Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: JVUbTpxxPaEsAGmjEHEIQF279ncSBoZs1j7EZKGMDa0=
Subject key identifier: E0:A0:E1:70:CD:90:D3:5A:50:E4:8C:61:C2:54:0E:D0:A4:CB:3E:63
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 0196526D5406E9E4BDBCC3CA9AD643B2783D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0E09
Signing time: Sun 20 Apr 2025 09:00:18 +0000
Manifest this update: Sun 20 Apr 2025 09:00:18 +0000
Manifest next update: Mon 21 Apr 2025 09:00:18 +0000
Files and hashes: 1: IVTm7Sk0HOhJBNyed6XFY_Z2R94.roa (hash: i1RGEeFc6A0tWd9gQ48945gkWc6E43q8yFMFeZXbGTI=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: 28Q3YWeh2gP75nlgfBatOrHZsizYVlqWn3vk6h5f6M4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:54:06:e9:e4:bd:bc:c3:ca:9a:d6:43:b2:78:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Apr 20 09:00:18 2025 GMT
Not After : Apr 21 09:00:18 2025 GMT
Subject: CN=e0a0e170cd90d35a50e48c61c2540ed0a4cb3e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:75:20:b3:e4:aa:3c:fb:d6:24:a6:c2:6e:37:
d2:60:d1:df:1b:93:10:80:5f:30:e5:eb:82:e8:e6:
d1:6d:56:8c:87:9d:bd:9d:13:c5:41:34:a7:19:18:
4d:7d:0b:e4:ed:a4:c4:30:b6:ab:6c:65:a8:b6:12:
d5:c6:0e:b6:ba:e7:7a:f9:89:0e:2c:71:23:a0:37:
fc:7a:3e:4d:5c:b2:79:28:30:3c:69:fd:8b:9f:be:
d2:ce:29:de:a9:8a:95:3f:32:2e:58:81:37:96:06:
63:6e:32:77:d8:4f:b1:d6:df:6d:c1:c3:fb:7a:bb:
72:3d:3f:3d:93:eb:e3:a4:90:0b:85:81:6d:3e:c6:
79:ea:56:87:2b:4c:01:6d:91:5b:9e:d5:d5:4e:db:
8a:41:56:db:d7:35:ec:8c:95:49:5b:ee:ed:22:17:
72:30:15:61:31:30:63:ae:64:42:05:fa:0d:22:08:
24:b7:7e:fd:34:c2:30:44:0c:f4:c6:43:ae:e7:2e:
b9:06:ab:76:60:ba:41:f1:bd:98:28:2d:a5:90:5f:
59:bf:53:cc:67:fe:7b:a6:ef:82:4c:35:5f:fa:5f:
1a:ee:39:f3:c8:60:ea:eb:67:3c:46:d8:c3:90:ca:
0a:21:af:ac:20:57:5b:b6:29:ee:25:36:57:ea:c6:
37:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A0:E1:70:CD:90:D3:5A:50:E4:8C:61:C2:54:0E:D0:A4:CB:3E:63
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:29:55:3a:cc:71:4f:99:22:18:2e:d7:f8:0e:de:b8:aa:11:
a6:18:3b:c5:1d:d9:bc:f4:e4:24:ae:e0:ba:82:ea:ad:db:c0:
ae:5c:04:09:df:ac:c8:43:3e:b8:ce:d9:06:e7:de:cc:9e:48:
25:18:70:68:b2:94:f8:73:38:ca:9f:ca:a3:dd:de:2a:06:e6:
41:8f:7d:7c:b3:d9:54:6a:f1:3b:bd:21:7c:25:9b:07:20:fe:
22:91:de:c0:9b:2c:e9:e7:30:45:08:c3:52:d0:b1:36:0e:0f:
ef:9f:ac:76:49:99:60:24:11:df:38:66:69:1a:57:55:43:19:
8b:de:e9:8a:f5:a6:84:79:2b:3e:f4:1f:79:84:13:1b:f0:7f:
90:16:37:89:f7:b3:58:24:39:25:a3:d3:98:01:5a:99:b7:49:
c0:3d:6c:f0:db:9f:f0:e0:64:be:30:72:b0:b5:72:ec:da:b2:
c5:8e:0e:83:8d:08:1d:f5:f7:87:42:df:59:b9:07:8c:f8:65:
1b:20:78:e2:74:76:bb:ab:a4:8c:2d:d9:19:11:70:b1:7e:f1:
a3:5b:6c:bc:09:c0:94:38:0e:02:cc:d7:45:2a:a0:e7:d9:d2:
d0:72:2e:54:16:29:7d:ce:52:f3:bd:85:fd:cd:0c:71:fb:2a:
ce:f8:ea:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:29 2025 by rpki-client