Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
File: hLDKyDjyguBClI-dKyzVdU0ujEc.mft (raw, json)
Hash identifier: aTXUw/md59Qf0L55r/945yHMip6CF84QyHMnuidyXyM=
Subject key identifier: 85:ED:F6:C9:3A:97:4A:3C:37:2D:59:58:01:B2:FA:16:28:56:C5:D2
Authority key identifier: 84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
Certificate issuer: /CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Certificate serial: 019644E8837D0D5AEBBEE64120DC5EC7B268
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
Manifest number: 14F5
Signing time: Thu 17 Apr 2025 18:00:10 +0000
Manifest this update: Thu 17 Apr 2025 18:00:10 +0000
Manifest next update: Fri 18 Apr 2025 18:00:10 +0000
Files and hashes: 1: hLDKyDjyguBClI-dKyzVdU0ujEc.crl (hash: lVBbqVw8dJyKPIWiIL5XayK4Hi2b/vordRYP96dTlmM=)
2: mq2WK1BWz4a2Yo_KhLxZIcR7xCc.roa (hash: Qcby8Wr2h6htBY3phdXczNrS5qR9unpp5KemIo49KRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e8:83:7d:0d:5a:eb:be:e6:41:20:dc:5e:c7:b2:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47
Validity
Not Before: Apr 17 18:00:10 2025 GMT
Not After : Apr 18 18:00:10 2025 GMT
Subject: CN=85edf6c93a974a3c372d595801b2fa162856c5d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:5c:a4:9a:f9:e8:a0:25:1f:40:52:56:58:5f:
cf:55:e5:64:21:3f:b4:f9:2d:7f:90:77:77:e5:ee:
bc:e3:cc:d0:b5:94:56:32:5e:f0:c2:47:4f:db:f2:
98:29:e1:2d:87:cd:c1:d7:5c:c0:09:5b:c6:a1:2b:
32:6f:36:c7:ba:2f:a1:cb:88:5a:e9:0b:09:86:18:
0b:8c:a4:00:a0:e8:3d:2c:e4:ab:71:ab:3f:df:a4:
2b:ef:00:44:48:4a:1e:32:04:03:70:35:58:35:f3:
ba:90:94:b9:0e:e4:3d:f6:d4:a6:65:49:44:75:c0:
9f:68:b2:12:3d:f7:a5:85:54:f3:0e:a4:34:7a:51:
f3:68:3d:fe:4c:15:5c:80:bc:93:ac:75:2e:c8:f1:
bc:0d:e3:60:65:ab:88:43:4f:95:e9:a9:bc:55:25:
1d:a3:02:70:9e:48:17:bb:87:65:4b:d9:47:6b:a1:
b5:35:db:51:b5:db:22:da:dc:6a:39:7f:03:1a:22:
3a:1b:72:81:f2:82:cf:fd:9b:4c:35:6d:47:fa:9e:
c9:62:0f:7a:1c:ee:3e:7e:3a:f5:ad:fa:37:e2:d5:
e6:f0:f6:2b:b9:08:8a:29:bf:70:a8:26:93:d9:0c:
d0:78:f3:85:28:a8:e6:c0:21:25:10:ce:6a:c7:db:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:ED:F6:C9:3A:97:4A:3C:37:2D:59:58:01:B2:FA:16:28:56:C5:D2
X509v3 Authority Key Identifier:
keyid:84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:c5:dc:d7:f3:21:94:23:5f:6d:94:ee:59:a4:c3:c9:97:91:
78:23:51:06:aa:64:9a:8e:13:15:5f:47:18:39:de:69:1e:32:
37:f7:e9:ab:c3:4f:83:af:0e:71:f9:41:f7:04:1c:80:aa:c0:
a8:7f:5c:59:70:68:8c:d4:30:1c:02:fa:89:54:b6:22:4b:e2:
87:9b:24:f1:2d:30:5e:3b:d7:f2:e8:b0:cc:56:60:f4:68:6d:
8e:4a:61:5d:9e:8a:fd:d6:82:ea:cb:a9:da:ce:d8:e8:e3:de:
22:6e:6d:07:df:ad:30:2d:3c:34:05:41:59:28:96:86:85:4f:
cd:96:21:a8:ff:5f:ad:69:84:58:b5:41:e4:26:4b:08:e0:b7:
ea:1e:05:fa:01:78:9b:7f:ba:77:8a:02:86:ef:16:d6:a3:35:
5b:24:1c:07:6a:a3:85:f0:73:5a:d9:15:9a:7f:cd:1d:74:72:
1e:ad:5b:29:49:c6:11:70:dc:8d:b2:39:9a:75:c0:fb:0a:5a:
6a:cc:7e:65:0d:d6:ca:03:f2:a2:24:3f:58:bd:1f:51:0d:60:
9e:a0:21:77:45:3d:8e:42:b3:ae:8e:cd:d4:4d:aa:a2:91:0b:
1e:da:c1:01:f8:1b:fb:f5:a0:23:22:2e:6f:2f:9c:82:35:2f:
b3:06:e2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:25 2025 by rpki-client