Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
File: rwmHHP1haABnerIynsumHed3V-Y.mft (raw, json)
Hash identifier: BYmA3E/6Y8lVm209SWekgMX8Irj5nUYqKaoN8Y5ZzYc=
Subject key identifier: 45:A5:DA:95:7F:38:97:7F:5B:34:F7:70:79:0C:AF:67:40:B6:B5:17
Authority key identifier: AF:09:87:1C:FD:61:68:00:67:7A:B2:32:9E:CB:A6:1D:E7:77:57:E6
Certificate issuer: /CN=af09871cfd616800677ab2329ecba61de77757e6
Certificate serial: 019655DCB07FE111C5729E4C6031ADF23C44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwmHHP1haABnerIynsumHed3V-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
Manifest number: 66
Signing time: Mon 21 Apr 2025 01:00:48 +0000
Manifest this update: Mon 21 Apr 2025 01:00:48 +0000
Manifest next update: Tue 22 Apr 2025 01:00:48 +0000
Files and hashes: 1: _TdfyDspFjo8HcBVAH4tKaY1ryc.roa (hash: HRin1YqVyIdAgsGnpfqM25NMMm45zP4o3p+MrSb9sdE=)
2: rwmHHP1haABnerIynsumHed3V-Y.crl (hash: GpYPuOX5kOXeXSwnfSnNnW8pJf9SZcFivu2uyczwufU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwmHHP1haABnerIynsumHed3V-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:b0:7f:e1:11:c5:72:9e:4c:60:31:ad:f2:3c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09871cfd616800677ab2329ecba61de77757e6
Validity
Not Before: Apr 21 01:00:48 2025 GMT
Not After : Apr 22 01:00:48 2025 GMT
Subject: CN=45a5da957f38977f5b34f770790caf6740b6b517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7f:6a:1b:a7:33:91:75:2d:84:93:06:cb:18:
22:1b:35:7e:62:3d:91:a6:24:17:42:cd:42:09:aa:
39:5a:e9:55:48:8b:a3:96:13:ec:47:a4:a8:8b:87:
62:02:55:1d:8f:d8:1b:db:99:18:54:4f:6b:b5:c8:
e2:26:95:22:01:56:e6:4a:45:5f:e7:23:f5:ce:d7:
56:52:98:f9:9e:98:6c:09:78:8e:35:50:73:76:7f:
de:35:3b:0b:bb:1d:cb:b5:d6:77:4c:2d:70:4d:f4:
de:5d:61:8c:30:a7:d0:b5:5d:34:e5:74:58:2f:9e:
7b:03:03:ad:e2:5c:ad:86:0c:e0:76:28:dc:b3:48:
d6:16:fb:84:9a:f3:6d:00:c3:ad:22:b7:db:71:47:
58:c3:59:08:03:4b:4a:72:9a:2e:b3:55:70:6f:cc:
3f:fa:c0:2c:0f:c8:0c:5f:ff:5b:eb:21:c7:52:01:
9a:9f:41:98:97:f1:0e:98:06:97:15:c3:a9:9c:9c:
15:2e:0b:2e:fd:cb:09:0d:28:43:92:0e:7e:35:98:
c7:02:f5:7d:88:43:93:8f:1f:8e:1e:af:12:3c:c4:
60:06:d7:2d:7d:a1:8f:54:5c:a3:21:6c:a9:fc:18:
22:52:8c:80:11:98:dd:74:29:67:00:75:be:ad:4e:
e6:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A5:DA:95:7F:38:97:7F:5B:34:F7:70:79:0C:AF:67:40:B6:B5:17
X509v3 Authority Key Identifier:
keyid:AF:09:87:1C:FD:61:68:00:67:7A:B2:32:9E:CB:A6:1D:E7:77:57:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwmHHP1haABnerIynsumHed3V-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:53:4e:c2:7a:0c:88:bc:a7:62:37:e7:be:42:81:33:4d:83:
2b:a0:bc:18:8a:50:b6:da:7e:94:06:a2:40:ff:a4:a8:16:0c:
0e:10:cb:0c:00:6b:28:2e:e6:1a:66:51:8b:8c:f9:8f:1a:fd:
6f:a1:c1:88:79:6b:6b:8c:23:9e:cd:e2:83:d3:5c:0e:23:9c:
f5:1f:98:c3:bd:4a:54:28:9b:8a:73:f8:5c:cd:ef:23:c5:be:
ce:1e:c4:f5:9c:db:7b:3c:14:4e:7b:9e:96:97:f9:7c:8b:73:
10:de:23:5d:c4:e0:6a:70:f1:1d:6f:03:29:c4:4d:dc:db:c9:
78:9b:cd:bf:dd:f8:25:f7:60:73:33:ff:da:9f:90:30:4d:fd:
2b:5c:55:e7:43:0d:17:1f:5e:52:d9:ed:35:40:9c:28:0f:c5:
93:e6:d4:17:7b:41:48:57:ad:98:47:27:de:a5:92:36:de:1e:
50:d0:b3:2c:6e:86:0c:5f:90:d3:cb:b3:98:83:6f:99:cd:80:
58:b1:a6:be:c9:1b:f0:06:77:3a:99:b4:47:91:c5:1f:be:73:
6d:87:ad:b0:70:82:40:cb:63:30:11:df:89:90:39:47:16:9c:
6a:66:1a:e6:3e:e1:62:90:ca:3b:9f:e5:b4:6c:74:34:8e:78:
d2:23:9b:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:53:31 2025 by rpki-client