Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
File: hC4XioXWwwtXKyAmHET456S_wnI.mft (raw, json)
Hash identifier: SMDcNQypYA/fcrewsnwlS157K97hxrjl1SiNGo+az9Q=
Subject key identifier: 69:11:BC:1D:26:7F:CB:13:B1:4A:7D:13:DC:87:91:46:99:81:6E:3A
Authority key identifier: 84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
Certificate issuer: /CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Certificate serial: 019652A4F01A69BF589B12E807AB4BE4627E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
Manifest number: 0C8D
Signing time: Sun 20 Apr 2025 10:01:03 +0000
Manifest this update: Sun 20 Apr 2025 10:01:03 +0000
Manifest next update: Mon 21 Apr 2025 10:01:03 +0000
Files and hashes: 1: hC4XioXWwwtXKyAmHET456S_wnI.crl (hash: /MunIwT3xam/LxT7SHgKWMRGM9ehzA9ML+PuXhjh7WA=)
2: tpGVDM97XGpA5ofHLGA9otQIFM8.roa (hash: aWl1cnx2HDb3renuM7Fi/tYunaPtkTPWaRgrB19Lp4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:f0:1a:69:bf:58:9b:12:e8:07:ab:4b:e4:62:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=842e178a85d6c30b572b20261c44f8e7a4bfc272
Validity
Not Before: Apr 20 10:01:03 2025 GMT
Not After : Apr 21 10:01:03 2025 GMT
Subject: CN=6911bc1d267fcb13b14a7d13dc87914699816e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b0:ac:6f:46:dc:72:ff:11:27:c1:75:dc:cd:
a2:9b:10:b8:44:47:8e:f3:55:55:de:dd:b8:aa:42:
2b:2c:a8:8b:cd:ec:09:f3:8a:bd:e7:c8:3c:58:66:
b4:0e:9f:3c:c2:38:1e:78:d8:72:0f:61:6c:de:62:
c5:aa:07:36:f1:b4:36:5d:89:20:6c:7b:e2:f1:b6:
23:07:48:52:6e:69:6c:46:b4:b6:47:ed:ea:cf:1e:
dc:a3:e6:5c:d6:6d:d2:61:a8:c9:8a:f1:7a:ee:88:
ed:c2:cc:e8:fe:5e:72:32:3b:a1:e1:00:b5:f6:1a:
1d:70:fd:14:c5:49:e3:02:15:4d:19:fc:23:00:96:
5a:3c:f5:84:ea:b5:96:4e:45:4e:24:46:a6:36:2b:
93:9e:bf:93:0e:c8:12:e2:b5:fc:64:d8:5d:b6:49:
16:cc:cf:02:5f:eb:86:c5:6d:a0:32:e2:d1:18:ee:
3d:96:7a:62:02:76:2b:e8:5d:14:14:6d:18:2c:81:
e4:89:ca:21:dd:a6:b5:bc:d8:15:6b:7c:91:d6:e1:
d2:9e:02:22:ea:c3:fd:2a:f4:61:f2:ff:5b:0d:c0:
b8:1b:2b:17:86:78:b7:04:6f:08:14:6b:64:2e:ff:
1f:1c:c1:bb:58:1c:b3:5c:af:95:a2:d9:aa:eb:25:
1a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:11:BC:1D:26:7F:CB:13:B1:4A:7D:13:DC:87:91:46:99:81:6E:3A
X509v3 Authority Key Identifier:
keyid:84:2E:17:8A:85:D6:C3:0B:57:2B:20:26:1C:44:F8:E7:A4:BF:C2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hC4XioXWwwtXKyAmHET456S_wnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0730d1-fee3-4654-9dea-e187be9b6c23/1/hC4XioXWwwtXKyAmHET456S_wnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:c8:ee:c9:59:cb:ff:61:15:3e:cb:c5:a8:86:9d:71:da:0f:
e9:16:25:49:d3:41:9c:fb:97:ac:e8:3f:b8:9d:28:3a:d0:a8:
dc:1b:c1:19:5f:01:8f:67:62:3e:37:f6:06:44:13:8f:26:81:
d6:00:64:f6:26:26:28:fd:fc:9b:e2:08:b5:e7:ca:76:4b:45:
bc:69:fd:3c:61:86:73:dc:1b:15:b6:81:0a:e7:0a:47:e9:70:
95:59:13:1f:23:08:e2:2c:04:6d:16:d0:a5:b3:42:9d:95:e5:
27:49:0c:86:b2:c5:e2:27:c4:75:62:9e:9b:d7:69:66:1e:c5:
c7:94:c9:d8:9c:c7:f2:9f:ce:6f:69:67:97:ed:8a:50:ff:88:
38:9b:4a:02:40:80:32:b9:24:5b:01:a3:cf:5f:ed:ae:fd:52:
1b:4a:c6:aa:a1:77:10:e6:f4:c8:98:52:04:ed:de:e8:2a:9a:
db:f0:13:76:4a:89:d5:f8:99:f4:30:51:47:ce:c3:7f:02:97:
a8:e2:28:70:43:e2:76:41:d4:8b:87:5a:15:1b:b4:11:d0:1c:
b2:b0:25:d6:52:45:e4:01:3e:b3:6d:3d:f2:97:76:7d:c7:96:
da:06:5b:91:55:2f:7a:f8:f0:91:86:6f:e1:63:0b:10:4d:1b:
61:f0:c9:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:33:30 2025 by rpki-client