Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json)
Hash identifier: aL+roQgibBsJ/QH3SKT46yvSnIBfFMTrGaCrMagSJlU=
Subject key identifier: 7D:29:5D:C7:75:58:29:65:35:F6:37:C9:AB:BC:E3:89:0A:84:B4:72
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 019601F6DA501D52E05CCDBDA0F71F1428C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
Manifest number: 1005
Signing time: Fri 04 Apr 2025 18:01:17 +0000
Manifest this update: Fri 04 Apr 2025 18:01:17 +0000
Manifest next update: Sat 05 Apr 2025 18:01:17 +0000
Files and hashes: 1: 4BPgPazxL-0_7TACTrAAB2vKcvM.roa (hash: ByHJvADYtVUpx6K/7n+qZ80ogn6pFEeZiZMcZkXwguI=)
2: DnTRig2ZHULz3p9wZNouYmsC9jo.roa (hash: t4VZBdK9Uss3nXT5qelMDtPowMN8UI5/vISGQexu/1w=)
3: FiGOQGJVQzUX0AI-kIcMSlyL5Jw.roa (hash: iNn6sg9mF+PuqzA3VDumFe63FkMkR+FoX25ZFTkc1KE=)
4: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: 2+e3XtoMmACMUgDvigTYGzxX5hQTeEMNbwTqrePxRoE=)
5: psb7_FoF9tBnDB6tY5GqWOvVJFk.roa (hash: VNe9Mli14Tvo817wNnFl35Vg2+YLvG6cgRRigjOYMS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 18:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:01:f6:da:50:1d:52:e0:5c:cd:bd:a0:f7:1f:14:28:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Apr 4 18:01:17 2025 GMT
Not After : Apr 5 18:01:17 2025 GMT
Subject: CN=7d295dc77558296535f637c9abbce3890a84b472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:bd:46:c7:18:6e:8a:08:af:df:8a:86:9e:f9:
99:7e:70:82:30:f6:06:ce:dd:4d:63:6f:2b:80:c8:
12:ef:82:80:3d:f3:93:e9:a0:af:13:39:b8:55:90:
43:a7:a0:3d:aa:a3:4d:95:fc:10:dd:2c:81:de:72:
17:ff:1c:e1:2e:0e:5d:33:f5:e3:d4:08:a2:3c:d8:
8b:9b:7a:c8:a1:10:da:64:f8:56:8b:12:f2:94:09:
32:ef:94:9e:ff:c1:1c:b5:69:62:e0:20:cd:2e:13:
f3:3b:5b:2e:d5:2f:1b:dc:64:61:4d:cf:89:b4:09:
74:e5:23:c8:b7:c8:e9:b7:4b:8b:ef:78:86:ea:e6:
24:7a:91:40:d9:4c:ce:39:e8:c2:63:71:5d:0f:37:
17:81:e3:14:52:4c:9b:fa:8b:ba:b4:7a:b8:81:6e:
b6:1a:5f:70:99:9e:fb:25:c5:9c:ef:2e:17:6e:43:
1a:35:d4:3c:2f:b2:bb:18:d2:63:5e:4e:05:67:6b:
54:b7:cf:02:da:91:bc:a1:d9:8b:15:e7:1c:8e:d3:
5e:92:f1:09:81:8e:94:e3:37:90:1a:24:99:12:4f:
c2:08:00:de:ff:35:64:bd:44:70:4a:bd:53:c6:77:
b5:e9:b0:4b:04:14:4a:a1:06:b5:42:14:cb:04:24:
cf:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:29:5D:C7:75:58:29:65:35:F6:37:C9:AB:BC:E3:89:0A:84:B4:72
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6c:98:9e:04:dc:52:35:6b:b6:f2:23:3d:f2:31:e8:7b:ac:
f7:b2:e9:0b:ef:26:cf:3b:a6:35:7e:9c:50:5e:86:43:f0:cc:
0f:e7:f3:11:bf:7d:a0:ff:f5:4e:c5:e5:ab:f9:60:60:60:fd:
07:d5:1e:76:00:3b:37:14:2f:08:43:7f:c2:59:52:57:f4:d6:
d1:90:14:d3:58:fd:b8:a2:59:39:0f:65:f9:37:d8:15:8b:d5:
e4:d0:5e:9e:7a:9f:a7:1f:fb:d9:26:f9:16:f2:bf:03:f2:19:
a4:c3:ae:29:df:40:a4:e2:d2:de:3b:a8:5f:fe:46:e5:bc:e2:
c8:e9:ba:da:6f:2e:44:df:72:cf:df:eb:fe:54:9d:58:f8:10:
b5:e3:b8:71:e1:86:ab:3f:b5:c0:5c:de:9f:a8:aa:3a:77:fa:
56:d2:82:13:35:cc:d9:62:5f:ce:d6:ff:fb:31:a8:bf:0a:e3:
9c:fd:fb:98:58:49:40:ed:36:77:11:a0:93:df:70:d0:cd:f7:
d4:08:43:e0:b2:da:25:b8:37:de:62:56:0a:c4:14:f2:2e:90:
28:a1:52:cf:53:86:78:dc:da:a6:1e:b2:9b:5c:f9:18:bb:ab:
c1:e2:27:9d:f3:52:b4:27:bd:27:58:67:58:83:1b:f0:62:71:
b3:eb:50:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:55:13 2025 by rpki-client