Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
File: HnsuJD-KqVRZeTK83NmvZWDc5RY.mft (raw, json)
Hash identifier: 2jQXuztl5c8GlTRsyPRyHhNs+GOHCgbU9SFJKH2ufkY=
Subject key identifier: F0:C7:18:D9:DE:F8:1A:60:B3:AB:A3:4C:F9:A2:85:EC:86:63:85:88
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 01963BAE899C2057BD8C3AA4D9B23A8CA8AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
Manifest number: 09B4
Signing time: Tue 15 Apr 2025 23:00:16 +0000
Manifest this update: Tue 15 Apr 2025 23:00:16 +0000
Manifest next update: Wed 16 Apr 2025 23:00:16 +0000
Files and hashes: 1: HnsuJD-KqVRZeTK83NmvZWDc5RY.crl (hash: yNkFIBon50E1i5tEMeV0Vn846DvzrU10ZFpotvGvLns=)
2: IGa7QfhbXaDsGCT9xJOI5gdu6yw.roa (hash: X0y8/lBS1BHPwzQ2lfqfjmgEWEXvXO2MftnVLJbE6FY=)
3: VwEoUNw-ez0MhDo9hKLki2sD7x8.roa (hash: hJNorU0BhP7KaHlsAZlKF465rhSAsAGROKIAje3NnsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 23:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:ae:89:9c:20:57:bd:8c:3a:a4:d9:b2:3a:8c:a8:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Apr 15 23:00:16 2025 GMT
Not After : Apr 16 23:00:16 2025 GMT
Subject: CN=f0c718d9def81a60b3aba34cf9a285ec86638588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bf:54:08:28:9f:1c:cb:ca:25:cd:08:44:6d:
88:86:60:75:a5:b7:42:6f:98:ba:f3:5a:99:58:e9:
9a:20:35:aa:85:74:4d:35:f5:18:25:20:88:bd:cb:
ea:56:18:a9:f6:ff:eb:a0:52:e7:a2:8d:27:d2:a7:
e3:f8:fc:a1:e9:db:cf:47:67:52:3e:9e:83:ef:4c:
23:a8:6f:62:5b:1c:49:af:ae:7d:a0:b8:71:24:66:
99:55:a1:1d:03:d1:4d:18:a8:3e:e7:49:64:73:7c:
17:52:86:9d:ca:49:be:e5:03:c5:5e:99:ab:11:29:
b9:ad:18:6f:1b:72:8c:34:d0:01:cd:93:a0:c4:02:
4a:44:f6:a5:32:10:ea:00:a4:fe:bb:4e:e0:8c:2b:
42:73:3c:00:b6:10:f9:99:08:c1:07:ef:27:a9:ba:
58:cb:ac:36:ae:b5:7c:d7:85:69:34:ee:89:fe:4a:
5d:4d:76:31:25:cb:27:31:69:ca:a7:4e:98:56:56:
97:16:6e:5c:c9:65:2c:15:90:06:68:07:d1:72:1c:
65:fe:ad:80:f7:85:0a:9d:92:bc:56:06:0b:76:a2:
22:87:ab:27:27:8b:a5:94:06:60:5c:95:11:ca:b5:
e9:39:f2:64:c4:c7:f5:92:51:de:c2:bf:6b:28:93:
7b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C7:18:D9:DE:F8:1A:60:B3:AB:A3:4C:F9:A2:85:EC:86:63:85:88
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:85:7c:fb:45:ae:61:de:2d:19:7e:47:79:58:2b:c3:8b:a4:
1c:8f:78:03:64:16:91:92:53:82:d3:0a:81:81:8d:97:a0:13:
63:01:f1:fe:a0:75:77:26:d4:a5:fd:ae:aa:c6:88:96:45:8d:
3b:e8:06:b9:36:f5:f0:c1:b4:d2:37:74:44:e9:be:bf:6f:d0:
47:92:3f:43:79:87:10:51:cd:0d:48:75:41:3d:23:a2:6f:df:
84:6f:bc:84:4d:14:ea:b6:7d:6c:60:02:6a:0d:72:60:93:6d:
d7:a5:e4:a6:3e:35:97:fc:31:5e:6a:a8:03:8b:77:03:e1:9b:
ac:a2:ff:c4:04:70:df:a4:b8:24:fd:77:60:d1:15:2a:6a:df:
4e:6a:4a:35:94:44:51:86:e2:24:ee:8a:a8:6d:39:52:ff:a1:
dd:b3:35:e2:38:c0:33:65:e6:a7:63:1f:15:4d:98:6a:c8:c8:
45:e0:07:67:0a:6f:05:32:3c:fe:71:15:90:65:a7:ab:09:7e:
ad:7e:2b:08:33:7e:f5:b5:ee:ea:56:3e:19:bc:c7:86:ce:e8:
81:e5:ec:81:7e:88:35:ea:f0:f8:62:06:30:cf:d0:37:4b:a3:
90:ac:23:f7:52:52:8a:f5:86:a5:a8:69:7f:d3:cf:a8:8b:a3:
4d:1a:06:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:03:32 2025 by rpki-client