Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
File: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft (raw, json)
Hash identifier: Nt49Xj9mHR88E3mvlvA19wuGQX7efh+910NBc55KVyw=
Subject key identifier: D0:EE:1C:90:F3:B2:92:75:A2:ED:44:90:4F:E2:9F:59:FD:BB:66:10
Authority key identifier: 86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
Certificate issuer: /CN=864abd435f899d570a8e5fb83bdad1153455dee0
Certificate serial: 01964DB4B4D20CF166FFA0A76C5013625DAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 11:00:10 +0000
Manifest this update: Sat 19 Apr 2025 11:00:10 +0000
Manifest next update: Sun 20 Apr 2025 11:00:10 +0000
Files and hashes: 1: hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl (hash: CGCBJs0/9wdvi0/GwE9PQXNJJ0ioofr9nsn30z1EGq0=)
2: xSS92RJP_9kDYA2uBQZz6tpYK1I.roa (hash: rR5n4U9xDx2H85hw0wOs3NY+BK3tAcVO4QlJE3rUQXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:b4:d2:0c:f1:66:ff:a0:a7:6c:50:13:62:5d:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864abd435f899d570a8e5fb83bdad1153455dee0
Validity
Not Before: Apr 19 11:00:10 2025 GMT
Not After : Apr 20 11:00:10 2025 GMT
Subject: CN=d0ee1c90f3b29275a2ed44904fe29f59fdbb6610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:ed:ae:9a:50:49:18:ee:39:72:bc:dd:da:
31:70:f1:2c:93:c4:09:c5:6c:f7:9f:2e:37:df:8e:
05:0e:96:12:ec:64:6a:99:08:8c:70:df:1a:27:bf:
f3:39:cc:5b:26:b2:34:ab:66:97:cb:bf:cc:30:fc:
85:b0:8e:10:e6:bb:7a:6c:a7:e1:dd:6a:e1:b3:be:
c9:ad:ab:d3:b2:c3:7c:35:ed:99:5d:fa:ae:8b:a8:
0a:f6:b8:0c:d5:1f:08:82:77:ca:ca:70:fe:a9:8b:
9e:26:ca:5f:cb:be:62:70:25:4a:b5:b3:a1:6a:e4:
2e:07:80:94:58:92:21:97:5b:2f:1a:1d:78:12:bb:
9e:f8:af:92:a4:7b:d5:d0:a4:87:3d:b9:d0:f0:2e:
a7:6a:45:8f:62:67:e5:47:5e:40:25:c1:84:d3:e4:
95:ff:99:38:6b:2d:21:f6:9e:07:e7:37:02:88:ee:
52:41:20:11:07:59:10:f5:ca:2e:d8:ef:b6:a9:d4:
45:fa:7a:7d:06:1c:60:40:8d:33:3e:c9:77:8a:e3:
7e:c3:8b:68:69:bd:71:0b:25:96:a4:cf:e9:c0:48:
e0:e6:33:bc:25:93:9a:8c:67:09:4b:c5:43:43:c1:
f6:bb:7e:f0:00:57:b6:d9:bb:7e:41:00:32:11:d7:
29:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:EE:1C:90:F3:B2:92:75:A2:ED:44:90:4F:E2:9F:59:FD:BB:66:10
X509v3 Authority Key Identifier:
keyid:86:4A:BD:43:5F:89:9D:57:0A:8E:5F:B8:3B:DA:D1:15:34:55:DE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3f133f-1c81-4a4b-a255-3e3646591aa0/1/hkq9Q1-JnVcKjl-4O9rRFTRV3uA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:a1:1b:37:9b:3a:e4:a2:e3:64:16:20:a1:4a:9a:52:ba:82:
67:b4:f7:f0:18:4f:28:9c:5b:bf:a9:db:5d:fe:49:f1:b8:29:
de:0d:02:f5:65:26:7a:0c:aa:4e:b9:c4:9f:5b:9c:4b:93:9a:
6e:60:3d:50:50:46:44:34:28:bf:2e:1d:5a:42:41:86:3f:8d:
ef:0c:08:01:15:43:99:23:a5:e2:55:80:e3:8b:48:e1:08:a2:
42:9f:15:08:e6:40:00:1f:df:b6:ba:bb:a1:e2:be:73:ef:d0:
06:50:45:06:e9:43:e7:7f:a8:0a:c6:75:4f:5b:4e:1f:d7:70:
d6:ef:02:9e:74:7d:cc:a3:15:dc:3b:40:a8:36:a9:84:7c:99:
01:1c:b8:02:1d:58:02:14:42:92:fb:ed:5a:a6:d6:38:9f:ac:
cb:32:56:02:67:29:1c:14:c9:34:51:54:a7:1e:1c:d2:de:da:
bb:e0:ed:1c:3c:b6:a9:e7:24:b9:f5:7e:0c:c2:cb:65:7a:6e:
50:b8:58:5d:ee:67:a6:7e:9a:ae:2d:00:2e:79:fa:28:01:39:
ca:ea:2f:a9:5d:12:da:b9:9c:c5:d0:1b:81:16:f9:9b:f3:25:
0d:5b:ef:47:e6:7c:95:74:6f:6f:76:d5:29:b0:40:c3:73:a9:
f4:78:a3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:23:04 2025 by rpki-client