Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
File: HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft (raw, json)
Hash identifier: 2Luu/5Cd8etg0mZqu7EMpYdufhPVMnUk1jgFCM7do7U=
Subject key identifier: BB:49:A2:B6:9A:63:2F:A8:79:33:0B:D4:9E:36:B7:AD:2D:C4:6F:AB
Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Certificate serial: 01964067A57FBA4BBFA7755F31D50B162E59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
Manifest number: 1217
Signing time: Wed 16 Apr 2025 21:00:56 +0000
Manifest this update: Wed 16 Apr 2025 21:00:56 +0000
Manifest next update: Thu 17 Apr 2025 21:00:56 +0000
Files and hashes: 1: HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl (hash: WxUXK5O00L+dTCEGGt61Jk6y4VRhr8UicUBj6kWWWfA=)
2: Vu2y-aZXZUUf1w0WU_d1LDGMCjI.roa (hash: FtyHvpwzr+fctqlndkuiTxqEdI3uy3i+5i35b5nlvso=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:a5:7f:ba:4b:bf:a7:75:5f:31:d5:0b:16:2e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c
Validity
Not Before: Apr 16 21:00:56 2025 GMT
Not After : Apr 17 21:00:56 2025 GMT
Subject: CN=bb49a2b69a632fa879330bd49e36b7ad2dc46fab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:90:1d:ef:3c:81:ec:fb:0c:f9:26:ea:df:a2:
95:e9:c4:83:d2:dd:05:1e:14:e5:db:48:2f:3d:18:
71:93:6c:41:44:07:ee:89:9e:0e:81:9f:9d:40:a7:
1b:40:c3:1a:38:ab:4e:f8:b3:15:9f:82:47:39:42:
37:7f:a4:7f:5b:a6:09:d4:8b:eb:e0:a4:57:3e:02:
0e:ff:96:99:c1:f2:8b:0f:85:0c:cf:bf:7d:09:0e:
4d:53:e3:9c:ac:81:30:ab:9a:d6:c0:89:a5:31:f7:
a0:53:8b:92:f9:0d:d9:55:4c:7c:a8:c7:f8:da:4f:
cc:f1:d8:db:91:b8:a4:ea:52:24:c3:b6:4f:72:e6:
1f:5f:f3:41:d3:ec:0f:76:99:de:8d:4d:76:c5:f0:
52:20:25:78:37:80:98:6f:68:e0:3d:76:fc:8a:91:
4e:fc:a0:70:c4:77:8a:bc:4f:53:c4:bf:ce:70:50:
e5:41:3b:1a:48:f1:ef:73:61:53:42:de:ad:7f:0d:
a3:7c:e7:d9:d5:17:00:85:be:2d:de:84:1b:1f:a0:
86:73:a0:74:53:b6:0a:61:71:8a:a8:50:38:c1:c0:
8f:9c:02:09:fb:2f:32:ba:62:88:38:70:d4:78:a3:
e2:5b:77:60:6a:ad:9c:74:a8:33:00:2e:07:2a:6d:
35:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:49:A2:B6:9A:63:2F:A8:79:33:0B:D4:9E:36:B7:AD:2D:C4:6F:AB
X509v3 Authority Key Identifier:
keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:73:1d:47:9f:ec:e9:e8:d1:1b:bf:5a:de:c1:29:db:d5:75:
0f:2f:04:81:e1:37:5c:b6:34:9b:a3:0a:55:33:b0:83:54:61:
c3:66:08:31:88:84:20:08:72:a6:a6:4d:b1:9e:83:ff:1a:81:
4a:23:9c:10:b7:c9:7a:5a:fc:90:58:01:dc:bf:94:c7:ee:aa:
62:36:04:c6:c5:c6:f0:af:65:06:48:c7:f1:0b:48:64:f6:2a:
59:81:ba:da:80:5d:b5:35:ad:77:ce:f1:21:5a:5f:b7:ef:0f:
29:22:30:69:cc:83:48:73:d1:1c:3d:1b:d6:9e:6c:47:04:00:
29:90:a1:ea:3e:57:04:6a:02:f6:75:5a:9b:ae:cc:cc:36:f9:
85:e4:f0:28:60:f1:99:7f:60:4e:02:89:d5:7a:2f:fa:17:50:
48:f5:89:60:d1:f0:02:71:3d:96:fc:87:ec:28:75:af:54:d1:
1c:e4:31:58:ee:7b:f0:ba:5e:b5:54:91:55:b3:36:56:85:2d:
12:6d:8d:a0:2d:8c:25:86:93:67:48:60:ea:c1:85:2f:5f:e2:
21:4a:c8:00:39:3c:13:62:46:f8:4f:f1:0c:aa:32:59:f9:b6:
ab:93:b8:e3:5c:1d:77:cc:43:8a:13:76:58:3d:ab:43:89:c5:
8e:b9:90:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:39:28 2025 by rpki-client