Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
File: HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft (raw, json)
Hash identifier: XpwDEgKjcgjWmI0/UyxAgUgr4sl/qPmb3GYHXUhPk34=
Subject key identifier: 02:03:90:DE:90:68:9F:36:77:9F:2D:A3:CA:50:B8:FA:C0:90:C7:6B
Authority key identifier: 1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
Certificate issuer: /CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Certificate serial: 019610C52FFFC1E815FDC3E50588C91C3D4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
Manifest number: 0BD0
Signing time: Mon 07 Apr 2025 15:01:20 +0000
Manifest this update: Mon 07 Apr 2025 15:01:20 +0000
Manifest next update: Tue 08 Apr 2025 15:01:20 +0000
Files and hashes: 1: 8seasK16GsaOFWr-SwwyW57ek-Q.roa (hash: qX7qnakcmcX1EuhGkXbf2jHBxhoO6I07uSRi1nBbABs=)
2: HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl (hash: 23Vxdiea3VYvaZRvwzpj3n8HsWYBarn0ukpaBrj5yP8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:c5:2f:ff:c1:e8:15:fd:c3:e5:05:88:c9:1c:3d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e01986e6551bb3a015ac64ed6747c234b2a79e0
Validity
Not Before: Apr 7 15:01:20 2025 GMT
Not After : Apr 8 15:01:20 2025 GMT
Subject: CN=020390de90689f36779f2da3ca50b8fac090c76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4f:4d:b8:8d:48:17:5d:89:34:b6:84:a1:24:
71:8e:ff:7b:df:c6:ac:cb:3f:8f:da:f9:b8:a9:0e:
5d:41:69:d3:27:dc:79:27:49:c8:92:1d:69:1a:82:
27:2c:ca:c4:8c:f0:c3:58:40:eb:1d:03:6b:b0:58:
f8:ec:26:7b:f3:28:8f:3d:15:e5:8c:f7:b2:a1:1c:
76:0e:03:1d:cd:79:ef:ab:15:a7:39:9d:fc:c8:60:
64:8d:41:bc:b3:c9:e3:72:2d:e8:d5:e7:c5:a9:c3:
7e:96:82:1a:9b:07:1e:c7:69:9a:98:e8:78:40:67:
83:39:6e:ad:bf:e3:f3:23:06:ba:83:a9:a5:66:52:
0e:e7:bb:62:c1:61:b0:d2:2f:32:a6:0c:ba:4d:6b:
34:ec:88:df:4c:3a:e0:d4:1c:ff:9c:21:16:0a:17:
2c:55:41:09:c3:42:b2:89:1d:c7:99:90:bb:1e:47:
e0:1a:82:df:b9:cc:ad:3d:69:c0:49:72:2b:65:a7:
12:c8:ab:a9:d2:6d:31:22:c8:d2:bb:97:6b:be:28:
b4:16:55:5b:7a:7e:81:c1:a7:e7:34:f2:c6:ae:9f:
3e:e5:13:7c:26:3b:54:9d:13:a6:c0:a0:b2:fe:51:
f1:f9:fb:14:16:5a:11:9c:1a:b2:a8:70:37:b7:32:
58:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:03:90:DE:90:68:9F:36:77:9F:2D:A3:CA:50:B8:FA:C0:90:C7:6B
X509v3 Authority Key Identifier:
keyid:1E:01:98:6E:65:51:BB:3A:01:5A:C6:4E:D6:74:7C:23:4B:2A:79:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgGYbmVRuzoBWsZO1nR8I0sqeeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3cbb9c-5006-46be-b4c3-ff8f5545eba2/1/HgGYbmVRuzoBWsZO1nR8I0sqeeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:6a:52:11:71:bd:7e:44:e9:df:dc:0c:fb:12:63:61:15:50:
a9:42:ae:4e:7c:86:08:45:fa:89:74:67:73:dd:47:48:8f:65:
29:67:cc:bb:f3:4b:48:b3:43:b1:d3:44:ff:5a:e2:40:13:00:
90:cd:c8:88:5e:0a:1a:0f:15:fd:77:38:21:59:67:f4:a7:6c:
75:f5:9d:db:db:30:32:5b:6d:1c:d5:b1:1e:f6:aa:95:4e:e9:
a3:2c:ad:c9:76:3a:5c:d0:c2:49:cd:bc:8f:a9:90:4e:43:97:
53:99:bb:81:fa:7b:7b:3c:28:56:e5:43:81:7c:c9:66:32:bd:
58:86:a7:88:e9:3b:0e:4c:b4:14:15:f1:38:89:96:27:0f:a6:
c0:26:66:23:52:0b:3f:57:5e:d7:04:c1:3d:e8:c4:f7:b1:dd:
6e:dc:62:10:56:99:a1:25:31:7a:ea:56:47:f7:b3:f0:c4:ec:
80:b4:6a:b8:28:c4:69:6e:db:0f:c2:88:8e:fc:d2:93:28:30:
f9:0b:cc:96:d3:76:68:5f:24:e3:dc:58:dc:c1:1f:c5:d6:09:
6a:e8:fa:82:f9:5a:cd:c0:68:42:4a:76:34:8e:51:c6:52:d0:
65:67:ac:e9:a8:bb:a5:d7:87:43:d0:df:52:42:29:0b:f4:c3:
5f:ff:07:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:54:41 2025 by rpki-client