Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json)
Hash identifier: l3n5hwd/x2x6avFcIXOefDFbcKQ1tHtwB8Ma5blKvTQ=
Subject key identifier: 64:90:35:49:50:C8:C5:4E:7B:00:CD:61:F2:DA:DC:62:38:37:F5:8C
Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Certificate serial: 01964C3500882039D75B44FD8DAB04ACBE13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
Manifest number: 0344
Signing time: Sat 19 Apr 2025 04:01:04 +0000
Manifest this update: Sat 19 Apr 2025 04:01:04 +0000
Manifest next update: Sun 20 Apr 2025 04:01:04 +0000
Files and hashes: 1: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: cg/b3ual94HnsU275XYrLw8LvxTXUnHUKVayxKg27vk=)
2: StsIBWXPkUmDPSa1M3nyv0UDUR4.roa (hash: rqGYqeTGV9tyOvnudhslVeQEEchE0GwN6rysMNZqs1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:35:00:88:20:39:d7:5b:44:fd:8d:ab:04:ac:be:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e
Validity
Not Before: Apr 19 04:01:04 2025 GMT
Not After : Apr 20 04:01:04 2025 GMT
Subject: CN=6490354950c8c54e7b00cd61f2dadc623837f58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:13:c4:9e:1e:a3:ff:58:17:79:49:94:80:96:
9f:ba:17:6e:77:1c:10:6d:32:66:b5:d7:72:f7:ff:
8c:ee:71:38:04:62:24:c7:e0:0c:8f:1d:2f:43:5c:
bb:54:d7:58:e6:3d:3e:7a:2e:84:82:b8:0c:cc:e3:
1f:e1:31:7b:9c:f2:c6:62:4b:d2:2f:1d:e1:25:99:
47:b8:5d:07:2e:ec:fe:7d:95:b5:0f:76:f3:9a:51:
41:23:a8:ec:ff:00:fa:86:8a:22:53:16:78:e6:b9:
d8:ed:a3:17:b7:e1:eb:53:0d:9f:5d:28:6e:79:4f:
40:e8:b8:e6:fc:ac:18:6e:59:49:82:fa:fc:6d:23:
4e:34:88:67:c7:2b:60:b2:07:e3:cf:a5:1e:da:68:
21:ca:5f:d0:78:3d:90:69:f5:e7:8c:a0:50:23:3d:
d4:74:fd:ef:6d:da:de:ab:5b:39:6e:6b:ee:e1:6c:
f6:65:28:c7:43:8a:4c:40:9b:05:ea:78:3c:fa:02:
07:c5:bd:d9:43:ab:e1:22:a5:13:59:cc:5c:f2:c2:
30:07:17:17:ee:46:e9:fc:2f:14:55:ab:96:1a:cc:
aa:e4:56:ac:6b:22:ec:9b:92:ce:84:55:da:49:d0:
01:eb:26:80:ce:86:a3:c6:75:d4:3e:98:5e:97:74:
61:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:90:35:49:50:C8:C5:4E:7B:00:CD:61:F2:DA:DC:62:38:37:F5:8C
X509v3 Authority Key Identifier:
keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:fc:df:2e:0e:9c:a7:02:fd:a9:4f:d7:b0:c6:c8:45:2e:95:
41:5d:64:0e:69:7a:52:fb:e6:77:fe:ab:19:95:cb:45:19:c3:
89:e0:c8:bd:44:ed:5c:d1:66:ee:dd:6c:f5:49:1a:cd:e7:ae:
77:35:99:77:50:92:4c:35:3c:e2:99:28:e8:78:fb:a9:9b:1e:
a8:33:a3:77:34:43:be:f6:f4:10:fc:5f:22:cc:8d:71:43:bd:
fb:a7:ae:5c:1f:55:87:2e:cb:4f:cc:7c:28:36:e8:35:9f:aa:
62:35:11:07:ce:14:1b:e4:0b:2e:d0:e9:d0:3f:d8:d3:a2:8a:
b7:8c:dc:c7:4a:f2:82:9a:5f:50:49:1a:51:e4:c0:3d:3e:37:
14:ec:2b:60:f8:8f:50:49:f3:62:14:79:f4:2b:94:dc:c4:aa:
96:df:83:f3:15:31:d8:ca:ec:b8:77:1e:12:b8:6c:fd:18:06:
1e:53:de:47:3b:a1:1a:a0:bb:14:d4:76:af:37:ba:bc:e0:a0:
48:1a:73:57:ac:4a:06:a1:9c:34:46:40:db:63:73:56:b7:7d:
be:bc:cd:e8:d9:04:cd:b0:d0:bb:5a:e1:bc:c0:a3:b3:c9:a7:
49:32:8d:f5:24:b4:ea:48:b4:e9:42:ae:2c:7c:2b:29:57:e0:
ba:f2:6d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:30:48 2025 by rpki-client