Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
File: h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft (raw, json)
Hash identifier: Jeaf55t6YXJq9U2vg7apE5fnDElxoFOt4SwrD9zTsIE=
Subject key identifier: 9B:CC:38:AC:6B:10:17:8B:AF:A5:C8:CA:0C:D2:23:9C:B0:56:88:54
Authority key identifier: 87:75:E6:40:8B:8E:05:AA:91:4B:87:46:35:A4:7B:7B:82:0C:6C:32
Certificate issuer: /CN=8775e6408b8e05aa914b874635a47b7b820c6c32
Certificate serial: 01965492CDB64627EEEC5A7741F83B91FBBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3XmQIuOBaqRS4dGNaR7e4IMbDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
Manifest number: D9
Signing time: Sun 20 Apr 2025 19:00:28 +0000
Manifest this update: Sun 20 Apr 2025 19:00:28 +0000
Manifest next update: Mon 21 Apr 2025 19:00:28 +0000
Files and hashes: 1: JY1Ry82sD4kNWhz4gQuDnSIFpN8.roa (hash: 8elrrlaE2J0H4bGnc8sBg7PwEFKBgdvohUzIrvCFh2E=)
2: h3XmQIuOBaqRS4dGNaR7e4IMbDI.crl (hash: ZExJj8GRddPXHD4brDydjrhwoo60+8mZYTt+hICUdOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3XmQIuOBaqRS4dGNaR7e4IMbDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:cd:b6:46:27:ee:ec:5a:77:41:f8:3b:91:fb:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8775e6408b8e05aa914b874635a47b7b820c6c32
Validity
Not Before: Apr 20 19:00:28 2025 GMT
Not After : Apr 21 19:00:28 2025 GMT
Subject: CN=9bcc38ac6b10178bafa5c8ca0cd2239cb0568854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bf:30:4c:40:ca:c7:70:09:b7:a8:44:c4:15:
61:43:dd:c3:d3:ad:6f:36:f2:33:6c:59:17:81:4e:
72:7c:b0:9d:c2:13:e2:16:eb:75:10:79:71:0c:dd:
dd:bf:99:85:b2:7a:76:03:60:e9:b6:06:7e:fe:4f:
f7:c6:af:41:50:50:82:9c:8f:b1:32:65:f4:f8:88:
fb:9a:a9:72:0b:41:ed:52:19:83:2b:f5:5d:11:0d:
8c:21:86:21:c9:84:60:2f:bd:fd:90:c3:ed:a0:1c:
60:a9:d4:91:e2:f4:0d:fe:26:60:92:75:98:1c:69:
1b:08:2f:d0:5c:fa:36:c5:f8:57:82:e7:76:d3:17:
9b:02:fb:c1:03:b1:d4:49:2e:b2:b1:85:e3:61:6f:
4a:ee:2e:3d:f9:82:b1:dc:d3:32:16:ee:b6:61:48:
c1:e7:eb:02:f5:68:86:f9:93:b5:9c:3a:7e:fd:49:
f6:50:b9:8c:8e:9f:be:2f:ac:45:db:c1:dc:73:08:
86:e6:69:0d:6f:74:08:ac:06:f9:7d:b6:ca:97:c8:
44:ee:4e:4a:70:9b:b1:d0:4f:60:3b:d7:99:2f:9d:
53:1b:8c:ae:98:62:fd:06:1f:52:28:d9:8e:c3:a8:
b8:a7:b8:f1:8a:ac:95:ae:0f:cf:01:e7:c0:bb:9b:
0b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CC:38:AC:6B:10:17:8B:AF:A5:C8:CA:0C:D2:23:9C:B0:56:88:54
X509v3 Authority Key Identifier:
keyid:87:75:E6:40:8B:8E:05:AA:91:4B:87:46:35:A4:7B:7B:82:0C:6C:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3XmQIuOBaqRS4dGNaR7e4IMbDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/36e065-a1f6-4e14-b2d7-61e54cfc2abc/1/h3XmQIuOBaqRS4dGNaR7e4IMbDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:ef:79:04:82:ff:a4:5f:bf:97:e8:5a:ef:16:c5:79:5f:a7:
9c:ad:61:e9:ae:18:af:04:f0:10:d6:85:24:ac:8d:6d:aa:ad:
67:eb:4e:a3:1f:e3:cd:a5:7f:5f:eb:ce:b5:de:fb:dd:61:33:
38:b0:a5:b9:8b:3c:73:31:37:3a:09:e2:a8:47:a9:58:a9:6e:
87:83:99:f5:9b:74:64:37:74:6f:fb:e8:e3:c9:88:cd:b7:d8:
d9:37:c2:9f:05:c0:fd:1d:ce:d0:f6:84:ef:7a:cc:eb:b9:30:
09:33:cd:17:dc:30:20:3d:c4:45:18:c3:8f:5b:37:9a:f7:fd:
45:97:b4:76:ef:32:aa:1d:3e:fc:09:60:4f:92:ad:d2:81:85:
84:cf:88:b9:3c:4b:41:6b:05:44:d5:b1:6d:28:dd:5b:66:7f:
b9:b9:9f:1c:7e:57:bf:60:ce:ca:eb:08:4e:71:75:c1:9d:db:
d1:91:1e:5b:4b:dc:92:8b:54:c9:c3:14:6a:d9:1d:ee:23:13:
6b:52:8d:b9:d7:f9:7d:f7:1e:b2:63:bd:83:27:71:f1:61:91:
e9:6f:9d:d3:71:e4:7f:47:89:94:e2:47:12:bf:30:ad:23:01:
b3:43:64:4d:20:bc:12:1e:72:9b:43:a3:1f:bb:d1:96:9a:74:
3a:34:23:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:27:56 2025 by rpki-client