Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: UdMx1bqBwOV1Mg3T/C/alZTDVRO7uxPNRJ8/nGsT6Xw=
Subject key identifier: 57:29:75:5F:4D:60:EB:23:36:12:EF:D4:91:0C:93:2D:2F:37:3E:D4
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 01958F6155B71287AF8243EE564EAEBBCDAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0DA4
Signing time: Thu 13 Mar 2025 12:01:15 +0000
Manifest this update: Thu 13 Mar 2025 12:01:15 +0000
Manifest next update: Fri 14 Mar 2025 12:01:15 +0000
Files and hashes: 1: IVTm7Sk0HOhJBNyed6XFY_Z2R94.roa (hash: i1RGEeFc6A0tWd9gQ48945gkWc6E43q8yFMFeZXbGTI=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: I5TSseFuNMMdaPTsDWt8g9i6Ofws6Ev5H4QDZq5BLtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:61:55:b7:12:87:af:82:43:ee:56:4e:ae:bb:cd:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Mar 13 12:01:15 2025 GMT
Not After : Mar 14 12:01:15 2025 GMT
Subject: CN=5729755f4d60eb233612efd4910c932d2f373ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:39:6c:79:06:e3:15:ce:a5:50:f6:15:3f:c5:
18:7c:0d:91:f9:c5:7d:42:79:4e:88:2e:83:1b:0a:
aa:f6:62:9b:7d:39:78:ab:5b:00:33:8e:94:ae:1b:
c7:9d:90:6b:38:90:aa:18:97:6a:80:e2:3b:07:1a:
44:81:79:7d:05:61:79:2a:7e:be:10:e9:08:0b:3e:
bb:91:eb:43:51:b7:00:73:6b:d1:f5:e1:cd:d4:33:
5e:bd:69:05:ff:e3:29:56:2b:08:6f:4a:aa:71:76:
ec:90:52:2d:cb:ce:33:68:b5:10:fa:74:68:40:98:
b8:99:d0:63:b8:07:b1:0c:a4:27:d6:73:53:f3:6a:
dd:33:68:1c:f3:27:19:f0:84:30:45:9d:e7:f9:22:
b8:76:ba:7a:88:66:86:60:a1:95:f6:cb:06:19:4a:
f0:3b:29:f6:74:33:9f:b8:98:ee:0d:73:a8:77:f9:
71:74:36:6e:71:45:d6:54:b9:1d:d4:28:fc:93:93:
fc:48:e9:e3:ea:24:9d:69:7d:1c:24:ee:c4:9e:dc:
01:5e:e5:14:ba:e3:76:d1:e1:b5:ec:95:7b:cf:e3:
cc:4b:7a:74:ce:8f:e1:b7:2e:db:08:3a:5d:b6:d1:
35:96:38:81:42:75:53:1f:a2:43:63:0b:fb:2f:81:
0a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:29:75:5F:4D:60:EB:23:36:12:EF:D4:91:0C:93:2D:2F:37:3E:D4
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ad:d8:92:14:9b:74:ff:7f:5b:18:da:21:96:e4:6f:f9:50:
49:f4:d8:f8:58:e4:62:93:06:09:6c:aa:27:4a:68:7c:ae:50:
4b:ad:5d:d7:79:d3:e4:14:eb:e8:c7:44:ea:79:03:63:65:9c:
1b:4f:56:22:30:01:5d:88:78:11:c9:45:d0:b0:87:df:10:74:
5d:51:0b:71:3e:93:e9:b7:f6:f4:f9:66:aa:11:80:00:ee:57:
0d:9e:57:ec:21:30:a0:2f:78:71:d0:64:60:cb:f0:03:a2:cb:
b0:e0:38:98:3e:bf:e6:39:93:97:34:4c:47:59:f2:0c:b3:0a:
f5:44:65:a0:61:cf:49:92:5a:a4:41:ee:5d:eb:7e:98:3a:f8:
f9:2f:9e:7f:d3:87:43:39:81:9c:6c:19:92:df:94:9b:a9:16:
59:eb:2d:95:95:86:7d:5a:ae:5e:fa:9c:31:24:49:c7:05:4b:
e2:7b:9e:35:13:b8:59:b3:a9:5d:62:c4:ae:68:d7:fa:cb:a0:
38:76:cd:2a:a5:49:d5:1d:67:6a:fa:f4:2d:57:12:4c:89:df:
80:c6:e3:a8:70:20:5d:50:9c:6b:e2:49:0f:23:a4:c1:5d:e8:
5b:a3:45:d6:5a:73:82:2d:61:cf:a6:39:a9:65:51:ff:66:b4:
cb:bd:8e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:44:59 2025 by rpki-client