Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json)
Hash identifier: fUSBzCzszGWpyPkaFFmbWcWIbW2Gpc+fpMHoCIs0YKo=
Subject key identifier: 74:86:54:A9:05:99:24:A1:7A:C2:2B:E9:EA:E4:82:88:CA:64:A6:F1
Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Certificate serial: 01964DEBD405693D6A077AB1508CB1AC5E4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
Manifest number: 20
Signing time: Sat 19 Apr 2025 12:00:22 +0000
Manifest this update: Sat 19 Apr 2025 12:00:22 +0000
Manifest next update: Sun 20 Apr 2025 12:00:22 +0000
Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=)
2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: PCl5UdYmco5KqSbtZRo+X9MlfDfDQL0l0IiEDFfXgcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:eb:d4:05:69:3d:6a:07:7a:b1:50:8c:b1:ac:5e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81
Validity
Not Before: Apr 19 12:00:22 2025 GMT
Not After : Apr 20 12:00:22 2025 GMT
Subject: CN=748654a9059924a17ac22be9eae48288ca64a6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fa:c6:ff:6a:a6:68:80:7f:40:d0:34:39:cb:
42:54:53:77:a2:86:76:55:8e:1b:c6:b7:2e:af:99:
64:b4:ea:12:a4:82:51:e8:0a:59:18:71:f1:30:f4:
94:19:4c:60:66:a9:2b:02:41:6b:31:ed:36:64:76:
ba:8d:09:ab:d4:29:02:9f:0a:53:cd:a7:bf:e8:31:
f0:bb:50:66:1a:3f:40:67:52:f9:de:da:64:09:15:
7b:53:85:d9:04:0b:5f:24:b3:a5:ab:80:10:82:e6:
b9:cb:c3:f4:d5:b6:96:d6:51:d4:83:8c:a6:12:79:
2a:4f:22:9c:70:d6:22:a9:f3:78:b3:f4:92:e6:7d:
8f:79:40:4f:06:77:e6:8e:9a:26:47:ab:b0:e9:db:
98:81:e2:a6:d3:ea:56:6f:28:6e:f6:2f:d5:11:59:
72:c7:b5:7f:9a:22:a4:0c:bf:63:0e:77:72:6b:46:
2b:95:e0:a2:6a:2c:fd:a8:7b:90:aa:a2:9a:c8:0e:
78:d1:0e:72:ca:2e:d8:7a:ac:2d:22:9a:74:cc:eb:
32:b5:ce:fe:40:fc:d0:21:f7:c1:43:e9:cf:c6:dc:
7d:24:5c:79:28:b5:d3:e4:cc:e9:3a:e1:83:5e:10:
e0:17:91:40:1c:da:83:5a:3b:a4:5f:27:bd:3c:32:
19:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:86:54:A9:05:99:24:A1:7A:C2:2B:E9:EA:E4:82:88:CA:64:A6:F1
X509v3 Authority Key Identifier:
keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:30:28:81:5b:2a:21:71:1b:d2:bb:64:cb:f7:f5:01:ee:fe:
48:0c:17:8b:bc:34:39:48:07:08:70:8b:07:dc:62:03:17:f0:
75:d7:a8:39:dd:4d:0f:5c:a1:29:1f:8d:b1:73:20:00:06:34:
56:16:eb:3f:53:6f:f0:dd:3d:24:a1:79:4a:96:a5:84:e4:90:
a3:38:ae:4e:9a:96:25:aa:27:b5:3d:2b:f2:01:74:1e:ec:91:
c2:2c:57:ec:e5:c3:a9:3c:a2:f9:be:36:85:ea:b4:7f:8a:63:
31:5c:62:7b:d6:d8:25:a9:d8:21:39:e8:37:39:2b:5a:c6:32:
c7:96:19:ee:23:b9:ee:ed:bb:8b:65:70:c1:50:23:da:7a:81:
e7:14:ac:6b:17:7a:2a:07:57:0a:a9:9f:14:c8:fc:fe:ae:93:
dd:c6:90:5f:13:12:24:17:25:5b:c8:6c:82:db:7e:7f:27:f3:
16:41:44:95:81:be:5a:bd:e2:6e:ac:4e:25:9c:8c:8b:5e:ec:
92:0b:00:ff:f1:f8:ab:94:8c:5d:4e:a3:fd:3d:85:19:1f:8f:
9d:8a:d2:25:6a:fc:0e:71:56:53:9b:9a:15:cf:6d:76:c0:97:
19:e7:3c:9a:e2:87:32:41:ec:ee:d1:91:3c:32:07:ff:fd:72:
b3:1b:9f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:16:02 2025 by rpki-client