Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json)
Hash identifier: KlyOzANIOokJHqWWgUzycSCjTeI9sNB/4+iUyKp4tqo=
Subject key identifier: B5:07:25:46:C0:40:19:F9:45:90:1E:DD:59:9A:4E:2F:50:8A:BC:83
Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Certificate serial: 019635E358514F47E2720C7FC717E66F3ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
Manifest number: 14F2
Signing time: Mon 14 Apr 2025 20:00:13 +0000
Manifest this update: Mon 14 Apr 2025 20:00:13 +0000
Manifest next update: Tue 15 Apr 2025 20:00:13 +0000
Files and hashes: 1: 2Sogz2f-Y-Q89kALOaFwXGpENls.roa (hash: xWX/sBmx7Cmqhctcmi5B9YqU1V0kQKRLbrhmA5MXJ0s=)
2: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=)
3: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: wfC/5MavYBrIvp/4Q0RGtSr+Xh0tY9QBDr4KuVGMAZc=)
4: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 14:19:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:35:e3:58:51:4f:47:e2:72:0c:7f:c7:17:e6:6f:3a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488
Validity
Not Before: Apr 14 20:00:13 2025 GMT
Not After : Apr 15 20:00:13 2025 GMT
Subject: CN=b5072546c04019f945901edd599a4e2f508abc83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0e:c2:cd:2a:3e:25:78:39:c5:48:86:4e:36:
65:5f:8a:4d:4f:f0:02:6b:ea:e7:f8:6e:ec:69:74:
35:bb:6c:79:61:d5:b8:e3:0e:61:b7:76:9b:7a:5e:
75:09:9f:42:63:cc:be:a2:34:1c:c4:d3:af:ec:5e:
8c:c3:b2:70:4b:f2:e3:43:85:0d:f3:df:e1:f2:2f:
b2:5d:7d:b8:e0:0e:83:50:9d:af:e1:93:e6:a6:c0:
b4:ea:a8:63:77:67:e5:24:a2:76:75:36:cc:5d:56:
00:e1:98:82:95:09:1c:6e:22:e4:8d:bf:b5:b8:cc:
95:1a:e6:bb:f0:f6:d4:4b:31:59:d9:df:7f:f0:83:
ad:55:ce:86:61:ac:95:d9:29:b5:08:86:2a:69:34:
67:6e:1f:11:15:b4:13:31:b7:f6:2f:a2:6c:a3:a5:
0a:b0:9b:e4:c2:74:17:de:8a:15:59:07:b6:82:c5:
2f:b4:dc:0e:dd:d5:6e:0e:4a:20:ca:cf:29:62:96:
86:b3:40:24:de:a3:27:fe:96:0a:60:9d:f9:c6:8d:
0f:4c:46:2f:38:80:7e:11:46:61:be:af:a0:51:5d:
6c:4a:d3:cd:72:3d:63:3d:01:51:75:b1:19:6a:3c:
2e:1e:06:ec:8d:6d:16:99:be:bd:a5:f3:8a:6b:3a:
e6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:07:25:46:C0:40:19:F9:45:90:1E:DD:59:9A:4E:2F:50:8A:BC:83
X509v3 Authority Key Identifier:
keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:65:ad:08:8e:59:32:93:cb:3f:83:c7:a3:00:86:7f:00:19:
af:6b:06:b7:9e:57:a1:75:87:07:66:eb:7b:b2:f1:43:1b:9e:
16:7c:b1:cb:58:32:5d:c5:75:d2:44:55:dd:65:df:db:53:d9:
97:61:ec:15:96:fb:b9:6f:01:b7:25:35:a0:3f:f1:e1:7a:76:
f1:12:47:e5:c1:5d:b6:d9:68:6d:64:b0:4f:51:54:3c:0f:02:
8c:e0:ec:de:f5:12:b4:a8:ab:9b:fa:5a:6f:85:30:1b:65:3b:
c1:d4:ba:7f:60:83:8b:33:0b:c1:73:46:b3:61:31:68:2a:2f:
df:58:07:6b:ea:48:40:ee:4c:81:78:83:d1:34:75:86:ef:9a:
ce:a9:e1:59:c6:12:ea:00:ee:d6:63:e9:7d:c8:da:f5:42:3c:
1d:79:d3:25:33:01:a5:47:96:7a:75:23:67:d7:08:2e:9d:6c:
b2:4d:c8:4e:2d:0f:b8:1b:c3:25:c0:67:84:bf:a5:02:f4:b7:
e9:3f:fc:e9:0d:5b:7f:3e:c9:21:5b:a5:30:93:ab:ef:07:21:
9f:25:66:96:ce:3b:05:04:26:5e:21:ab:9b:e6:52:15:78:a2:
b1:cb:ec:83:f0:ee:85:28:1b:5e:43:ac:00:47:59:a4:5f:af:
85:c5:20:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 23:15:51 2025 by rpki-client