Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json)
Hash identifier: Ftcv4qLQjQTELWvAiBcP3gn98zIZaw1oFgLN+joGIvs=
Subject key identifier: E7:87:21:DD:70:01:7B:B9:04:6B:FB:F3:7A:35:21:53:6B:A2:48:7A
Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Certificate serial: 0196127D5272056C6C53BF393EB3DE4E638C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
Manifest number: 14E3
Signing time: Mon 07 Apr 2025 23:02:04 +0000
Manifest this update: Mon 07 Apr 2025 23:02:04 +0000
Manifest next update: Tue 08 Apr 2025 23:02:04 +0000
Files and hashes: 1: 1a8VrRBxuEM9gIitWA-MTYGiH6k.roa (hash: o75BqB590sV6r1bb5EcguY1B6QE3rDYfVkZNGdgh7Sw=)
2: 5xOfslnPq8-oHcDS47I_csGpD8Q.roa (hash: 4dFQELulj6P8yjTGdV2+DXhC0ieIeLQi8X9meQWips0=)
3: DCocrInE23WH5yhpx0FXxrNY7_Y.roa (hash: O6VU1JCrRAIS6a+yNeHmYk7E8wYytQ8Lu8b/Fc+fOqI=)
4: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: 0kLQgdRf0r3ITAcUQZUFNSmTpaTswV9TaPC/FYl+e0U=)
5: du6DBdKlb1Cr5Z5mqlctF2rW68k.roa (hash: XaoP28uRsMgk856VCX7c/74Lo2ezwg/z+6hQ43OafIc=)
6: gvR46ytTmKrRi4maCYGnQqf4WI8.roa (hash: ViNC6FNBy9cckM8WILnCXIRpeOOtSFGRhOo8i05WQf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:7d:52:72:05:6c:6c:53:bf:39:3e:b3:de:4e:63:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14
Validity
Not Before: Apr 7 23:02:04 2025 GMT
Not After : Apr 8 23:02:04 2025 GMT
Subject: CN=e78721dd70017bb9046bfbf37a3521536ba2487a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:94:ab:a9:bd:3b:4b:57:ec:b2:58:46:7e:
62:12:9b:f8:f6:97:d8:df:ba:21:65:51:96:71:61:
28:98:5d:4f:2f:c5:47:a0:a6:0b:b0:c2:9f:30:34:
8a:51:81:4f:fc:ad:08:2e:fd:ba:33:3b:7a:4e:16:
8d:cc:45:4e:9b:67:22:f4:60:a4:63:ce:d2:a8:04:
cf:71:8a:83:f2:6a:2d:d1:3d:83:28:82:ef:b7:e2:
ec:fb:94:74:87:c1:68:70:49:51:af:0a:a5:a3:4e:
4e:0f:c5:af:00:58:5b:c6:4a:30:8e:3a:72:08:00:
02:6f:ae:0a:43:4f:78:91:30:56:e1:7e:ea:e3:ca:
e3:73:4a:cb:0c:e5:4d:93:ed:53:0c:12:7e:5b:e6:
5d:64:1b:de:57:db:91:28:a0:be:38:b8:44:d6:bb:
d1:9e:8e:06:59:4d:d0:87:d0:82:ee:ac:37:2a:c0:
e1:a2:39:c3:41:de:20:81:c9:0f:e1:7f:7b:eb:2d:
1d:ca:1e:3c:15:a3:f6:7a:50:96:67:f4:7b:b3:d5:
65:a9:68:1c:4c:23:9f:58:b6:e3:39:b3:50:05:45:
2d:43:2c:cd:80:2f:5d:69:a8:9d:27:03:a9:e1:a2:
1a:52:7c:fb:61:e7:c4:11:ae:64:c5:28:e5:26:1f:
2d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:87:21:DD:70:01:7B:B9:04:6B:FB:F3:7A:35:21:53:6B:A2:48:7A
X509v3 Authority Key Identifier:
keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:f7:46:73:42:d2:5e:7b:ec:c4:58:00:eb:b2:36:cd:e8:f7:
3b:70:47:04:67:0f:55:6a:f0:3c:4b:56:e9:bf:2a:cc:1a:c9:
2e:55:22:ad:fd:76:f4:be:85:c7:d1:83:32:fc:bd:2f:fd:aa:
3a:16:10:92:a9:8f:2a:4f:87:c6:e0:3a:c9:ef:a8:86:23:bf:
d4:5c:ca:bb:a2:84:2f:3a:a3:1d:0f:f7:a4:96:37:df:8b:26:
e2:cc:6f:37:3b:09:78:e8:e3:2b:de:1a:3f:2d:ae:60:fc:e2:
7f:b0:5a:49:65:e0:90:f2:08:a3:f8:f4:ed:a8:b6:01:1b:a5:
c8:d8:73:8e:82:48:50:d0:18:4f:1e:b8:7b:87:be:2f:16:f9:
16:bf:6f:8f:3d:f6:48:03:40:05:bf:80:25:3d:76:85:45:0a:
31:18:15:4a:b2:16:d1:2b:f4:47:56:2d:e8:c9:66:e7:e4:b5:
97:7d:d3:87:e7:35:bd:53:f0:c6:1a:13:aa:47:85:42:b3:96:
99:dd:d5:da:cd:56:8c:49:d7:aa:14:74:47:98:33:cf:ba:7c:
c9:88:97:c2:6f:b3:cc:e0:f3:79:1f:42:4a:a3:ca:70:62:51:
f4:62:19:8c:50:33:0d:0a:9e:14:7f:eb:8f:55:e2:2c:8f:79:
e8:22:98:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:07:25 2025 by rpki-client