Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: 7ko8qSI+9FpMM7JZjtEI+2hUemyxAhpEGjefl8SMfa4=
Subject key identifier: 83:42:7E:A0:63:E0:0E:FA:D8:02:30:B7:7A:63:2E:F3:1B:E1:8A:0F
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 0196579431F00F96F33764987F2C48ED4BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 09:00:51 +0000
Manifest this update: Mon 21 Apr 2025 09:00:51 +0000
Manifest next update: Tue 22 Apr 2025 09:00:51 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: GFIPUYN4XBv6CJamwBggEds+1FZ7DM4ihTXDvAlw8Rk=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 09:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:94:31:f0:0f:96:f3:37:64:98:7f:2c:48:ed:4b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Apr 21 09:00:51 2025 GMT
Not After : Apr 22 09:00:51 2025 GMT
Subject: CN=83427ea063e00efad80230b77a632ef31be18a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d4:87:ec:4e:8d:94:68:0b:fd:9c:2c:85:0e:
28:2b:6b:3d:83:37:8f:70:09:be:44:85:71:74:72:
23:25:d2:de:df:23:1c:16:54:0d:b8:66:5e:ca:8b:
9f:db:5f:59:8b:62:ce:43:0a:4c:8c:74:6b:94:e7:
64:ff:94:bf:f9:0e:e0:66:4f:f3:e2:23:ef:2f:d0:
e0:8a:09:f1:f6:a0:e2:95:0b:5a:7a:8a:35:08:d2:
45:89:49:82:93:74:cd:52:f4:e8:22:8d:78:3d:d9:
50:c3:25:54:0d:c4:f1:52:b9:4d:a5:f1:72:24:a1:
78:7e:9e:ff:50:b6:f0:f0:c4:32:ac:c8:83:73:5a:
da:97:61:bc:98:3f:66:12:46:ff:8d:ca:35:0e:58:
a4:9d:02:73:97:cb:5c:e3:74:8d:ee:cd:3e:ae:f8:
89:ac:f3:c7:68:ae:06:0b:32:67:90:43:17:fb:72:
d4:bf:14:8c:8f:70:17:a9:ae:de:2c:17:13:dc:6e:
d8:de:af:6f:b6:f0:4c:60:ea:26:cb:41:00:9d:28:
7e:59:6c:0e:b8:e0:f9:4c:1e:e5:f1:c2:35:f5:cf:
29:72:93:9f:fa:dc:c5:90:6a:a5:f5:17:20:fa:8a:
b3:c0:a1:a4:a4:1a:94:79:81:4b:cf:4e:41:ba:a3:
9b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:42:7E:A0:63:E0:0E:FA:D8:02:30:B7:7A:63:2E:F3:1B:E1:8A:0F
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:89:d6:fb:06:a6:b9:cf:93:9b:ec:d7:d0:13:f2:7d:cd:5c:
ff:4b:86:d7:f1:98:c2:ee:95:ae:ba:6c:2f:14:73:a0:e8:3f:
3e:f5:ba:30:b8:da:97:d4:8c:07:37:c7:56:85:9f:13:cf:6c:
65:51:7a:c7:4d:c5:56:44:d0:b0:2f:a3:5c:dd:4b:a3:d3:11:
03:3a:55:8b:17:fe:4b:4b:d9:02:a6:8a:bd:8b:20:97:60:f1:
38:c8:05:7d:c1:b9:c6:d1:ea:0b:f7:fc:fc:a3:05:e8:a9:47:
84:ac:74:06:8b:de:b8:9e:e1:c7:e0:54:d7:83:0a:d4:0a:95:
fc:45:39:fb:83:39:78:13:6d:f4:45:1a:0d:4e:1c:65:a3:0c:
fa:1e:95:84:a2:11:d3:c5:c2:28:82:50:a3:c9:6d:b2:6e:c3:
9b:d6:09:c8:ee:be:57:d0:ab:e6:3e:39:89:c3:d8:1f:8a:91:
fd:fd:84:a4:cc:9b:1e:2d:fb:57:09:03:92:ab:b0:53:d8:0f:
2d:4c:8d:b9:6d:07:e4:bf:c7:8a:54:41:18:56:2e:49:25:7e:
1f:44:67:4b:b8:d2:65:fb:b2:34:a9:8b:34:46:02:e9:1a:08:
f5:de:24:d1:64:92:a2:b2:dd:7e:e4:32:69:fc:62:50:58:49:
2a:13:34:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:40:41 2025 by rpki-client