Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: wy+Y3DrbLau3GnUY5uHX1KZ4+SBEMJhyHSiv5t8MU7I=
Subject key identifier: 87:67:CD:24:A6:66:0A:2B:E8:C8:3C:C8:F3:B4:A0:CB:A8:E3:88:DE
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 0196556E4BA6F78FCF0B14AD7F71FBFAC5B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 148F
Signing time: Sun 20 Apr 2025 23:00:13 +0000
Manifest this update: Sun 20 Apr 2025 23:00:13 +0000
Manifest next update: Mon 21 Apr 2025 23:00:13 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: rKIj1pKJiNV3v5YQAEfJ51UvqBHKjTXJdZs6vgTjvPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:4b:a6:f7:8f:cf:0b:14:ad:7f:71:fb:fa:c5:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: Apr 20 23:00:13 2025 GMT
Not After : Apr 21 23:00:13 2025 GMT
Subject: CN=8767cd24a6660a2be8c83cc8f3b4a0cba8e388de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f4:c7:9e:50:e8:8f:62:d4:ec:a4:f4:96:b3:
26:64:e1:b3:0a:e9:8c:e4:b3:93:cb:ef:46:61:8e:
f0:83:a9:17:82:11:bb:cc:e6:61:38:fa:f6:4c:c6:
62:06:ba:63:76:86:b4:23:4e:3a:af:99:14:b3:fa:
58:6b:5c:c1:f6:58:86:12:50:59:e8:45:f4:03:03:
e7:34:3d:6f:94:0a:c8:52:af:3f:ab:fb:54:04:a5:
8e:b3:88:72:98:7f:b2:5a:8f:72:22:9c:ba:db:8e:
83:f9:58:a1:57:0e:64:27:be:1f:78:39:c0:a8:e0:
e8:81:d1:90:90:e6:21:c9:52:19:5c:e6:7a:95:c8:
a4:49:12:3a:2a:30:b1:19:c6:8e:a7:94:73:28:d3:
9a:3b:5c:34:4e:88:3c:91:d4:c3:99:90:74:ab:80:
f0:46:79:d9:c4:ab:cf:9a:eb:bd:0c:7b:82:53:22:
76:66:f4:3b:4a:23:ce:94:96:fd:38:db:49:2c:8a:
ea:4b:fd:b2:d6:4c:66:7a:98:96:5d:ea:4b:c1:35:
08:d3:36:c7:e2:4d:74:f3:39:5b:0f:89:18:07:f4:
88:96:94:82:1a:ef:de:2b:0a:eb:d0:a5:08:a5:dd:
ec:76:3a:89:f3:c2:c3:59:3e:36:ab:f5:25:0d:af:
9c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:67:CD:24:A6:66:0A:2B:E8:C8:3C:C8:F3:B4:A0:CB:A8:E3:88:DE
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:11:1d:85:c1:0b:3e:7b:b8:d4:a5:8e:31:63:b9:60:f1:84:
a8:8a:06:85:d6:55:09:2c:ed:fb:3c:27:cb:0a:f8:24:90:d5:
40:47:4c:13:94:f9:1b:83:8a:76:98:76:d2:ef:fe:98:43:ab:
bc:17:61:da:13:f6:63:74:01:13:91:ac:7e:33:64:cc:74:1f:
d7:9d:79:12:26:d5:d6:91:4f:93:7c:c0:58:b9:30:77:f8:fb:
80:5a:6c:ea:13:7f:c4:78:fb:58:7c:8f:11:0c:9c:7a:f0:35:
f4:05:4d:23:af:12:75:bc:f1:3a:6e:d5:11:44:32:25:45:5b:
32:e1:b2:55:3d:54:88:a6:4e:db:cb:71:84:53:8e:9f:1d:6c:
53:f3:0f:d7:36:20:0f:77:f1:4a:ac:26:f3:4f:05:8c:44:bb:
7b:b5:0b:0f:69:7d:18:6a:73:79:1f:01:06:82:f8:db:61:f6:
4d:70:c1:98:b6:be:1d:87:95:d7:ee:67:9f:b6:82:b4:96:b5:
1a:59:f0:5c:4b:c7:88:71:20:df:37:f7:d4:65:fd:d7:fb:90:
21:38:85:35:f8:13:63:6b:dc:1a:2c:06:72:7f:2f:ed:2d:20:
a1:43:64:5f:3e:6d:15:7a:11:90:3f:2b:0b:9b:7d:77:92:d1:
e7:db:5b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:25:51 2025 by rpki-client