Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json)
Hash identifier: +N5sbQVeoQnmh8ZjHymvGGJopRNRQxeMHWLdM65B39A=
Subject key identifier: 51:F1:19:70:35:16:6E:A8:FD:01:78:76:2E:E9:92:AC:63:17:56:49
Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Certificate serial: 0197499F3BF2B680F574D13E2DC22013B337
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 09:01:01 +0000
Manifest this update: Sat 07 Jun 2025 09:01:01 +0000
Manifest next update: Sun 08 Jun 2025 09:01:01 +0000
Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: rWp66rvGTTJY7wurQADRX9fpSuf6QO08H+kcTniHUAk=)
2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:3b:f2:b6:80:f5:74:d1:3e:2d:c2:20:13:b3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8
Validity
Not Before: Jun 7 09:01:01 2025 GMT
Not After : Jun 8 09:01:01 2025 GMT
Subject: CN=51f1197035166ea8fd0178762ee992ac63175649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:70:9b:03:00:8e:34:37:21:18:92:58:82:54:
6a:b7:8a:d1:b5:bc:a7:2f:d0:c5:6e:91:31:03:57:
73:07:0c:43:03:d4:2b:9c:db:a5:d1:c3:bc:c2:33:
74:fd:64:f9:46:ab:f4:1e:9c:d7:8a:5f:34:ad:62:
eb:3f:4b:34:5b:28:da:7a:f1:4d:ac:10:fe:27:ff:
9f:3b:6f:d0:f3:f1:10:c0:25:fd:3a:14:a8:52:da:
1a:7d:27:5d:8e:e3:45:b1:72:3e:e2:69:0c:b5:f4:
ad:b7:e6:cb:37:2b:34:75:77:98:b5:2e:39:60:48:
8b:58:8e:b6:55:51:9f:66:2d:12:87:7c:78:3c:1e:
16:f7:22:57:23:8c:4e:3a:6c:43:66:c2:8a:bb:ee:
d9:50:5e:10:29:30:a8:db:51:d0:83:13:47:00:7e:
af:c8:e1:92:70:20:16:b1:a1:b0:65:38:86:d6:a5:
ac:d2:28:f3:e3:35:8e:02:2b:4e:3e:7d:48:3e:92:
0a:08:25:96:f8:29:2b:e2:b4:f8:1f:56:d0:98:f5:
69:bd:57:c4:f2:12:8f:d9:2e:62:c0:8b:3a:df:5c:
25:ab:09:a1:f3:63:df:60:f6:08:55:08:a6:93:32:
29:60:33:85:40:87:e4:de:13:36:2a:6a:ef:d8:53:
83:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F1:19:70:35:16:6E:A8:FD:01:78:76:2E:E9:92:AC:63:17:56:49
X509v3 Authority Key Identifier:
keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:55:61:57:ce:17:c4:ed:c6:70:80:48:58:0a:60:1c:4b:f3:
23:1a:0b:7f:97:6e:e5:3f:79:95:f3:87:3b:a4:ac:ca:1c:06:
46:06:27:9a:66:e2:ca:29:a8:b4:71:bc:f9:76:23:e5:69:8a:
98:c4:97:a9:59:3c:00:bd:1a:cc:44:34:6b:21:d6:63:b1:0f:
34:53:ca:19:f7:6c:15:2e:cd:54:06:28:27:29:19:b7:47:63:
73:06:d7:e2:fe:f6:67:85:44:56:ce:04:75:ae:63:69:ee:a9:
25:6a:d0:4c:d3:c1:8b:46:76:1d:ce:30:de:9a:b3:56:dc:9b:
65:91:fd:27:74:0c:6a:69:8b:91:43:5e:5f:2f:e7:5c:59:f0:
41:91:df:02:c6:72:ba:65:8c:bf:e0:b7:f0:67:36:e2:9c:cc:
8d:ee:f9:05:13:fc:c8:61:89:e7:92:b2:1c:5e:d2:0c:e3:66:
ff:73:be:77:fd:58:e7:6f:c3:aa:69:ed:12:0b:fc:75:ff:3e:
b9:b9:03:39:75:5f:0f:b3:f1:d2:cf:6e:38:c2:39:79:a8:29:
af:cf:05:d5:c7:79:40:83:81:fb:bb:c0:26:37:35:48:72:00:
b9:0e:90:85:0d:65:69:85:f4:38:63:d6:fd:80:34:bc:89:1f:
7c:96:d0:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:47:32 2025 by rpki-client