Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json)
Hash identifier: FjIW/vyfjlcRo0cQ7UDxqKyk8Q5btkxzqDpCGVK4ICk=
Subject key identifier: 58:4B:28:AD:E0:5D:28:7A:14:82:F8:E8:49:A4:E4:11:6D:E2:60:38
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 01974BFB0EDC2B8A7AEB652FAA2244C4E26A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
Manifest number: 1581
Signing time: Sat 07 Jun 2025 20:00:33 +0000
Manifest this update: Sat 07 Jun 2025 20:00:33 +0000
Manifest next update: Sun 08 Jun 2025 20:00:33 +0000
Files and hashes: 1: 0EXTA2fh52m_pdzndlQONOR-ALo.roa (hash: 6rMWco6WBnZhVNOyIqX9uMPGJDuagIsvvOicEopd/aI=)
2: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: cWdnkLeIG2FpKXMWOrCt+TTnrC4y938Ni92FGuF3rhI=)
3: pdSwS3q_Aq9iIM8JVjDKkb9Kesw.roa (hash: Ci1NRJKdqWSbaDsRVp57BbXUB2naGLYnO5kSwluYKxo=)
4: ztoXV0czkggEzKpWeBIPpNx7Y00.roa (hash: MW72dY631rN8xBMa8x273b/yH8cBTnl1fp+7hzq29aE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:0e:dc:2b:8a:7a:eb:65:2f:aa:22:44:c4:e2:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Jun 7 20:00:33 2025 GMT
Not After : Jun 8 20:00:33 2025 GMT
Subject: CN=584b28ade05d287a1482f8e849a4e4116de26038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c0:46:96:34:b5:f5:05:ab:7f:ad:8f:fb:82:
8b:df:25:08:a4:b5:fe:e1:ce:d4:ab:ab:6c:36:eb:
8d:eb:a5:e1:c3:61:1e:fb:f4:88:67:61:f1:2d:93:
ae:4a:ad:9d:96:71:a6:0e:31:c5:12:88:3a:62:20:
f8:0d:b4:0a:4d:0b:89:14:1a:97:3e:6a:84:1b:b4:
bd:b5:a1:d3:cf:7e:a3:4a:ab:c4:1b:1b:35:9f:1b:
36:db:81:81:02:06:42:3f:53:33:fa:30:e6:ec:1f:
e3:41:3d:7a:e7:6b:90:ac:9f:93:d3:07:e7:d7:bb:
cf:3d:96:0d:39:48:bf:9b:c5:6d:92:ea:1d:72:4a:
39:6b:17:9a:db:2c:5e:41:76:28:cd:c5:a1:7d:c5:
3d:55:77:d9:16:f3:ff:1f:bf:7d:38:98:12:f3:fd:
3e:50:27:83:0f:65:f4:f4:b8:5c:3a:3b:23:6a:9c:
c9:5f:0b:5b:bc:05:8c:3d:90:e6:2c:d0:ea:d5:ef:
d2:c6:12:21:c4:35:b8:73:c8:0c:dd:11:32:f8:09:
63:8a:4c:70:38:a3:23:7d:b7:5a:fc:4e:c1:15:87:
a9:1e:44:01:d2:33:2a:68:22:cf:51:6c:00:c0:c9:
0f:f0:37:f5:8a:84:c5:f6:61:04:1c:cc:9d:22:6a:
26:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4B:28:AD:E0:5D:28:7A:14:82:F8:E8:49:A4:E4:11:6D:E2:60:38
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:cf:7b:a9:25:26:ac:c8:10:a1:cd:c8:36:55:dc:46:1e:18:
c7:4b:63:e4:b1:e6:08:2e:01:73:57:64:3e:d9:14:5e:41:bd:
ba:f1:c4:b7:b5:3e:eb:66:6a:3d:55:c1:6f:41:08:89:c8:57:
fc:31:78:9a:e8:7f:bd:f6:89:28:67:11:c9:6a:eb:8d:55:f8:
6c:04:9d:38:df:43:78:d9:bc:65:c7:00:ac:58:b6:e9:22:29:
1d:42:0f:55:e9:0a:be:6d:60:ad:95:68:b6:2d:57:f8:53:08:
45:5d:68:0c:6d:fb:01:66:bf:a1:87:10:91:61:43:3c:d6:88:
97:1c:26:79:5b:7a:5f:bb:17:52:5e:ce:d8:f8:49:8d:de:e6:
8b:ec:13:99:0d:f4:cb:7e:8a:e4:9f:03:30:31:a5:14:f9:45:
ea:01:28:2a:de:8b:30:14:68:1c:08:15:54:9b:23:f5:b3:2d:
8b:f6:cb:b4:12:f7:39:e5:2d:23:57:27:6b:32:72:74:6c:3c:
35:15:04:51:5a:9d:a4:07:0d:72:73:43:24:70:d8:02:e5:68:
8d:ab:36:54:95:f5:b5:2a:8d:c3:9d:68:7a:d9:5d:98:cf:04:
76:20:a7:47:ff:22:18:eb:13:d2:c8:99:cd:ec:a1:0b:e1:42:
17:f3:32:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:11:41 2025 by rpki-client