Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
File: HqvXZaBQUv7FmmonPV70v8ekA1o.mft (raw, json)
Hash identifier: LKBB+Mnz9cwDHDejNLgkrpMkIxmWdOfb0DbZK5nLAcc=
Subject key identifier: BE:8B:1B:FE:5D:1F:70:E4:C5:AF:9E:BD:D8:0B:CB:04:C6:68:1A:5E
Authority key identifier: 1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
Certificate issuer: /CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Certificate serial: 01964A0EF44A6224E3E6C980AC3E22DAFC5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
Manifest number: 14F8
Signing time: Fri 18 Apr 2025 18:00:16 +0000
Manifest this update: Fri 18 Apr 2025 18:00:16 +0000
Manifest next update: Sat 19 Apr 2025 18:00:16 +0000
Files and hashes: 1: HqvXZaBQUv7FmmonPV70v8ekA1o.crl (hash: EaDoiPDMfXNrp1Rlsd5wKRuWnFBDydh50/3jgF/cf5A=)
2: MFHqmqIi0lc_Re9PoYpL1Pw-ATg.roa (hash: iQ8gQVoAElI9FMya7NrxkBP0Xq9GVsJ7ePhe9Fu3PJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0e:f4:4a:62:24:e3:e6:c9:80:ac:3e:22:da:fc:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eabd765a05052fec59a6a273d5ef4bfc7a4035a
Validity
Not Before: Apr 18 18:00:16 2025 GMT
Not After : Apr 19 18:00:16 2025 GMT
Subject: CN=be8b1bfe5d1f70e4c5af9ebdd80bcb04c6681a5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2d:ff:00:32:63:21:c6:9e:1f:62:6f:06:37:
6c:9f:07:69:e8:eb:1e:6f:3b:0e:f8:a5:74:38:95:
20:de:d1:ad:f9:3b:27:e5:22:bb:32:3d:6a:10:1c:
60:be:cb:2e:6e:84:f0:9d:a9:75:f1:44:40:38:7b:
66:61:4c:c2:c0:79:a2:4f:60:e1:c0:4f:04:35:c8:
37:78:22:f3:9e:1e:db:4d:76:58:dd:a6:76:e4:13:
c8:c3:95:23:50:9d:e9:82:a0:87:e3:a6:a2:e2:9d:
ab:47:07:37:7c:3e:56:be:ee:85:3c:00:ac:a6:a2:
43:f8:28:68:51:76:33:94:fb:64:a1:50:d5:84:39:
98:32:e9:01:70:fc:2f:09:bc:85:38:7a:cd:e8:ed:
8b:94:2a:e4:fe:59:9d:f8:5c:0b:6d:b8:3d:db:e3:
8c:4b:c2:36:b7:ed:45:d2:44:58:6b:e7:55:0d:d6:
6c:1b:d3:59:4a:81:1f:f2:ad:c2:05:a9:22:35:f5:
5d:f8:80:ce:01:2d:57:a2:ed:05:2f:ee:91:29:b9:
16:80:47:74:09:5c:5d:d5:2b:36:03:bc:96:06:b3:
61:da:2f:48:12:19:18:1e:1e:0d:73:24:48:8f:ad:
6d:b7:40:40:a0:5d:7f:ce:37:ac:cf:ef:d9:5e:62:
54:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8B:1B:FE:5D:1F:70:E4:C5:AF:9E:BD:D8:0B:CB:04:C6:68:1A:5E
X509v3 Authority Key Identifier:
keyid:1E:AB:D7:65:A0:50:52:FE:C5:9A:6A:27:3D:5E:F4:BF:C7:A4:03:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqvXZaBQUv7FmmonPV70v8ekA1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e10722-dabb-4a41-8923-b1b682e2060f/1/HqvXZaBQUv7FmmonPV70v8ekA1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:d9:7c:4d:7a:05:a2:0c:9c:0f:f7:2c:0b:b1:7f:4f:f8:f0:
f3:fb:8f:e8:7c:8a:3c:cb:95:88:bd:06:7a:ba:c3:94:2f:f7:
16:79:17:19:11:46:93:9e:cd:57:a0:bd:af:ff:5c:db:f5:d4:
f3:f2:74:f8:db:67:49:25:6d:a4:da:3e:be:07:cc:7b:03:92:
98:a3:78:84:c8:db:63:c1:f7:bf:65:3d:66:60:02:5a:64:0a:
59:03:4c:09:dd:58:ef:7d:f3:42:54:e4:95:00:aa:d4:3c:85:
66:95:82:45:e8:c4:92:4b:09:63:fd:a6:97:1a:1b:fc:88:24:
99:70:c0:ec:0a:d1:a8:8a:0b:6c:3d:9f:8f:66:a6:d7:f2:20:
3a:8b:2d:aa:14:e8:63:79:08:d0:b0:83:6a:6d:b5:29:e9:61:
ef:57:08:4e:62:c6:f9:73:de:1e:b2:4d:c8:86:ae:77:fb:dd:
54:be:7c:75:d8:e3:2c:1d:6d:2a:51:7c:fc:8a:2b:c6:9f:94:
1e:30:5a:ce:17:0d:b5:cc:13:3b:b1:e9:df:c0:7e:0b:63:0f:
bb:1e:ba:57:ca:79:84:23:ae:43:99:23:a7:41:b0:b9:de:ec:
84:c3:08:fb:33:b9:89:f3:00:ce:b6:15:d1:27:df:ae:aa:8e:
ba:fd:59:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:03:29 2025 by rpki-client