Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
File: HeVgH-EiL4m7OqryZPD26nORwTg.mft (raw, json)
Hash identifier: io1tXlUHY+Fda9vA092+LK2oM9XPlFTinIdrYJIBqvI=
Subject key identifier: EE:71:81:AE:DA:1C:85:9D:5A:82:7C:1E:B3:0C:CD:C1:8B:A9:46:79
Authority key identifier: 1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
Certificate issuer: /CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Certificate serial: 01962ABCF4A82B995B35D22693CDD6E10649
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
Manifest number: 07DE
Signing time: Sat 12 Apr 2025 16:02:28 +0000
Manifest this update: Sat 12 Apr 2025 16:02:28 +0000
Manifest next update: Sun 13 Apr 2025 16:02:28 +0000
Files and hashes: 1: 1GUi9iA8Rgrr5GN4QB6VlqMrvms.roa (hash: s/MIypH3pMJ3iuiuGr8K68PmgQyO6HFRzwvdBy3o4FU=)
2: HeVgH-EiL4m7OqryZPD26nORwTg.crl (hash: KEgSFC8HsWNakib7Yfs2xKDOrBSpmjuPRD0fz3eIdMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:bc:f4:a8:2b:99:5b:35:d2:26:93:cd:d6:e1:06:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1de5601fe1222f89bb3aaaf264f0f6ea7391c138
Validity
Not Before: Apr 12 16:02:28 2025 GMT
Not After : Apr 13 16:02:28 2025 GMT
Subject: CN=ee7181aeda1c859d5a827c1eb30ccdc18ba94679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c2:c4:32:e5:30:b4:d4:ce:78:80:dc:9a:16:
1e:c5:a1:9f:5c:ff:eb:a3:fe:c3:f9:33:e1:46:de:
15:97:0f:fc:72:84:c1:a7:7e:70:02:f2:2c:1a:5c:
1e:88:df:39:4f:3e:02:4d:5c:d9:00:a9:54:a9:e3:
7e:20:b3:0b:14:63:42:dd:02:8f:55:f6:4b:b7:f7:
67:68:f7:d0:b8:90:e0:b5:9b:6a:65:58:7c:74:e4:
de:c1:e0:be:c0:37:3d:df:3a:b7:68:32:07:9a:74:
09:9c:24:e5:36:6d:55:4b:c4:69:7b:e4:9a:7e:3d:
7d:91:02:0b:d4:3e:ce:cf:c2:c3:9c:85:cc:03:95:
2d:9a:97:76:c9:63:f3:86:33:24:0e:4a:11:24:77:
69:91:b0:c0:53:29:0e:f5:40:25:42:29:f2:f6:c1:
0d:15:0a:51:af:db:87:07:35:5c:4d:b7:e0:cb:c9:
63:55:33:91:a3:a6:7d:c4:72:9b:92:f6:1f:31:8d:
f6:93:23:a2:9e:e9:85:ee:41:a0:14:43:c7:ae:1d:
f8:19:c9:4c:8b:43:05:62:b2:b7:71:29:16:a6:40:
87:9e:a5:70:84:f5:35:d4:41:21:b2:88:9e:0d:4f:
c8:d3:eb:5a:df:92:09:85:01:04:d3:cf:17:e7:6c:
b4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:71:81:AE:DA:1C:85:9D:5A:82:7C:1E:B3:0C:CD:C1:8B:A9:46:79
X509v3 Authority Key Identifier:
keyid:1D:E5:60:1F:E1:22:2F:89:BB:3A:AA:F2:64:F0:F6:EA:73:91:C1:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HeVgH-EiL4m7OqryZPD26nORwTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e7b591-0f5e-4141-be96-ddd53d7928a8/1/HeVgH-EiL4m7OqryZPD26nORwTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:7b:fa:4c:45:4d:bc:27:78:0a:14:0f:41:4b:da:95:fc:19:
ab:4c:52:a6:0f:99:b1:7b:53:70:40:38:22:5c:90:0f:cf:50:
c0:b5:9b:00:6a:43:9f:a5:8d:73:27:d4:6c:0e:7b:af:00:02:
81:80:01:5c:18:61:0c:6f:d9:22:c1:ce:f8:cc:87:82:c3:66:
08:69:db:e9:cf:24:f3:a8:69:b8:e3:bc:96:9b:34:d4:a3:8d:
13:a5:7c:b4:28:bf:b5:e5:19:ee:6d:26:f4:1b:3a:4d:7d:99:
9d:af:15:8e:c9:08:1b:4c:ad:ca:1a:2b:79:d9:4a:e8:76:d6:
b0:0c:84:3a:02:5f:62:9d:7b:9d:55:06:f7:3f:43:45:2d:cd:
74:d7:ee:3c:fe:30:e6:1c:89:af:65:e9:d2:25:c9:ee:ed:14:
67:93:54:27:86:56:b5:08:32:84:da:64:52:b9:50:f0:67:4b:
ad:18:e4:6c:62:b2:9e:e1:e6:0a:f9:a6:92:c0:b3:31:66:40:
35:e0:18:77:fd:4e:10:80:fb:03:af:12:cf:47:34:61:88:20:
73:11:66:03:e5:ff:65:50:07:f6:e6:54:50:c1:4a:b9:fa:86:
ef:7e:e1:1c:f3:dd:db:84:3a:47:84:31:f7:e8:ec:19:7c:9a:
4c:f9:a2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 22:00:31 2025 by rpki-client