Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: 9iOy59jZOeTr1DGoopOJvbX3CdNXxpoeDOc6cLfTjQ4=
Subject key identifier: 17:7A:59:24:9C:57:64:A2:35:6D:19:0B:E2:30:12:A2:31:81:E1:6F
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 0196417A155DFAA0659133445C67CF85F3AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 02:00:41 +0000
Manifest this update: Thu 17 Apr 2025 02:00:41 +0000
Manifest next update: Fri 18 Apr 2025 02:00:41 +0000
Files and hashes: 1: 0EXTA2fh52m_pdzndlQONOR-ALo.roa (hash: 6rMWco6WBnZhVNOyIqX9uMPGJDuagIsvvOicEopd/aI=)
2: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: 9AHHraC4d69jCT2zzPuiIGeRzX3o4LF4I1qHtRH4cyg=)
3: pdSwS3q_Aq9iIM8JVjDKkb9Kesw.roa (hash: Ci1NRJKdqWSbaDsRVp57BbXUB2naGLYnO5kSwluYKxo=)
4: ztoXV0czkggEzKpWeBIPpNx7Y00.roa (hash: MW72dY631rN8xBMa8x273b/yH8cBTnl1fp+7hzq29aE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:7a:15:5d:fa:a0:65:91:33:44:5c:67:cf:85:f3:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Apr 17 02:00:41 2025 GMT
Not After : Apr 18 02:00:41 2025 GMT
Subject: CN=177a59249c5764a2356d190be23012a23181e16f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e8:bc:a6:59:46:94:b4:41:a2:7d:ef:af:84:
e8:66:b1:a5:c8:91:a0:9e:f1:82:03:2f:0f:b9:90:
6a:ea:e4:c3:14:64:52:30:93:22:90:51:cd:31:1d:
bb:73:8f:16:95:41:6b:9f:ac:11:f9:ba:b4:98:c0:
e7:2d:92:25:ca:4d:32:a1:34:08:f3:66:b8:b8:4e:
68:a1:cc:7e:8a:8f:f7:64:09:c2:e9:90:f3:54:6b:
d8:86:2c:3c:be:94:8a:66:b8:aa:f3:7e:4f:31:85:
cb:c5:33:49:e9:24:9e:bf:cb:91:d1:13:a1:df:ee:
3e:31:7f:55:26:1a:b3:b6:f2:a3:2f:ac:a5:93:c7:
e9:d5:51:10:4e:78:fa:11:a3:93:bc:c7:1b:54:a2:
92:22:ec:28:4b:88:7a:71:64:15:39:70:d0:05:9a:
ad:69:cb:7c:07:69:ff:f3:21:20:98:bf:1d:a3:9f:
b4:37:4a:9d:d3:ce:97:24:e2:ae:9f:a7:e6:b7:63:
42:8d:4d:5a:4d:66:df:7e:f6:25:be:22:90:88:99:
ad:1c:c5:7e:98:7d:fe:ca:d6:85:21:81:f8:29:b8:
ea:48:5d:e0:7a:20:fc:b2:83:c9:bd:1b:36:77:e6:
49:23:01:3d:22:fa:20:c9:56:a7:14:3e:38:39:6d:
7d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7A:59:24:9C:57:64:A2:35:6D:19:0B:E2:30:12:A2:31:81:E1:6F
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:56:04:49:a1:84:29:75:be:77:fb:76:fd:1b:d3:ba:a7:3c:
6c:94:3b:7f:8c:a8:e7:c5:b2:f0:67:cc:4e:ae:01:a2:e4:05:
61:f3:8d:28:2c:ab:9c:25:02:1b:c6:91:b9:d0:73:40:08:61:
55:ef:5a:53:89:f8:35:41:34:7d:bb:9b:64:5b:8c:fb:c1:ca:
5c:3e:06:33:b5:a5:84:0d:19:1e:64:64:4f:74:eb:d9:2a:9b:
15:97:5b:6d:d2:02:4a:62:e4:06:43:5f:7a:79:ac:44:9f:3c:
9f:19:72:74:9e:90:ae:fd:19:8a:a1:81:3f:ca:f9:8c:79:96:
a6:cd:a0:d2:f4:cb:d4:6c:89:c7:45:09:cf:57:7c:a5:7c:ae:
55:60:52:e3:75:47:44:60:df:f4:15:c8:80:2a:44:90:4e:00:
56:ce:5b:3f:39:32:44:d0:6f:c0:59:6f:3f:5e:c6:aa:cf:ee:
24:7b:2d:bb:5d:9b:32:d0:a6:e4:4f:25:ce:cb:52:09:14:9b:
99:4c:8f:fb:1d:f1:83:92:b0:eb:d5:f8:10:f8:9c:80:a7:0a:
72:d0:19:f5:dd:28:cc:90:28:a4:dd:a0:48:82:bc:58:d4:aa:
2e:19:79:41:6e:76:a0:62:33:89:94:82:08:91:95:82:16:ee:
65:2f:d2:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:07:08 2025 by rpki-client