Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
File: HEwmJz2igh_OJgdaoKbiMB7ISSc.mft (raw, json)
Hash identifier: MlMoxMQj24miCjpr2dR4GGbjBf6URICcLVUQ6CI+yDA=
Subject key identifier: B0:AA:6A:DE:55:8A:A4:59:53:64:64:C5:4F:CA:89:9B:11:F9:6C:C3
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 0196452006CEA87D9B8BDAC58C5EBC10DDBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
Manifest number: 1486
Signing time: Thu 17 Apr 2025 19:00:48 +0000
Manifest this update: Thu 17 Apr 2025 19:00:48 +0000
Manifest next update: Fri 18 Apr 2025 19:00:48 +0000
Files and hashes: 1: 5MK1ewnt7LozxEmddZiWa3omfKc.roa (hash: 7+tCKj1f1iwSFAN/o1/yY8fVwb73KSasEYzwGjDKXO0=)
2: DeHazeP3A9wAumTO_Rmx5RqWaqs.roa (hash: 0hOPuiiQ+UKk5lNFYgiHmEshvjQhpp/6FLqfnT4DM3I=)
3: HEwmJz2igh_OJgdaoKbiMB7ISSc.crl (hash: FARmwFq5HWYnq7S5EbEmTXcNp4UJ+DKk/vGGbcSnb8Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:20:06:ce:a8:7d:9b:8b:da:c5:8c:5e:bc:10:dd:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Apr 17 19:00:48 2025 GMT
Not After : Apr 18 19:00:48 2025 GMT
Subject: CN=b0aa6ade558aa459536464c54fca899b11f96cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4c:81:fe:8a:93:60:ca:40:f8:4b:fb:ec:e3:
a6:1a:9f:5b:48:31:02:44:fb:c8:22:fe:2c:ff:00:
e5:17:72:8c:b2:a4:ed:7a:b0:a1:4f:b2:89:c8:9b:
3d:20:32:35:ce:40:ed:33:08:80:13:68:07:81:e8:
58:63:5c:6a:48:84:d0:91:72:90:00:38:bf:74:0e:
a6:06:8f:7e:c4:0d:73:69:5c:e9:a3:0b:16:7b:2b:
98:d6:a8:cd:56:67:5d:14:2f:d5:59:1d:0b:31:29:
d9:c2:c1:11:56:90:f4:43:4f:cd:c8:5d:1d:b1:73:
10:65:f9:d8:4c:88:31:67:2b:58:65:7c:fe:19:86:
52:ec:81:05:84:02:61:fb:e2:36:88:81:5d:9e:4e:
46:6f:91:e5:12:06:a8:da:be:cd:28:24:8f:0d:d8:
1b:b5:e2:d1:31:7b:0b:20:21:07:74:00:1a:8c:6c:
8f:2a:2c:1b:d0:ff:58:62:71:73:e1:82:0b:50:0c:
c3:3e:e8:ce:f2:10:39:7e:20:ab:55:5f:73:2c:83:
3f:2d:ad:33:89:df:6e:5a:10:87:25:0c:bb:e1:49:
59:f3:66:ae:fe:65:72:1a:ec:a4:c2:b3:2c:99:c0:
64:7f:6f:b4:d0:80:96:c0:18:a3:be:12:75:ca:3e:
9c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AA:6A:DE:55:8A:A4:59:53:64:64:C5:4F:CA:89:9B:11:F9:6C:C3
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:65:94:a3:41:c1:cd:88:fb:13:ee:86:62:45:be:be:fc:b6:
4d:c4:43:8e:c4:e0:b8:89:ab:55:1c:51:c2:ef:b8:e4:2a:52:
29:57:98:4f:2f:8d:4c:d7:39:68:63:5d:b8:fc:1a:a2:06:96:
6b:eb:8e:90:d0:10:ff:bc:5e:35:62:74:64:08:3e:6e:c6:24:
50:75:63:26:3d:4a:8e:08:e9:39:35:43:da:a3:38:c8:74:ac:
25:30:cd:ef:0e:d7:88:da:1c:5f:e2:91:dc:f5:35:d5:55:10:
0d:0c:9a:6a:e4:a8:63:0f:23:0d:51:46:d1:fb:4f:43:08:40:
13:e9:d0:f4:69:48:0b:60:69:bc:ce:45:76:bc:8d:df:0d:94:
12:d6:a9:31:26:31:60:89:18:0d:c6:6f:33:33:58:2b:a5:d2:
d4:8c:d9:03:a9:44:d5:f2:05:33:ae:d4:22:e7:16:60:ac:61:
88:f6:61:02:82:b0:eb:f8:f9:0f:d7:b9:77:8d:dd:12:61:ba:
cd:6a:e0:a9:ca:84:fd:b8:19:a1:31:b2:f1:28:f4:3d:52:e9:
67:e2:5e:a5:bc:39:38:ed:4d:ee:99:ed:9e:19:57:5e:b3:3e:
1b:06:86:b8:4e:cc:6d:d5:20:1f:72:41:fb:0e:58:19:f4:c8:
ff:76:f7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 21:24:15 2025 by rpki-client