Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json)
Hash identifier: MhsnDpyKnU3rN0DHmWj1DIhG3uY3RgHC1G2QgA/6mZM=
Subject key identifier: 53:8D:05:94:E8:C4:FC:60:12:2B:6A:DF:01:B1:80:EE:63:BA:13:19
Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb
Certificate serial: 01974FD7CB286A301D980CEE576E1C7072FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
Manifest number: 13A1
Signing time: Sun 08 Jun 2025 14:00:31 +0000
Manifest this update: Sun 08 Jun 2025 14:00:31 +0000
Manifest next update: Mon 09 Jun 2025 14:00:31 +0000
Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: 9kKOTHbyQGpMspYGW2XwqFe5+5mXGC4qVvQ0ceNlEXU=)
2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 14:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:cb:28:6a:30:1d:98:0c:ee:57:6e:1c:70:72:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb
Validity
Not Before: Jun 8 14:00:31 2025 GMT
Not After : Jun 9 14:00:31 2025 GMT
Subject: CN=538d0594e8c4fc60122b6adf01b180ee63ba1319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:35:1d:2c:9c:b3:c8:0a:85:ca:83:2e:b3:1c:
37:99:4d:92:be:1c:b7:50:3e:b7:43:5a:43:fb:e1:
eb:49:a3:1d:01:b2:8f:87:53:06:c7:e1:d7:aa:3e:
3f:f5:c4:2a:a8:18:5d:c2:01:ad:d0:3d:19:b9:97:
48:67:a0:9c:ed:ad:ed:e4:51:22:55:5d:ac:ef:c8:
fe:b7:a7:ab:b9:28:a8:d1:67:25:a2:7a:88:e4:90:
97:6f:6b:07:3e:52:46:51:3d:ec:ee:24:c1:a2:3b:
a3:62:81:ae:33:91:c2:4f:31:ef:62:ef:b7:2d:c7:
68:98:87:ba:4d:15:a0:9f:b2:ce:42:f8:e9:64:ba:
df:c9:3c:69:d3:67:50:db:40:b3:0f:fb:f2:34:c6:
ec:24:d6:3e:d6:b8:79:91:c3:6b:65:c0:4f:ef:02:
0e:a7:7b:11:8e:55:98:0a:27:19:85:1f:be:a4:85:
ae:2e:3a:bb:05:04:51:62:1f:a8:9d:6d:0f:fb:32:
be:f3:4a:49:a9:11:10:4e:e4:c6:05:6e:b5:16:57:
06:a0:a8:28:3f:18:a3:83:ef:3c:32:c9:6c:73:bd:
9c:41:c1:b1:b2:ac:81:56:4d:39:32:cc:ab:63:ca:
fe:5a:42:c1:fd:0b:37:a3:9e:71:36:20:ad:34:5a:
d3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8D:05:94:E8:C4:FC:60:12:2B:6A:DF:01:B1:80:EE:63:BA:13:19
X509v3 Authority Key Identifier:
keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f9:5b:30:d4:17:fc:8c:bd:6c:f4:ad:2c:75:2f:6e:84:57:
23:65:eb:33:1c:15:51:5a:c0:33:ce:4c:b6:9a:9d:e5:b4:9e:
47:0f:77:01:fe:24:cc:96:11:1a:c1:57:76:25:2f:d1:c5:63:
62:63:91:2d:fb:29:3d:35:51:56:9c:c1:f8:d4:f9:e8:1c:60:
1d:ff:1a:9e:8f:f4:0e:13:96:e7:77:36:60:0d:c3:e1:a9:c6:
fb:a4:b8:42:b9:2e:cc:bd:9d:ce:31:4c:c8:22:5e:83:75:cf:
18:05:c6:fa:dc:be:75:3f:79:0d:ee:21:a8:8f:b7:5c:7f:ba:
7d:8d:77:6d:06:38:06:47:fe:63:75:52:51:45:3f:15:c2:0b:
fe:32:a2:0a:2a:9a:5f:20:f6:51:e9:e1:2e:00:73:de:0e:27:
30:03:19:23:39:eb:14:ea:b2:55:d4:6c:c1:51:3e:7c:f4:9b:
3d:4c:12:1c:83:98:9a:80:5b:91:52:a1:0d:f5:78:ff:54:25:
c4:18:6e:97:78:fd:df:cc:36:1b:7d:d0:99:0f:45:72:96:8a:
1b:93:9c:07:50:d7:a2:67:7b:2c:d9:19:f0:d4:43:e6:c8:bf:
3d:03:1e:61:37:58:9a:93:c8:9f:a6:7f:e2:62:81:05:47:28:
6d:1d:84:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:15:32 2025 by rpki-client