Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
File: hqnzrkX3AVCvF-uHiel4iQKe5dM.mft (raw, json)
Hash identifier: xqRXHre8Hm9cuXKs2Avk3N/AUuh6ms4dxf9tOgvulUc=
Subject key identifier: 24:E3:85:4E:57:F5:42:1B:A0:E8:EF:9D:7A:05:C3:E1:9B:81:A6:E4
Authority key identifier: 86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
Certificate issuer: /CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Certificate serial: 019653B790BD8886619DD5C2FAB5EB30714D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 15:01:01 +0000
Manifest this update: Sun 20 Apr 2025 15:01:01 +0000
Manifest next update: Mon 21 Apr 2025 15:01:01 +0000
Files and hashes: 1: 6b_z1nYhros0lFsJJ-v5kZEUQbE.roa (hash: lcqP5Znx2EuUXx9SjdDPzhxT49PtsEmnOX0/yWwCL10=)
2: hqnzrkX3AVCvF-uHiel4iQKe5dM.crl (hash: RI7QuhYU9srXBCqQh9XnEICjDAyNnYsr+zif6sEFwLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:90:bd:88:86:61:9d:d5:c2:fa:b5:eb:30:71:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a9f3ae45f70150af17eb8789e97889029ee5d3
Validity
Not Before: Apr 20 15:01:01 2025 GMT
Not After : Apr 21 15:01:01 2025 GMT
Subject: CN=24e3854e57f5421ba0e8ef9d7a05c3e19b81a6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1f:07:3b:91:d1:c3:7e:b9:e7:d9:9d:07:8c:
4a:e3:ad:ec:1b:53:22:10:5d:58:6a:7b:22:59:fb:
57:90:fa:c1:b6:75:e8:ac:56:6f:09:45:d2:5b:0b:
09:46:f0:05:f1:63:ac:e0:23:7e:c3:9f:f5:fa:e0:
f5:8d:ef:41:24:78:b4:03:52:48:43:cc:8b:21:e5:
6f:8f:a1:81:40:bd:8b:fb:82:5b:60:37:b5:11:bc:
5c:62:9e:85:1c:c4:61:b0:f0:94:f7:c4:16:7f:a5:
10:5e:0d:88:05:1e:73:cf:6b:a4:ab:9d:50:bd:a6:
2b:5b:42:75:63:8c:10:b6:73:c2:e1:1c:64:64:bc:
cf:e6:47:52:5b:e8:ce:a9:da:43:89:ab:0c:c9:a2:
1d:e4:d9:53:ee:d6:e1:c1:28:24:d7:f4:5d:0b:7e:
8d:b5:84:e7:0b:03:da:1e:80:1c:c2:0f:b0:08:c5:
e3:be:e2:0d:56:9e:f1:8b:b3:5d:66:49:9d:86:a3:
18:73:2e:74:40:2c:ee:bb:c2:29:c8:aa:2b:78:5d:
3a:1d:e1:69:b3:2d:0c:e1:5f:18:25:47:db:95:e0:
b1:00:0b:75:48:d8:a3:7a:72:16:c6:72:65:c4:b2:
01:bf:50:04:90:72:2f:4b:6a:24:ee:b6:80:f4:9b:
63:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E3:85:4E:57:F5:42:1B:A0:E8:EF:9D:7A:05:C3:E1:9B:81:A6:E4
X509v3 Authority Key Identifier:
keyid:86:A9:F3:AE:45:F7:01:50:AF:17:EB:87:89:E9:78:89:02:9E:E5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqnzrkX3AVCvF-uHiel4iQKe5dM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/131274-7334-446b-a935-3487ae82b20d/1/hqnzrkX3AVCvF-uHiel4iQKe5dM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:07:80:06:87:bc:96:08:37:75:5c:10:d1:5a:fe:d8:d2:31:
3d:14:ce:90:d3:bc:fb:ff:95:5d:33:d5:5e:93:53:b9:ce:49:
c2:95:26:79:d3:49:77:10:44:d4:a2:af:3c:83:9b:1c:0c:a3:
ad:9c:ef:e1:33:ad:af:34:62:2a:53:9c:b9:bf:16:7e:0e:f5:
47:fc:a7:9f:88:5e:60:c8:c2:df:c6:33:51:d0:02:6d:c4:05:
d8:a1:19:64:ea:c7:02:8e:1e:70:82:bf:31:79:33:04:5e:b3:
a2:e8:d3:4d:cf:78:45:cf:3b:f5:98:f7:47:83:9b:b5:63:80:
75:e7:8c:a4:b7:cd:e9:e4:20:97:db:f4:4e:44:16:b9:ce:c5:
97:3a:fd:6d:b2:5a:2c:ab:1d:e9:59:84:94:eb:09:e4:b2:40:
37:28:bc:c5:c0:a9:fe:44:24:c0:e8:90:54:84:e9:92:f2:13:
ce:22:5c:b4:f9:99:63:01:e1:37:0b:e9:1c:4d:62:13:0e:05:
95:9c:98:a2:80:dd:67:a6:82:a4:c9:d5:43:4f:56:c0:0c:82:
78:b0:5b:8a:0e:b4:c1:1a:db:8a:6f:3f:be:e7:67:4e:3c:4d:
e3:99:c7:cc:77:0f:5e:36:b9:dc:ca:5c:19:8a:3e:ba:af:cb:
29:ff:dd:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:29:06 2025 by rpki-client