Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: IukgcLh0Tu2mWePyf0wapugrI2QtIe6MhsvLlCtuyhs=
Subject key identifier: B4:8C:BC:84:F9:86:B1:2F:E2:68:6E:C6:08:48:43:38:18:BD:45:CB
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 01958BF2A58BE02F73C96A2BDFD3F99CFB12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 149A
Signing time: Wed 12 Mar 2025 20:01:29 +0000
Manifest this update: Wed 12 Mar 2025 20:01:29 +0000
Manifest next update: Thu 13 Mar 2025 20:01:29 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: 5OM7X1vy6bMhDjAuRMqZuKDzcaxBkomLbLzAoQkqNBY=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:a5:8b:e0:2f:73:c9:6a:2b:df:d3:f9:9c:fb:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Mar 12 20:01:29 2025 GMT
Not After : Mar 13 20:01:29 2025 GMT
Subject: CN=b48cbc84f986b12fe2686ec60848433818bd45cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:31:36:77:92:cf:9e:92:15:7f:f2:f2:1e:
23:08:e3:2e:49:64:aa:3a:02:48:b6:f6:7d:22:a9:
45:13:93:ac:ea:28:9a:90:bb:b3:76:8f:00:30:ff:
7b:a7:ee:2d:de:d9:04:59:97:a5:8e:fd:81:a3:33:
9f:99:e1:c8:df:4e:f6:7e:8d:e2:18:f6:dd:16:a7:
0e:ee:06:3d:88:3a:40:46:f0:3b:78:15:f1:3a:9d:
3b:eb:4d:71:69:2e:39:1d:2d:d0:be:fc:ab:07:17:
5e:40:83:93:21:81:4b:0e:9d:88:26:b9:c2:db:6e:
6a:8f:93:73:d5:88:96:a5:aa:b9:06:95:67:f8:10:
f9:3a:14:94:00:e5:75:c6:7a:ce:cf:f1:1c:52:85:
e8:fe:53:af:97:9b:4e:d4:c5:e2:1c:5b:e0:e6:ea:
6e:c6:e1:e4:02:e5:52:ca:3e:a2:b6:f6:97:0f:e7:
06:ad:fd:1e:e4:fc:44:13:ab:79:8e:a3:a7:da:dd:
28:c4:9c:e2:d0:1a:27:8c:cc:de:0c:a5:27:3f:b6:
f3:ea:ed:41:c4:55:e8:ce:e2:bb:43:74:d3:27:39:
03:f4:39:ca:76:64:c6:54:27:99:f2:2c:21:4e:db:
a9:02:d2:ad:d5:d1:13:f6:a7:42:df:39:31:cc:e7:
e2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:8C:BC:84:F9:86:B1:2F:E2:68:6E:C6:08:48:43:38:18:BD:45:CB
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:25:c5:cb:a6:27:eb:4c:91:2b:f0:9a:9b:1b:29:3e:9b:d2:
d6:6d:b3:4a:e6:9b:f9:e7:be:71:e4:6a:b1:0b:d9:56:66:2b:
dc:14:19:ae:d0:25:6e:90:36:c1:3b:fc:5a:58:d1:8a:b4:62:
1d:8d:a9:d5:0a:b0:e0:06:ca:29:a2:78:c5:6c:e3:ae:a1:99:
f0:5c:5c:83:25:84:a3:f0:33:83:5e:16:13:90:2c:54:c8:c6:
af:0b:7d:e9:22:aa:70:7a:ac:11:cc:57:90:70:a1:3b:a9:2e:
06:dd:cd:71:64:50:71:dc:81:69:44:36:35:c7:9e:13:6e:d2:
94:f6:d9:f0:f3:06:91:17:b0:87:b8:f7:36:f3:b5:e5:7a:c9:
df:f9:a3:92:e0:c6:57:25:3e:7c:0e:be:98:b6:0a:ff:03:05:
f3:e6:22:3c:d5:0e:aa:86:85:50:72:c6:72:fe:cf:56:d4:a4:
a7:82:0f:2b:d2:73:d4:bf:17:35:9b:4c:ff:ba:76:2a:03:e3:
fb:f3:69:9b:38:69:e5:d5:f1:22:af:72:7d:28:d3:e2:88:54:
ab:24:c7:50:d6:7d:44:66:57:b3:77:64:18:39:07:f6:f2:f2:
e1:a7:c2:1b:7b:d4:1c:13:9c:6e:b7:14:d3:06:aa:b7:9a:5d:
28:cf:5b:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:26:48 2025 by rpki-client