Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json)
Hash identifier: rbNJR4en5XFG7hgHCwfaq6kCPh4/4ryH06jnVWp/UMY=
Subject key identifier: 32:FF:D6:A6:71:39:F7:DB:89:E3:26:C4:E3:E2:D5:F2:21:E5:CD:66
Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Certificate serial: 019748FA63E02134285A493EDFCD881E01BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 06:00:58 +0000
Manifest this update: Sat 07 Jun 2025 06:00:58 +0000
Manifest next update: Sun 08 Jun 2025 06:00:58 +0000
Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: trtt9bvXZkdW19hsXxddp+ud2JxYrlUJ2YOlUREdjno=)
2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:63:e0:21:34:28:5a:49:3e:df:cd:88:1e:01:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4
Validity
Not Before: Jun 7 06:00:58 2025 GMT
Not After : Jun 8 06:00:58 2025 GMT
Subject: CN=32ffd6a67139f7db89e326c4e3e2d5f221e5cd66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:51:1b:d8:63:1d:4c:81:51:b8:ec:92:ed:b8:
9e:6a:8b:b3:91:d7:11:3c:a1:5f:f1:cf:6d:33:e2:
49:2e:fd:57:a7:d6:aa:4d:2b:4c:1d:78:41:6b:f7:
4d:45:2e:32:4a:84:b6:99:e6:38:3d:67:27:24:86:
43:74:45:8d:49:ff:41:8a:f3:28:3b:56:99:ad:67:
69:80:f3:4a:a6:de:2a:64:db:8e:ee:b6:3c:55:22:
5d:de:cf:be:d4:be:52:43:a8:4e:aa:14:c8:dd:57:
83:81:00:a8:1c:e4:20:66:4e:d9:bd:c4:3f:be:f2:
8f:b3:c9:10:fb:70:67:4f:05:22:cb:30:4c:0a:75:
c4:06:67:fd:a4:24:2f:08:d1:e0:ce:64:66:4d:85:
b1:b8:28:d6:85:79:f8:9a:35:3e:30:74:24:4b:cf:
63:4a:0b:9f:3e:69:7c:9c:ab:65:8a:ab:42:15:7a:
29:dc:22:5f:c8:66:92:ae:43:2b:3b:f5:d4:f4:b6:
52:92:3e:e6:2c:ea:8b:f7:90:5c:c8:bd:63:b2:d5:
7c:f6:49:fa:aa:22:a8:47:a5:eb:9d:70:fa:6a:b0:
db:b2:f2:4d:ba:0b:38:90:af:0c:14:ba:99:b8:ee:
d1:5e:05:70:b7:d4:49:a8:3d:ef:df:c7:b6:2b:0f:
87:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:FF:D6:A6:71:39:F7:DB:89:E3:26:C4:E3:E2:D5:F2:21:E5:CD:66
X509v3 Authority Key Identifier:
keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:2a:f8:76:18:a0:f4:f0:14:8a:94:9a:b7:e5:ee:41:79:01:
dc:8e:31:2d:a7:d4:c6:76:81:20:2a:ef:e3:e3:b5:dd:42:c9:
b2:41:fc:13:84:53:9e:85:1b:ef:42:8c:ca:06:05:6c:bc:e3:
82:91:0d:7f:cc:b5:93:20:51:d9:d4:22:19:71:8d:6d:1e:1b:
4d:6e:59:86:4a:95:33:1d:0d:b3:6c:6d:fe:64:d7:2c:5c:a6:
38:d9:bc:9a:6e:a5:e7:34:cb:c9:2f:b5:83:92:e0:ee:84:6d:
ea:77:a4:2b:65:e8:8e:b0:55:24:93:9b:5f:2e:8b:21:79:ee:
0b:29:55:8c:3a:e9:45:22:aa:57:52:c0:ed:56:52:d5:c6:b7:
14:fa:b3:a6:87:ec:ee:11:31:a8:8d:04:f6:8e:43:eb:be:d5:
4b:fc:74:cc:ba:18:de:54:08:dc:ab:56:09:dd:aa:17:ff:9f:
2c:d1:62:dd:23:16:9d:a7:97:32:96:d1:09:f8:f5:76:14:cb:
34:9f:95:69:cc:26:0d:d8:16:1d:c2:08:d7:d2:52:e8:f5:32:
05:2d:4b:0f:71:c3:c1:02:03:5e:00:04:a3:1e:1b:31:b6:13:
d6:6f:7c:2f:4b:ab:74:fc:7c:31:40:70:42:33:c7:e9:ad:f9:
b3:2c:5c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:48:55 2025 by rpki-client