Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: +fbaDpLKkOEAjkofw1w3dem7RGlUqha0TixT4SnxxI8=
Subject key identifier: CA:2F:4D:F7:EC:CF:6F:1F:0F:BC:F5:AC:26:48:52:5B:B1:EB:B5:44
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 01965047FB8E22768083EA35C197B99787B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 024C
Signing time: Sat 19 Apr 2025 23:00:16 +0000
Manifest this update: Sat 19 Apr 2025 23:00:16 +0000
Manifest next update: Sun 20 Apr 2025 23:00:16 +0000
Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: 2Qx8IgBS0qQqMCWWCs+Qfec4BnpuwYKumCLCR8xOmUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:47:fb:8e:22:76:80:83:ea:35:c1:97:b9:97:87:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Apr 19 23:00:16 2025 GMT
Not After : Apr 20 23:00:16 2025 GMT
Subject: CN=ca2f4df7eccf6f1f0fbcf5ac2648525bb1ebb544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ee:6d:da:ff:ff:03:08:7a:b5:9e:b7:95:9b:
9a:bb:0c:96:23:d0:16:11:69:7e:0f:db:e6:b2:4f:
a1:47:0b:a6:1a:ca:19:54:89:ef:3f:4f:00:85:da:
81:61:36:45:bb:dc:7d:b2:66:02:f7:d1:d8:75:a7:
b7:22:90:ce:47:50:77:71:a9:63:60:e4:05:75:9d:
32:ba:f8:ad:af:96:68:39:3e:a2:0c:33:a7:70:1a:
15:91:d9:67:4e:1b:24:a9:6d:65:89:41:4c:8e:39:
e3:04:a9:28:b3:81:0c:6e:13:ed:85:4e:19:c2:84:
33:68:eb:e0:52:e0:95:09:5b:99:fa:b4:11:2d:ed:
55:eb:22:e5:4f:24:2b:a9:bf:08:cb:63:f5:fd:8c:
40:cd:6f:01:d1:77:9a:48:ff:92:0d:d7:82:48:74:
4c:6c:f7:ed:e5:d5:8a:93:b3:76:ae:59:ea:a4:4e:
f5:61:83:c4:50:ca:23:8d:49:5f:55:7e:02:69:72:
ac:6d:9b:4d:41:af:a9:db:43:95:b1:e3:8a:40:f6:
24:98:fb:77:35:55:9d:4a:74:59:cb:cf:d3:99:45:
b3:cf:7b:d7:e5:fe:11:9f:72:d7:9b:3f:07:48:62:
e2:b2:1b:b8:bf:ad:56:3a:bd:b5:b2:2e:b9:6d:db:
7d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2F:4D:F7:EC:CF:6F:1F:0F:BC:F5:AC:26:48:52:5B:B1:EB:B5:44
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:24:1b:0f:c8:6c:f4:5e:be:f7:82:8b:13:9b:dd:5f:da:97:
ff:90:82:bb:27:23:1f:d7:48:27:67:0a:fb:1d:ee:6f:a7:f1:
fa:4f:25:74:38:c6:b0:07:78:10:43:1c:92:b8:10:83:35:3f:
ac:6d:4e:fd:b8:8e:07:0d:f9:d5:a6:c7:88:d9:bf:f8:b6:32:
e5:eb:7f:41:89:b9:af:26:62:95:79:63:de:44:71:63:f5:4b:
f1:a4:6c:fb:02:75:6f:1a:20:cb:61:67:2d:7f:2f:1b:8f:ba:
04:c7:e7:3b:ff:87:47:e5:4d:29:2e:3d:64:42:c3:ab:e0:dc:
67:44:82:d2:c2:f5:de:a8:00:6c:02:c3:8a:80:7e:de:36:6e:
5e:29:de:1d:3d:75:4e:2a:24:b4:51:ae:4e:c0:df:34:91:4b:
cb:11:93:b4:15:33:fa:ff:90:1c:74:73:4a:d5:a2:9c:e1:73:
43:dc:05:43:c8:2f:d8:dc:19:89:8d:44:a5:c0:5e:94:3e:f5:
6d:a8:20:43:9b:98:76:5d:18:6e:32:d7:24:6b:5a:c1:04:b6:
82:ea:b2:35:5e:d2:90:28:b4:55:8f:22:eb:92:6a:4c:04:b1:
fc:7f:da:b7:93:7e:8b:d9:50:d9:c7:03:a0:cc:30:a1:b5:b1:
98:66:40:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:41:40 2025 by rpki-client