Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
File: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft (raw, json)
Hash identifier: wAhjGt2posH6f2Wy5pW4D0WLTLxawc5nv48I21X9csU=
Subject key identifier: 81:12:2D:4B:5F:0F:D8:09:60:AC:1B:56:9B:4D:5B:32:C4:E8:DE:2D
Authority key identifier: 1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
Certificate issuer: /CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Certificate serial: 0196545C20A52090063C7DD4394416D1B21D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 18:00:45 +0000
Manifest this update: Sun 20 Apr 2025 18:00:45 +0000
Manifest next update: Mon 21 Apr 2025 18:00:45 +0000
Files and hashes: 1: HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl (hash: LniI193oeTtD13ZzwXJFYhAD41NO4MavQwdVAgqE4ko=)
2: Rk8F0_O96bWnV23XOY1ym8DMObc.roa (hash: mN43AwUntAXDuv+4vVnXFfluzZ73Kps3qVN8w0gCSEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:20:a5:20:90:06:3c:7d:d4:39:44:16:d1:b2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dfc2b36514163d389ee8fe18f8e2343fa4ddc99
Validity
Not Before: Apr 20 18:00:45 2025 GMT
Not After : Apr 21 18:00:45 2025 GMT
Subject: CN=81122d4b5f0fd80960ac1b569b4d5b32c4e8de2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6e:13:c4:d1:d2:42:bf:95:a8:c1:01:37:9c:
2e:d9:07:ed:c2:37:d5:43:b7:33:00:d6:e1:05:ca:
33:ab:4e:aa:6d:b2:b1:7f:70:d1:5f:3d:72:1a:a2:
1a:29:af:b1:5a:91:9b:fd:de:c8:42:8a:68:a3:c2:
98:ea:5b:31:1f:47:55:b4:0f:ff:08:6b:d0:97:fe:
41:7d:f2:6e:51:f0:00:ff:13:62:a2:11:c3:41:91:
66:ed:94:7b:be:ec:83:4f:90:e5:f0:93:94:31:e2:
5b:a1:fa:fe:50:8e:ab:5f:80:f5:6f:7d:82:f9:36:
86:f8:06:6b:93:fb:c9:1b:af:a9:b3:f7:c8:69:43:
36:43:be:b1:3c:ab:f8:ff:58:65:e8:45:91:c8:bc:
eb:54:b7:1f:8e:da:fd:ba:90:79:c9:2f:c8:b7:3c:
51:50:02:0a:bf:45:76:4c:fb:df:d5:c5:59:39:0f:
25:60:a0:80:e9:d1:c2:c4:6e:26:02:0f:9d:61:a9:
40:9e:c5:0e:fb:5e:a2:7a:05:c6:99:17:5e:81:d4:
04:e3:69:66:ac:90:1e:8b:da:e5:30:f9:93:bc:83:
f1:a1:4f:bf:09:82:e7:c5:bc:83:b3:72:bb:31:60:
31:60:a4:ca:62:f5:cb:14:9c:c0:c3:27:01:0a:9e:
99:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:12:2D:4B:5F:0F:D8:09:60:AC:1B:56:9B:4D:5B:32:C4:E8:DE:2D
X509v3 Authority Key Identifier:
keyid:1D:FC:2B:36:51:41:63:D3:89:EE:8F:E1:8F:8E:23:43:FA:4D:DC:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d929ab-4896-43e2-a876-01bed8782c7f/1/HfwrNlFBY9OJ7o_hj44jQ_pN3Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:1d:49:db:e1:01:9c:f2:1f:dd:48:64:fc:13:16:fb:18:fb:
22:a3:cc:51:6b:1b:75:95:2c:fa:09:64:e2:a9:70:e9:3f:f6:
fd:90:5f:8f:fd:d4:9a:c8:26:1a:04:b2:59:14:fe:a0:2e:31:
78:10:e3:40:28:63:1c:e6:c3:bb:f7:07:4c:36:52:ee:3f:45:
2f:89:86:37:0e:df:50:5d:bf:10:f8:9d:11:2b:7f:b1:ea:f4:
71:6c:5f:5d:1a:e4:c0:98:7d:61:21:93:eb:eb:cb:7d:23:bb:
f2:23:aa:4b:be:2b:3d:7f:a7:38:6d:72:df:a0:c6:ee:ca:d1:
92:09:3e:d7:cf:69:6f:83:90:77:61:22:f3:96:e3:18:2a:57:
33:9c:6a:b1:02:db:4d:79:ae:67:22:78:d2:71:4d:b7:8a:3f:
a9:67:24:6c:56:c6:75:ba:dc:c2:f0:3d:7e:50:4b:ed:b0:65:
6d:7e:aa:05:b2:0a:5a:6d:69:60:e1:c9:1c:9e:77:87:9e:51:
48:80:6e:b0:ca:f0:80:b0:88:25:44:71:ef:bf:50:cd:04:cd:
f2:a0:dd:2d:3e:a0:1f:df:da:fc:2d:f6:31:1b:b4:b0:96:24:
dd:19:5f:c4:2c:24:f4:47:37:84:ba:76:4c:11:f4:30:f9:80:
f6:68:be:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:29:10 2025 by rpki-client