Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json)
Hash identifier: dv7XIptZhPAmvW3jwr2wITHAW+wzn6k8Pmbq/guvIHY=
Subject key identifier: 40:BB:E6:F1:4E:F4:2C:E3:2D:F4:33:C9:8F:6E:B2:FA:B0:EE:7E:AD
Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Certificate serial: 019656816BB3B5E36D39C3A46602A1E44801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
Manifest number: 09B3
Signing time: Mon 21 Apr 2025 04:00:44 +0000
Manifest this update: Mon 21 Apr 2025 04:00:44 +0000
Manifest next update: Tue 22 Apr 2025 04:00:44 +0000
Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: J/hp24pgA3qy8LaDFWeLlwU3aeQYIYEzd61jFh9fycI=)
2: uzOfDn3na_0H4FMYAvULbyI0B6c.roa (hash: uAuwh9KcLGGG4HeIvB3vA//BXxot+F12ayTtv/6riqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:81:6b:b3:b5:e3:6d:39:c3:a4:66:02:a1:e4:48:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Validity
Not Before: Apr 21 04:00:44 2025 GMT
Not After : Apr 22 04:00:44 2025 GMT
Subject: CN=40bbe6f14ef42ce32df433c98f6eb2fab0ee7ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4c:8e:46:f0:d4:18:78:ec:0a:11:b8:1c:e3:
c0:47:a0:88:25:db:c7:e8:fe:da:8b:b6:5e:58:62:
03:70:30:35:1b:8a:0c:f7:35:92:52:76:17:e7:38:
cb:a0:0e:72:f8:a1:f8:a7:3f:c1:6b:a3:bc:b9:8d:
c4:ed:80:99:a5:23:10:4f:f6:4d:d1:63:a6:68:52:
8b:e4:26:0b:8f:80:02:28:ed:c7:f1:96:e3:07:60:
53:33:4e:8e:8f:77:00:21:47:b1:17:74:f3:a1:34:
90:49:0b:8b:d0:e2:f8:f0:88:3b:10:32:5a:e0:d0:
54:eb:76:88:a8:a2:29:65:08:b9:fc:57:de:ab:1f:
7d:4b:e8:9d:eb:48:66:79:4f:25:f1:07:43:d2:22:
4a:d1:46:d6:4b:f6:09:90:f0:2a:f3:d6:36:61:55:
64:41:1e:10:c3:02:a5:e5:85:9e:dd:dc:f2:67:27:
7a:9c:1f:bf:ab:6b:ce:32:7b:ea:d7:ca:d0:b0:1c:
19:65:fa:61:5c:53:bf:c3:f8:bf:ac:7b:b3:7a:cf:
b2:c1:32:00:98:79:dc:23:b0:4f:c8:53:72:bd:aa:
bd:7d:d2:e2:a0:cc:4a:bc:74:a1:f5:02:30:df:be:
a6:9e:a5:64:22:15:cd:20:c7:fb:d1:ac:57:62:98:
6c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BB:E6:F1:4E:F4:2C:E3:2D:F4:33:C9:8F:6E:B2:FA:B0:EE:7E:AD
X509v3 Authority Key Identifier:
keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ea:2c:ee:50:f4:44:f7:b2:2e:ec:4a:99:7b:bb:83:43:a4:
32:8a:f8:6f:44:78:71:23:8c:ef:06:4b:24:08:08:a0:a5:17:
58:24:e2:2a:34:68:25:1e:d2:ef:4d:a5:c3:dd:84:61:00:57:
33:0b:3d:df:c3:9d:56:01:7d:49:33:5f:ad:79:bd:f9:df:9a:
53:e6:6b:e7:47:ad:10:19:52:92:8a:1b:e7:2a:63:7c:41:46:
8e:a5:43:8c:d4:fd:e4:94:7b:f7:d9:53:e7:b1:3e:8f:28:b1:
a7:b7:1b:46:72:32:80:3a:e4:26:c8:1a:8f:db:bf:36:6c:b6:
3c:77:f1:fc:58:e8:c9:1d:25:de:43:3d:5e:88:f7:6b:e9:97:
84:a1:3f:db:e5:0e:37:cf:ef:11:9d:fd:48:56:ef:67:55:3e:
1e:63:46:17:6a:de:71:d5:55:3a:d5:a4:a8:fb:f9:9b:98:a4:
6c:c9:c3:0c:76:14:45:15:92:2c:c3:fe:10:a4:92:16:4f:b4:
5f:5e:52:df:9b:61:47:1d:dd:11:bf:00:21:10:db:bb:ef:69:
82:a6:6a:ff:a9:8a:54:90:6a:8b:72:02:48:9e:4f:e1:66:b3:
33:bc:b3:91:ae:4c:1e:16:c7:78:fd:cc:16:4b:d6:b8:21:05:
7f:e0:8c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 11:19:34 2025 by rpki-client