Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json)
Hash identifier: vzoSRN8YuMYjmPl9fUCdeOt2rtqToBISo0MzyFgjYTw=
Subject key identifier: 88:D3:B1:D4:8A:FA:9C:FC:50:1D:70:B3:10:2C:8E:5B:31:10:B1:C1
Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Certificate serial: 01960A553DFF3940F0E4F530629918488C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
Manifest number: 14E2
Signing time: Sun 06 Apr 2025 09:01:20 +0000
Manifest this update: Sun 06 Apr 2025 09:01:20 +0000
Manifest next update: Mon 07 Apr 2025 09:01:20 +0000
Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=)
2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: I6jfrJbBEbXoOssJd5MA2YphNew294HkxaV4ovq0cpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:55:3d:ff:39:40:f0:e4:f5:30:62:99:18:48:8c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba
Validity
Not Before: Apr 6 09:01:20 2025 GMT
Not After : Apr 7 09:01:20 2025 GMT
Subject: CN=88d3b1d48afa9cfc501d70b3102c8e5b3110b1c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:67:e6:13:e5:8c:8c:32:4c:c2:68:05:84:
87:dc:66:2b:2e:b8:39:7c:75:5d:4f:69:bc:7e:e3:
7f:5f:98:30:c6:95:a6:7b:a3:77:f1:00:39:02:b0:
5a:54:0e:9c:43:b9:fc:78:0f:54:94:15:28:55:4e:
8b:d9:67:d2:5f:72:6a:54:44:55:67:a6:d5:a0:78:
3f:2a:c1:1c:4a:13:fa:04:69:48:4e:98:5b:69:58:
ad:6a:cf:ff:1b:21:38:5e:fb:58:88:dd:ea:5f:50:
5d:9d:73:0c:ed:ea:0f:5d:6d:a8:1f:cf:5b:93:28:
e4:87:19:56:d1:51:94:2a:2e:b0:02:31:19:f5:6d:
80:6b:2a:1d:20:fb:41:7a:71:2f:99:86:5e:9e:c0:
e0:26:1b:a4:ab:d4:9e:86:5b:78:12:1b:48:f6:77:
2a:b7:48:29:75:3d:75:32:2a:34:94:0b:80:25:d4:
6b:d2:bb:f4:94:08:d2:3e:a4:74:4b:5b:59:2a:c4:
c3:3f:5e:44:d3:05:1f:0e:d0:d8:4a:00:5e:8b:a2:
4a:be:0d:be:22:d7:1e:60:1d:b2:f7:96:3b:b3:d7:
2c:2f:b8:14:90:49:c0:be:a9:91:a1:ec:98:2a:67:
6a:cb:9f:a1:a8:87:99:05:79:bd:fe:36:7a:90:97:
c1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D3:B1:D4:8A:FA:9C:FC:50:1D:70:B3:10:2C:8E:5B:31:10:B1:C1
X509v3 Authority Key Identifier:
keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:e1:a0:88:84:11:ce:9c:5a:2f:cf:1d:9a:07:7b:e9:a9:7f:
73:9a:22:2b:97:82:07:dc:7d:d6:70:cf:32:0f:9a:11:8d:64:
d5:a0:88:21:d2:20:ec:f8:a7:0f:b0:71:b3:77:3c:05:f5:07:
f1:86:6b:ec:c3:52:81:c7:12:36:18:ec:44:b9:1b:73:ee:81:
2e:14:d3:f4:4f:62:f2:09:68:3d:5f:eb:48:b6:ab:9e:27:02:
1d:b1:fa:65:95:a3:95:05:85:0c:94:9a:93:18:e2:ee:b7:a8:
f7:57:54:02:aa:0f:7d:24:21:6e:a7:18:81:d4:b9:5c:36:1a:
fd:33:54:42:fe:51:ae:be:92:9e:1c:ac:23:4a:f2:40:5a:85:
d6:cb:25:41:4c:1f:2e:22:8c:1e:fe:f2:e0:19:d4:fd:64:b2:
a3:ff:24:d7:21:06:2e:98:c6:58:ce:ab:ed:13:f7:e1:39:2a:
e1:c3:c6:a6:b9:0d:33:38:e3:39:30:93:c5:43:54:24:ba:5a:
0b:b4:9c:b8:fe:95:b5:a5:f2:20:e2:8e:75:fa:46:da:37:ae:
df:c6:dd:55:6d:0c:8b:0c:7f:ff:5f:f6:bc:a5:c1:95:16:de:
e1:c3:10:9a:30:5c:e1:a8:04:8e:9f:09:df:42:17:ea:0d:ca:
46:ef:50:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:32:24 2025 by rpki-client