c4:e1:4a:c3:30:24:8a:b3:09:6c:53:69:4c:72:d2:8e:
7b:b7:bf:a4:bf:fe:01:b5:b5:61:97:e9:66:37:e2:4a:95:26:
b5:11:ac:de:ee:e1:c1:c4:ef:69:a4:90:3c:df:39:3d:ff:c6:
63:40:0e:0c:22:49:be:5b:6a:45:6e:b9:2f:da:58:18:7d:62:
7c:72:12:36:8b:5f:91:6e:b8:7e:16:99:c2:71:c7:20:85:3d:
fd:d9:3b:59:53:7c:53:d3:45:40:a1:54:70:77:d1:87:ad:fa:
93:75:4f:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQ/c8tYktLvh3S7SwHcXzAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNTcxZTJiZGI0MTEyZWM1ZDZiM2E2NGJiMTdiZjBiMjgw
ZmU2ZTEwHhcNMjUwMjE2MjMwMDIzWhcNMjUwMjE3MjMwMDIzWjAzMTEwLwYDVQQD
Eyg2MjZiYzkyNTM0YWE5NWQyMTA2YjdhM2VkNzBjZTA3MWJlMmZhYTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUtbCBqBZ+0pA2ZO4sLqER9tAQ3a
h8KckQCwaAC9tyQM7+DE9/pV0/zqN56m/twoCjppx/Q1S/eFko4+jwYnvsY9U/L+
rp/DmurKU8bc2crB3buiWvSA5op3q1LjvFjkLqPnyW59q0Vjg4m/V/EywvpaZCNv
YsjCdMOHo9pFdf9j98a66MKliGLX3kq4taJy2nqjvqd/eDR1DaptuNiTeBrKGnaU
cUhhsjkDe3b2hrf8X+vULhKt7D/auZ01WwXiJlVn2GZaYkezvuiYKoTdhZpD6SdT
prVt+zKmlbNejBUyzpmjxTq1Sl/p2a/77BEqP16xW6tesa6ogXHH4MbR6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGJrySU0qpXSEGt6PtcM4HG+L6pBMB8GA1UdIwQY
MBaAFB1XHivbQRLsXWs6ZLsXvwsoD+bhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUt
ZGIyNTcyZGFjYjQ1LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUtZGIyNTcyZGFjYjQ1
LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT9n1EETO
Tap9daPimietU7StDZHDVagEAxXtSF1P8Vx1Xgi/rfn54c1jyipiQm/W9TiRsk/B
ET+ttmOQr+AtKby+XsBM8IxUc6xv3n6Q01LIdkyrbUWiXeG2UbbkqX6jAB5BKZx4
o9HsM4+0+JZUz61oiz+yY4lITZWvDTYfgsSFNLb46+VdAHg5gX/r9iEDw/zE4UrD
MCSKswlsU2lMctKOe7e/pL/+AbW1YZfpZjfiSpUmtRGs3u7hwcTvaaSQPN85Pf/G
Y0AODCJJvltqRW65L9pYGH1ifHISNotfkW64fhaZwnHHIIU9/dk7WVN8U9NFQKFU
cHfRh636k3VPdQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:58 2025 by rpki-client