Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
File: kHpcTqRTtGyByxNtkrkwmxRsPkU.mft (raw, json)
Hash identifier: vpVKhBsFVK9QV1PNguHAwt3alOYRqctT3yIsnCQKGrc=
Subject key identifier: E2:88:A5:C9:F5:48:5B:D5:17:0D:C0:5C:DC:C4:99:20:DB:53:EC:56
Authority key identifier: 90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
Certificate issuer: /CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Certificate serial: 0196534A61263137CC335B00C7A755A84C17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
Manifest number: 0808
Signing time: Sun 20 Apr 2025 13:01:45 +0000
Manifest this update: Sun 20 Apr 2025 13:01:45 +0000
Manifest next update: Mon 21 Apr 2025 13:01:45 +0000
Files and hashes: 1: kHpcTqRTtGyByxNtkrkwmxRsPkU.crl (hash: sHf+teQIsqNSh3y8xDlJrfjKoj+8tjQZoE1VdwGlMSE=)
2: y00kCOm4x0sTFaBDOqD5L5fES6Y.roa (hash: G4M+BrvsrjKhmQGsYy0izNdpM9hsyiGzIDC7Si8ke98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:4a:61:26:31:37:cc:33:5b:00:c7:a7:55:a8:4c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Validity
Not Before: Apr 20 13:01:45 2025 GMT
Not After : Apr 21 13:01:45 2025 GMT
Subject: CN=e288a5c9f5485bd5170dc05cdcc49920db53ec56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:af:1d:e4:f1:69:f7:80:05:2d:97:11:31:89:
c0:d3:6d:6b:e0:50:8c:fc:f5:7f:29:3d:f4:69:00:
f0:e8:39:30:f3:ab:9f:36:9d:32:8a:31:c8:42:43:
89:a3:3d:78:e0:72:26:b3:15:28:10:e2:6b:57:08:
3d:0b:8c:6c:02:9a:da:43:ba:a4:56:75:91:e3:bc:
a0:5b:8c:21:b5:86:74:59:78:f7:53:72:d8:2e:d6:
29:5c:78:32:1a:ef:f3:66:79:42:f0:b4:9b:d2:dc:
0e:ac:d2:4d:61:f6:b3:1b:6b:b7:a0:0c:ea:c1:50:
87:83:f1:54:29:bb:ac:06:8e:f5:36:7c:f6:e4:3a:
d0:09:64:84:02:47:af:9c:40:28:a1:51:53:7f:bb:
2e:4d:04:61:e8:5a:bc:44:00:03:8e:7d:d3:d3:65:
57:5f:ec:77:14:86:b6:1e:b3:60:df:80:39:ed:56:
4c:c7:2f:a5:b2:f6:c8:8a:c7:7c:29:04:3b:ab:dc:
f2:8c:96:0d:c7:3f:c9:35:3a:24:f4:ec:e0:9f:d8:
40:3c:42:00:b7:5b:6e:68:01:e8:8c:b3:91:cc:d5:
3c:cb:09:cd:1d:58:e5:a2:e7:0e:83:ca:c6:06:42:
9c:68:40:b3:e3:bd:e1:64:10:29:c4:b4:a1:15:69:
6e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:88:A5:C9:F5:48:5B:D5:17:0D:C0:5C:DC:C4:99:20:DB:53:EC:56
X509v3 Authority Key Identifier:
keyid:90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:45:72:9f:0c:94:e2:a9:92:fa:78:8a:dc:05:a4:0b:ab:c4:
ca:2a:79:4b:63:32:73:36:9a:48:ac:48:5b:da:35:1e:9c:3f:
6d:e6:b9:82:e9:cf:a6:53:b8:fe:44:09:df:21:8f:ff:f1:58:
e0:0b:08:67:18:b1:87:66:a0:22:21:60:be:9b:c2:67:54:a6:
40:e2:8e:08:bf:f9:e8:52:97:24:5e:dd:4d:79:17:1b:4b:5e:
8a:9c:1c:16:26:c5:44:93:d6:a0:1a:fc:94:d3:b3:d8:f5:db:
57:bd:a9:23:c2:d8:dd:98:a8:e5:2c:30:c6:e3:38:1f:42:0c:
8e:9d:2e:7c:f5:59:b5:ca:bd:0f:e7:6d:3c:b1:0c:7b:4f:05:
97:52:4a:ef:b2:d2:13:c2:7a:15:5e:ca:83:e8:15:e7:b8:64:
d5:a7:95:a6:d9:d8:ae:65:a8:46:c3:18:d2:d7:1d:07:f7:f1:
d4:53:8a:ed:3a:b5:00:04:b4:49:64:53:c6:18:ba:b7:c9:9e:
85:10:d4:53:c8:d2:26:8b:41:71:7f:02:7e:04:f8:98:48:f3:
5f:7b:5f:58:76:bf:73:8f:48:bc:f7:90:ef:48:e9:b1:f3:c4:
ce:fd:d3:4b:56:05:0a:c1:8b:22:b0:91:15:f0:11:fa:b0:f2:
98:a6:44:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:16:07 2025 by rpki-client