Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
File: HnsuJD-KqVRZeTK83NmvZWDc5RY.mft (raw, json)
Hash identifier: Tnai76vq6Ulmwg3MGLQl/glogP4KFm9z7mefzp83LU8=
Subject key identifier: 7B:1E:F1:1E:00:57:A8:E7:EA:71:37:B0:6F:A0:95:BA:A2:BA:44:0F
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 01974A0CE87220BB5C138A73512F53B85EB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
Manifest number: 0A40
Signing time: Sat 07 Jun 2025 11:00:49 +0000
Manifest this update: Sat 07 Jun 2025 11:00:49 +0000
Manifest next update: Sun 08 Jun 2025 11:00:49 +0000
Files and hashes: 1: HnsuJD-KqVRZeTK83NmvZWDc5RY.crl (hash: 9/t9TgmE6F4aRRE6taUn0gQuO6yHRJ+tPvcVM/Obj9g=)
2: IGa7QfhbXaDsGCT9xJOI5gdu6yw.roa (hash: X0y8/lBS1BHPwzQ2lfqfjmgEWEXvXO2MftnVLJbE6FY=)
3: VwEoUNw-ez0MhDo9hKLki2sD7x8.roa (hash: hJNorU0BhP7KaHlsAZlKF465rhSAsAGROKIAje3NnsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:e8:72:20:bb:5c:13:8a:73:51:2f:53:b8:5e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Jun 7 11:00:49 2025 GMT
Not After : Jun 8 11:00:49 2025 GMT
Subject: CN=7b1ef11e0057a8e7ea7137b06fa095baa2ba440f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:06:14:4a:1b:63:d3:cb:ce:bf:4a:a5:e6:e1:
21:d1:2f:06:d4:69:6b:a8:be:ec:e4:ff:65:3c:ee:
60:81:22:0b:8b:2d:9c:07:4b:59:a7:6b:02:ea:15:
05:68:62:07:18:d4:80:e2:fb:6f:55:91:77:c0:e8:
e0:0a:b7:bc:a5:2b:6f:a6:c1:2c:31:38:44:be:82:
35:a7:34:a6:b5:95:fe:26:ec:96:b8:6a:33:ad:35:
5c:90:4e:b8:50:e9:9b:c7:3b:80:27:fe:b0:69:32:
da:f4:cb:e1:a6:7e:0f:e3:7e:4e:d8:7f:fc:56:5a:
6f:53:db:51:13:90:45:bc:3a:db:17:69:f8:4b:3b:
0e:50:15:e3:32:57:4f:50:00:7d:a8:a3:03:e3:14:
a8:c6:9c:30:e9:d6:65:fb:9c:e8:c4:76:3d:97:ef:
36:cf:d5:be:69:e6:25:7f:5e:50:d7:87:02:26:37:
d1:8b:03:d6:f2:35:4d:40:fd:29:7d:ba:c4:14:80:
74:5c:3c:89:4a:d0:56:8a:0f:11:35:83:ee:08:04:
5f:65:97:c3:a0:63:f1:7e:11:51:42:e7:e4:43:fc:
90:8a:2d:ad:4b:14:9d:d5:4e:85:a3:78:e6:f0:d3:
f7:89:bf:cb:51:a8:8b:9d:02:4d:51:64:7e:70:e5:
5e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1E:F1:1E:00:57:A8:E7:EA:71:37:B0:6F:A0:95:BA:A2:BA:44:0F
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:58:77:90:18:04:05:c5:1e:aa:5c:dd:28:52:1f:9c:49:75:
06:27:04:45:91:ca:e4:ce:16:e8:a2:ea:8a:49:39:14:3b:37:
a7:e3:c7:24:1f:71:b6:64:f1:7d:63:2e:45:20:8a:b6:e5:b9:
04:dc:ab:7a:5b:74:8e:7a:6c:a8:b6:94:79:9f:44:84:e0:62:
49:5a:84:33:f9:49:76:ae:5a:23:22:ee:b8:fb:e2:90:13:fc:
e7:31:b2:65:c9:79:32:d1:07:9c:7b:3e:5a:8b:c0:79:82:43:
b2:1f:aa:94:c8:d5:ff:36:63:8f:ed:2a:fa:05:3c:8c:35:4d:
fa:1c:49:1d:be:d7:d4:c9:0e:97:4c:23:00:3e:07:f7:f7:1d:
79:7b:54:1c:e9:ae:b8:4d:30:41:e6:3d:cf:8c:41:0c:aa:be:
fd:b1:d1:67:77:c0:04:7e:0d:d0:1a:e0:b9:04:6f:34:a1:60:
7e:17:0e:31:b5:bb:88:32:34:27:43:76:f9:cf:b8:6e:16:29:
44:a0:02:0c:ee:79:3a:cf:2c:b4:1b:25:a3:fd:21:c3:f2:36:
be:81:b7:35:1b:44:fd:5f:a2:70:85:0d:7f:d8:bf:ca:38:b4:
06:a9:18:a6:c0:88:16:8f:df:09:ed:85:c6:8d:5e:97:7b:91:
aa:03:6b:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 18:12:30 2025 by rpki-client