Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json)
Hash identifier: 5q2PzNwpqKFm8RROReYTInAx8CMRPg15Y358r7RsXW8=
Subject key identifier: 51:26:03:08:4B:07:FD:92:8C:C8:96:17:87:13:15:96:7C:BF:5F:E7
Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Certificate serial: 019611A113E1639A8B1A90A0EDE5D19FF57D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
Manifest number: 13A6
Signing time: Mon 07 Apr 2025 19:01:31 +0000
Manifest this update: Mon 07 Apr 2025 19:01:31 +0000
Manifest next update: Tue 08 Apr 2025 19:01:31 +0000
Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: p70SbuN3y9YOPohytCXkIKp5VJvUkT2JbV4LJgaiwbY=)
2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 19:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:a1:13:e1:63:9a:8b:1a:90:a0:ed:e5:d1:9f:f5:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e
Validity
Not Before: Apr 7 19:01:31 2025 GMT
Not After : Apr 8 19:01:31 2025 GMT
Subject: CN=512603084b07fd928cc89617871315967cbf5fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:89:70:a6:27:6c:13:bb:ce:c8:20:75:3b:46:
30:7e:04:c7:95:84:ac:05:c2:8c:41:b5:0f:92:33:
f8:66:15:86:e6:55:b0:c9:b8:db:7c:d0:af:3a:53:
c1:30:61:0e:26:f2:29:4e:87:de:64:01:14:0f:f4:
54:54:01:dc:ea:b9:3f:fd:3f:82:c4:6c:f1:2e:0e:
f0:71:18:2f:ea:0a:65:b4:d6:98:92:52:dc:e6:ed:
0b:a0:30:74:3c:13:14:d9:80:9b:1b:d3:e9:95:ff:
16:d9:47:ea:9b:4a:fb:75:0c:99:10:fb:d2:20:0f:
2a:85:44:a8:1b:b0:63:be:e0:22:0e:e2:b7:c9:72:
33:3d:db:32:09:e8:0d:d6:19:83:72:4f:d0:13:cb:
fd:e5:a8:5b:8a:cf:85:bc:73:ec:c6:28:2e:5a:5b:
ce:17:f0:b3:63:6b:71:9d:f2:73:dc:53:fc:3d:bc:
fb:42:48:8b:ca:4c:e7:2c:e7:f8:f1:2a:0d:3b:e2:
20:39:34:c0:fe:e5:67:5c:e8:f3:ac:1a:b1:85:db:
71:29:7b:bc:9f:32:92:ad:69:c5:37:04:aa:56:51:
c2:f5:54:1d:db:66:ad:5c:84:4a:0e:53:26:6c:90:
49:7e:e7:ff:0c:3a:a1:ff:25:96:4a:ac:3c:46:d4:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:26:03:08:4B:07:FD:92:8C:C8:96:17:87:13:15:96:7C:BF:5F:E7
X509v3 Authority Key Identifier:
keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:4c:44:ce:f9:28:50:e5:6a:fa:08:24:e1:48:7d:85:9e:44:
41:a8:0c:8b:95:66:f5:11:14:ec:6f:e3:f8:18:74:9e:59:ab:
25:d6:32:e2:c5:40:07:9c:71:b2:96:68:36:71:b1:46:a0:82:
ab:65:14:ab:a4:76:87:85:04:a0:44:d5:c4:42:82:01:7a:fa:
4a:d2:7b:49:74:a5:ca:90:4b:33:ea:7f:ee:0a:46:5c:59:5c:
93:21:85:0f:61:b1:00:0d:e2:7a:d0:91:17:29:95:c2:45:b0:
d4:f6:39:5c:06:dc:a8:08:70:ae:27:fc:fd:2d:92:85:30:28:
cf:85:20:ac:18:4e:40:9d:d1:d9:eb:49:70:df:e9:29:6d:66:
d6:c2:79:97:45:c0:8c:31:4d:ec:7c:9e:78:86:58:52:fb:a2:
e5:c5:46:e8:af:bd:95:2f:08:9b:25:41:f7:47:a9:d2:75:1c:
a8:5c:cc:3d:55:07:3a:94:db:51:cc:8f:3c:3b:2f:69:46:82:
c3:76:92:55:65:52:e2:f4:ab:5c:6b:bf:96:77:b5:94:f3:ef:
2c:8d:e3:17:8b:4f:1a:fc:10:d9:7a:7d:70:f1:a1:57:70:0d:
e8:30:97:40:bc:b1:3e:1b:5b:19:0c:0c:95:0a:9a:93:47:d7:
18:46:03:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:08:08 2025 by rpki-client