Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: sIIB7z+9OmYOVn9gLhODrH4TC3fOcipwDYE5w+b5akA=
Subject key identifier: 9E:96:4C:1F:A0:E3:FE:6A:E6:15:21:F1:CC:C7:76:E3:B9:39:09:4D
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 019657CB4EB009BF93CDD392C7B5F7796F70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 0893
Signing time: Mon 21 Apr 2025 10:01:03 +0000
Manifest this update: Mon 21 Apr 2025 10:01:03 +0000
Manifest next update: Tue 22 Apr 2025 10:01:03 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: wR1pB4hWF/AHWxEefqTBWC0GqcW5mUkzBICk1cRs52U=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:cb:4e:b0:09:bf:93:cd:d3:92:c7:b5:f7:79:6f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Apr 21 10:01:03 2025 GMT
Not After : Apr 22 10:01:03 2025 GMT
Subject: CN=9e964c1fa0e3fe6ae61521f1ccc776e3b939094d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:87:e1:1c:b7:a7:33:7d:1c:bd:0f:82:74:8d:
7a:ff:d0:38:b7:a4:1f:14:3f:25:56:f8:db:e9:d2:
ba:f2:c3:83:13:4e:4c:b9:6e:72:54:dc:b3:69:2b:
48:7b:85:ed:84:37:63:4e:65:31:03:e4:47:e1:6b:
6c:b2:c8:55:20:a7:14:45:be:98:cc:d4:1d:ca:b7:
27:c6:6d:26:48:d1:f9:ce:2b:45:3f:77:ee:90:7a:
b9:0d:98:da:9c:e8:af:c0:9f:d1:0b:9d:f4:c1:50:
5d:87:4b:4d:c1:05:db:0c:9b:85:9c:e3:24:83:64:
06:c5:6d:26:fe:91:82:dc:35:58:0e:25:d6:1c:bd:
23:53:ce:72:c3:c7:93:65:c0:c8:c2:b6:56:76:39:
26:e3:ce:e6:84:d1:59:29:a5:2c:17:89:78:80:a4:
cd:c7:57:d2:b2:fd:58:f8:6c:47:41:b9:9b:e9:d5:
5c:1e:ea:a6:3b:24:25:ca:e0:17:ee:d7:6b:0a:4e:
f9:4d:1e:3a:15:38:59:b6:7c:be:dc:b4:8a:c6:a6:
59:61:24:c6:3c:ef:d7:cf:28:56:0d:dc:a4:c9:2c:
41:c2:cd:5e:c7:55:b6:1f:c2:c1:d9:3c:68:38:75:
f3:ee:1b:5f:57:51:23:5e:ce:60:17:af:33:0c:32:
e1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:96:4C:1F:A0:E3:FE:6A:E6:15:21:F1:CC:C7:76:E3:B9:39:09:4D
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:4f:85:d8:08:64:bb:33:83:92:cd:de:ca:93:35:22:df:ba:
64:d5:b3:d1:5b:ae:cc:1e:6d:79:6d:d7:20:bc:2a:4a:e5:e8:
23:15:48:24:18:00:9d:80:19:a9:d9:08:f1:04:7c:ee:b9:81:
5a:8c:24:0f:36:67:00:5b:ab:05:1a:6a:6f:82:3c:81:8c:c2:
05:6c:72:d2:23:e0:1b:2b:94:39:0c:13:8c:05:a2:6a:c0:6d:
0b:0e:3b:ae:f5:24:93:b2:c6:0d:4e:3c:d2:aa:40:60:7e:6d:
78:48:f6:a0:f4:55:6f:82:ef:2c:be:93:18:e6:e4:8d:1d:6c:
9d:78:56:4a:0b:86:f3:ae:10:5e:d8:d5:26:31:18:6c:b3:a3:
5f:04:5c:61:f8:75:69:2a:a2:80:54:e2:57:87:9e:21:2a:e4:
67:90:57:15:59:a1:4f:bd:44:1f:49:bb:6c:89:2b:34:26:39:
14:92:32:75:20:84:03:69:a3:5d:c7:2f:60:33:a9:e5:91:88:
63:53:c5:f7:ac:ee:c4:06:37:ad:84:27:11:94:4e:1e:46:4d:
79:1a:6d:1c:20:26:d7:08:b7:af:16:71:6a:6e:98:ea:c8:77:
dc:29:68:ac:9e:7b:dc:65:a7:29:ed:b2:94:55:b6:99:90:5d:
e5:8a:a2:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:15:52 2025 by rpki-client