Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
File: HEIt1-1z0cAEhQAzv5V5tP716dE.mft (raw, json)
Hash identifier: eUCTVOEtzpQCQqmHgmh+M9bN6FowGNz+vFuW+hEEs+8=
Subject key identifier: B8:09:82:F3:32:56:96:AA:66:DF:04:7D:05:F9:3A:AF:C5:3B:DF:CE
Authority key identifier: 1C:42:2D:D7:ED:73:D1:C0:04:85:00:33:BF:95:79:B4:FE:F5:E9:D1
Certificate issuer: /CN=1c422dd7ed73d1c004850033bf9579b4fef5e9d1
Certificate serial: 019746302D4CF7AF8839F0E45ADE7CE6BD1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEIt1-1z0cAEhQAzv5V5tP716dE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
Manifest number: 3E
Signing time: Fri 06 Jun 2025 17:00:51 +0000
Manifest this update: Fri 06 Jun 2025 17:00:51 +0000
Manifest next update: Sat 07 Jun 2025 17:00:51 +0000
Files and hashes: 1: 4xTwGwEgqqNgpztG8b7-qFnWnmQ.roa (hash: G+NieVImXlejNVzPXtYNNAfkIKyCKo0Pau1bwovvw64=)
2: HEIt1-1z0cAEhQAzv5V5tP716dE.crl (hash: 7xnqUICt3r+b5MFcfwRgp+YxlS+uavyKPZYKiZBsUbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEIt1-1z0cAEhQAzv5V5tP716dE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:30:2d:4c:f7:af:88:39:f0:e4:5a:de:7c:e6:bd:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c422dd7ed73d1c004850033bf9579b4fef5e9d1
Validity
Not Before: Jun 6 17:00:51 2025 GMT
Not After : Jun 7 17:00:51 2025 GMT
Subject: CN=b80982f3325696aa66df047d05f93aafc53bdfce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:11:0e:c7:46:f4:27:37:be:bf:22:8a:2a:29:
14:e8:bc:ad:1d:29:11:e9:c4:a4:8e:54:f9:84:2f:
57:1e:42:de:27:3f:c0:a0:86:78:83:74:e9:51:33:
ee:69:62:ba:af:4e:34:66:ee:e9:bb:01:0a:b0:d9:
62:b3:23:fa:32:02:36:84:49:d7:06:6b:73:7b:b0:
d9:9a:83:fe:82:10:a9:5e:a1:2e:d2:2b:dd:65:64:
ca:24:a8:fd:79:9e:e7:d3:71:ca:b0:83:1c:d1:35:
79:8f:9a:e0:8d:a9:3e:1a:1b:6b:db:70:ed:84:c8:
c1:b1:95:6c:20:6f:fe:d6:da:0f:02:b7:b4:32:46:
40:66:4c:fe:b9:e0:bc:45:44:64:29:be:7a:73:b9:
e1:bf:70:4f:27:14:c9:3e:bd:b2:47:53:75:c2:a5:
cf:8d:a7:6e:a8:42:7a:be:69:d1:85:e6:72:ce:dc:
9c:24:0d:a3:7a:6b:d5:77:ac:35:13:43:5d:29:28:
48:0c:ec:74:1b:a7:d4:f5:29:1d:3c:05:0a:12:b0:
51:02:d2:c6:27:69:63:e2:1d:ae:a5:2e:56:09:4d:
4f:fe:55:0c:df:26:85:48:da:66:03:fa:f0:6f:7b:
9b:29:5c:55:5e:4d:72:39:2c:af:ce:b9:dc:93:03:
a7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:09:82:F3:32:56:96:AA:66:DF:04:7D:05:F9:3A:AF:C5:3B:DF:CE
X509v3 Authority Key Identifier:
keyid:1C:42:2D:D7:ED:73:D1:C0:04:85:00:33:BF:95:79:B4:FE:F5:E9:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEIt1-1z0cAEhQAzv5V5tP716dE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/391350-a970-4ba1-8a94-3979b800cda8/1/HEIt1-1z0cAEhQAzv5V5tP716dE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:40:20:d8:61:35:31:a7:23:ef:7a:04:09:b6:22:c6:57:c8:
e3:56:b1:2a:c2:e1:c1:8b:02:03:a7:50:9d:d8:11:31:ee:a9:
5f:8f:d1:7a:4a:99:9d:66:88:7c:39:aa:c6:cc:f7:58:2b:0b:
0d:5d:c4:0a:f6:c9:2f:73:55:5f:a1:bb:37:73:18:1f:a1:1a:
87:30:53:39:01:ed:fe:de:a2:2d:3a:91:48:93:e8:af:56:be:
1b:a3:38:2b:f3:ed:4e:c5:44:e8:c5:31:f0:67:e9:6f:08:26:
94:09:e4:be:f3:d4:d6:86:ea:f6:d3:68:57:98:40:e3:b6:66:
80:1b:eb:19:fd:c3:9f:bb:6d:6f:70:48:a4:87:ce:60:c6:ac:
0b:e2:16:25:c5:c1:c7:1b:3c:b2:72:b9:6a:b0:f4:ee:4b:a6:
56:b7:ff:36:d1:22:b7:81:ba:8a:ad:da:16:67:e5:c9:c1:6c:
18:d4:8f:f7:5f:2b:43:46:c8:82:74:f1:be:07:b6:b6:b0:9d:
98:97:a2:e2:28:73:9d:e4:19:ed:b7:b0:b6:37:d7:0a:65:f8:
11:43:bf:82:74:a3:c6:25:a2:56:e3:24:e3:d3:1d:d6:8a:e5:
f9:78:9b:47:6d:05:1b:2f:0b:ec:71:8d:b3:89:f4:55:6b:43:
8c:9f:81:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:03:37 2025 by rpki-client