Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
File: h1bSd2jhHZSgu837P7zXQNRaAPQ.mft (raw, json)
Hash identifier: pq+A3XvZfLBKrGJKD1eOlFrFOc8lorMyae5FsNStvig=
Subject key identifier: 8D:2C:AB:77:81:01:C0:EF:B4:36:F3:23:B7:B3:92:7A:15:F7:70:69
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 0196022E34EDB3366F74A3B78A5A51DA6294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
Manifest number: 0FB5
Signing time: Fri 04 Apr 2025 19:01:44 +0000
Manifest this update: Fri 04 Apr 2025 19:01:44 +0000
Manifest next update: Sat 05 Apr 2025 19:01:44 +0000
Files and hashes: 1: b2XsYiMu1xHQndcNQ0ucXkzeN7E.roa (hash: uYxfaCmhcw362gqaEMF6PdCZbjIYOfXpyFCpshaBqpM=)
2: h1bSd2jhHZSgu837P7zXQNRaAPQ.crl (hash: 7Aen65wWY22Cub1w7B7CFjz760YH6+/98uLSEmbI+FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:02:2e:34:ed:b3:36:6f:74:a3:b7:8a:5a:51:da:62:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: Apr 4 19:01:44 2025 GMT
Not After : Apr 5 19:01:44 2025 GMT
Subject: CN=8d2cab778101c0efb436f323b7b3927a15f77069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8b:66:a8:44:7c:16:8e:a0:bf:4f:d2:74:4a:
56:96:f0:a2:be:bf:a9:7f:ec:c0:63:72:e9:19:13:
95:e7:69:d2:59:c9:a3:0f:dc:72:5b:0c:70:e6:b3:
20:e9:8d:eb:42:65:dc:bd:03:e0:48:f8:fe:d3:2c:
21:c1:37:ea:de:e3:e1:4d:65:f3:82:b8:e5:4f:e4:
41:f4:d9:9a:6e:fd:53:ed:d5:6a:cd:d0:fd:1e:6e:
95:fb:43:bc:b3:28:2b:98:12:8b:88:d4:0a:5d:bd:
5a:4a:9f:7d:b9:ba:04:a1:6e:9b:bb:71:2d:06:27:
79:d6:84:48:16:50:70:a2:cd:c6:3e:e8:6a:70:77:
e5:c6:ab:63:d9:40:19:12:ea:47:b5:76:ec:3d:94:
ab:80:17:f9:d2:de:c5:38:5f:ee:9c:10:bf:93:b6:
de:39:05:3e:34:cb:55:17:1d:35:30:e4:33:3f:7d:
1f:f5:9e:e8:63:23:e8:9c:dc:f4:84:96:4a:ba:09:
01:a6:02:7b:0a:1a:6c:2d:21:d5:f2:03:74:de:bf:
dc:3f:f7:2a:be:de:ec:7d:1c:2c:65:90:6d:4a:39:
15:ef:8d:07:55:05:36:d5:a6:d1:74:7c:72:c1:0c:
e3:c9:78:53:39:a9:1e:94:47:04:8d:cd:34:a4:53:
3c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:2C:AB:77:81:01:C0:EF:B4:36:F3:23:B7:B3:92:7A:15:F7:70:69
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:73:08:b3:e2:46:76:8e:06:79:8a:b4:bc:87:60:c2:41:28:
ea:b3:f5:69:55:1a:1a:45:8e:86:0e:f9:f7:aa:eb:6c:6d:18:
23:2f:e1:79:13:ea:d7:94:c9:d2:ec:06:0a:55:86:41:5a:42:
eb:b2:f9:a0:be:78:0c:25:2e:a7:ec:db:39:15:96:2d:a4:90:
fd:bb:f2:41:c4:e2:ff:3a:26:30:eb:f6:fa:6c:13:c6:90:9f:
ac:0d:2d:91:88:c8:30:71:97:a8:96:bd:4e:06:38:b0:a4:cc:
b9:f6:06:c8:dc:bd:90:f1:8b:28:cf:77:58:9a:6a:25:3e:77:
b1:f6:0b:8b:7e:83:33:eb:ad:a1:b4:ef:0c:03:ea:ce:b2:84:
35:4a:23:72:aa:76:1f:59:6d:58:ed:88:a9:f9:fa:0a:d5:d1:
43:38:c3:ea:3e:80:7c:94:63:a2:c8:e6:97:08:b0:d3:0c:f0:
21:28:b3:d8:65:87:d9:5e:4c:04:be:89:04:39:5a:26:e1:1c:
8a:1d:34:cf:22:3f:fe:86:79:f4:2b:e9:84:31:87:97:cd:b2:
c3:3a:7f:28:49:2d:25:31:3a:66:51:0d:30:d8:5a:83:64:77:
b5:bc:0d:da:b9:4b:de:5a:a7:36:67:7a:79:11:d3:98:5b:3d:
07:71:c4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:09:36 2025 by rpki-client