Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
File: hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json)
Hash identifier: I0VsuKVDKaMKE2aLOdOV95ntIVFHock/MsJ4DHoPbG8=
Subject key identifier: C1:A8:D1:10:AC:1B:7B:32:01:E3:F2:C7:8C:8D:5A:B8:69:C0:27:4D
Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Certificate serial: 0196090B70BC26CB6B6C04F1C5590022A2EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
Manifest number: 14AB
Signing time: Sun 06 Apr 2025 03:01:06 +0000
Manifest this update: Sun 06 Apr 2025 03:01:06 +0000
Manifest next update: Mon 07 Apr 2025 03:01:06 +0000
Files and hashes: 1: 5PJXNIBNkIDizHXqABCfI2weMXY.roa (hash: mf+a4WKnZwf0YHj/JFfXY0yYuBPjjgdMLip3MBUWcAI=)
2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: ju54amDIRnlY4Wm9niZDY3BMDpyzkE7qqnw39LgJ3lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 03:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:09:0b:70:bc:26:cb:6b:6c:04:f1:c5:59:00:22:a2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Validity
Not Before: Apr 6 03:01:06 2025 GMT
Not After : Apr 7 03:01:06 2025 GMT
Subject: CN=c1a8d110ac1b7b3201e3f2c78c8d5ab869c0274d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:df:b9:0d:fb:81:85:98:49:bd:53:9c:7e:39:
5d:99:18:77:65:0c:bb:87:fd:37:29:7b:8d:1e:f5:
4c:e7:c4:e9:fb:58:24:d5:e9:d4:f2:dc:00:87:e0:
14:6b:97:2a:6f:28:96:81:20:8d:84:8e:94:9d:04:
e8:cc:50:7e:ce:e5:22:41:b3:1a:77:13:5b:de:75:
b3:ac:c4:9e:b8:82:1c:db:35:64:73:34:31:48:9c:
d6:8d:89:dd:44:8a:48:0d:3d:6a:87:6a:6e:08:ed:
1b:a2:1c:b7:b3:a2:69:49:cc:08:43:c0:56:47:57:
a5:28:3b:d1:8d:84:f4:1c:ce:0d:a8:d5:4f:1d:fb:
51:2b:eb:48:ea:8e:8d:f5:6a:36:d5:ce:b0:c4:a9:
73:0c:74:4e:68:db:84:ca:16:80:37:67:d0:75:0e:
32:28:3e:be:3f:4d:43:19:2f:26:db:00:b7:dd:1a:
0d:66:ae:f6:e7:7c:a3:61:4c:7c:60:95:50:90:97:
42:25:70:5e:4f:da:a5:2a:a4:05:f9:4b:ee:80:e7:
c0:14:88:82:d2:0a:fd:d1:ce:57:b2:f0:fa:5f:e7:
d9:6f:b9:33:df:fb:50:df:65:eb:49:e9:78:f0:04:
a9:5d:63:58:65:32:d9:ff:ee:cb:87:4d:96:66:06:
1c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A8:D1:10:AC:1B:7B:32:01:E3:F2:C7:8C:8D:5A:B8:69:C0:27:4D
X509v3 Authority Key Identifier:
keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:1a:3f:18:27:81:8c:66:08:bc:be:d0:63:95:1c:51:95:e9:
4c:c2:b5:a0:7f:c8:03:86:6e:c4:b4:62:aa:84:89:0d:5b:5b:
d3:e7:38:28:21:5a:4e:da:a5:39:76:2e:83:a3:48:5e:8c:69:
01:f6:08:83:6b:92:99:89:57:a9:0c:67:53:95:a9:3c:66:cc:
3d:1a:d4:dd:6b:d9:d2:0a:70:2f:b8:50:9d:2b:47:f9:67:c9:
ed:ba:14:38:00:ef:10:61:5d:59:06:c2:af:b0:aa:76:75:51:
36:a7:0f:46:a4:8b:e0:2e:27:22:00:59:b7:8c:5e:8d:fc:70:
e9:82:1b:bc:c5:9a:bb:db:8b:45:fe:51:bb:ef:1f:00:ef:b6:
1b:8f:e9:f6:07:9d:67:62:a2:53:8b:8a:8d:e8:72:69:96:ff:
d1:3b:4c:c9:0c:77:e3:c5:18:77:e6:ab:c5:1d:af:f8:f0:1d:
2d:96:88:08:36:1f:dc:62:a6:48:dc:99:58:10:38:7e:6a:a8:
5e:e5:7a:94:b5:0f:2c:2c:10:75:0d:92:97:05:24:f4:17:80:
75:b8:db:ca:70:4b:9e:0c:22:5c:69:a3:e5:b6:cd:06:42:9f:
30:ab:7f:0d:3f:f2:4b:03:ca:a5:d9:e1:3b:01:7f:b6:ee:71:
59:82:fa:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:01:39 2025 by rpki-client