Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json)
Hash identifier: KjQHHlFdmYCRsTFbI7kPmWg5szyQQNp2/uIW/ku6Wsc=
Subject key identifier: 9B:34:82:B6:A4:2C:43:8A:A2:AC:8E:51:31:4B:60:E6:C8:87:8A:B1
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 01958BBB9EFAE34C9C97B695F922AE44A9CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
Manifest number: 0C26
Signing time: Wed 12 Mar 2025 19:01:23 +0000
Manifest this update: Wed 12 Mar 2025 19:01:23 +0000
Manifest next update: Thu 13 Mar 2025 19:01:23 +0000
Files and hashes: 1: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: 6L49uqyVaIXXXpi365HsSAvQfQ8mxLueOFy3iDlxXpY=)
2: tpGVDM97XGpA5ofHLGA9otQIFM8.roa (hash: aWl1cnx2HDb3renuM7Fi/tYunaPtkTPWaRgrB19Lp4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:9e:fa:e3:4c:9c:97:b6:95:f9:22:ae:44:a9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Mar 12 19:01:23 2025 GMT
Not After : Mar 13 19:01:23 2025 GMT
Subject: CN=9b3482b6a42c438aa2ac8e51314b60e6c8878ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:96:16:e8:9f:b6:73:bf:73:e8:6d:b3:f9:10:
23:d2:76:e7:06:85:8e:12:df:e7:17:a1:97:8d:27:
35:86:75:4b:d9:d4:c0:26:d5:99:cd:ba:9e:27:70:
14:c1:69:7b:5b:7d:01:52:86:9c:82:24:75:42:5c:
12:37:b2:fd:94:3d:5a:24:0a:b0:04:c1:1e:62:bb:
79:ef:d5:51:d9:0a:46:6d:1b:5e:0b:8e:36:b2:93:
aa:12:4f:eb:93:9a:ea:93:d0:b6:ee:e9:d8:c6:b4:
7a:c5:8f:f4:50:05:69:29:5c:17:75:c5:0f:83:aa:
e7:a0:15:c2:9d:d3:5c:5b:63:e6:c1:9d:6b:ab:7c:
83:5a:75:7f:68:68:a2:a1:77:db:a9:68:d5:31:b9:
5f:89:e5:25:7c:07:57:d3:61:ab:f4:f9:54:94:fb:
c2:44:18:3a:9e:55:7d:f2:94:3f:7d:0b:70:5e:01:
80:e3:4e:ab:c7:43:76:d1:bd:8a:90:67:07:89:4d:
f5:33:12:e2:f4:db:f5:ea:73:1b:db:9a:fd:7e:1f:
55:dc:45:c2:9f:89:05:29:1d:a6:52:6c:e9:27:ff:
84:16:5d:e8:d8:cb:1f:73:49:03:89:49:e4:1d:fc:
44:f5:f4:a9:e4:d5:9c:68:95:0c:a2:f1:0e:c1:3c:
37:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:34:82:B6:A4:2C:43:8A:A2:AC:8E:51:31:4B:60:E6:C8:87:8A:B1
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:05:ec:22:bb:ca:28:29:0d:e4:2f:fd:5e:81:b6:75:ac:03:
71:34:a6:77:51:a6:4d:20:09:88:f7:d3:56:83:11:bc:8a:14:
87:17:fd:1f:14:22:2b:b4:c8:8f:5e:25:43:32:fb:c3:9b:32:
81:31:3c:99:e3:e4:e0:d5:80:ef:ca:cb:f9:6b:be:a2:cc:33:
55:e6:0c:69:13:fa:a9:ec:76:61:fa:03:dc:bf:c0:69:56:ba:
54:64:01:42:e6:eb:6f:46:0d:ef:14:c0:2a:03:5b:7e:21:47:
8e:ef:ae:81:36:e3:23:76:97:18:7b:18:06:ae:00:8d:88:e0:
7c:be:0b:79:f1:2b:ed:bc:b3:52:30:f4:b7:ed:5e:b0:22:5c:
86:0b:fe:e3:ad:11:46:ff:d3:a3:c4:2e:fc:f2:df:c8:97:dc:
6c:bf:6e:73:f7:6c:b5:d2:bc:5a:2d:30:6c:cd:67:1a:66:9f:
fc:13:12:16:95:b9:d0:fc:69:16:34:77:45:46:8d:d4:ed:16:
15:ae:ef:9c:b7:cc:ec:6a:fa:00:47:80:5d:88:b3:3c:8f:ee:
df:9f:93:6a:b0:3f:bb:55:83:b7:f9:27:01:73:44:94:c9:e3:
c4:51:9a:78:81:23:d1:33:d5:45:67:1f:59:bf:e3:1d:39:2d:
57:38:44:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:53 2025 by rpki-client