Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json)
Hash identifier: IEFCIxCkuoX6iIX+cDzpgusIu/LEojNLHh6wDIIvEBk=
Subject key identifier: A0:08:25:13:78:0C:03:B4:A5:37:CF:C0:32:25:9F:5E:10:FB:ED:DD
Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2
Certificate serial: 0196534A4A8A8F4015B229E4CAC0513FE53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
Manifest number: 1068
Signing time: Sun 20 Apr 2025 13:01:39 +0000
Manifest this update: Sun 20 Apr 2025 13:01:39 +0000
Manifest next update: Mon 21 Apr 2025 13:01:39 +0000
Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=)
2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: /3YtzKRMtQbF+MDilMqnUa1IfwuU+445Q8Q6YuIQGN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:4a:4a:8a:8f:40:15:b2:29:e4:ca:c0:51:3f:e5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2
Validity
Not Before: Apr 20 13:01:39 2025 GMT
Not After : Apr 21 13:01:39 2025 GMT
Subject: CN=a0082513780c03b4a537cfc032259f5e10fbeddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:83:e2:29:02:c5:ba:c8:67:1e:15:cd:4d:b2:
24:86:2a:d8:13:20:1a:b2:46:db:2a:7a:1e:d6:3f:
9d:6e:31:fa:08:ff:a7:1e:c9:64:3f:e2:0a:40:93:
22:4d:bb:f7:52:b1:89:6a:b4:f9:54:a2:ac:43:64:
8b:ae:35:f3:85:6b:3f:7a:a8:86:a8:09:65:9d:2f:
7d:79:59:4d:78:a9:78:43:f3:84:6a:28:7f:bb:27:
57:c7:0e:4c:97:b0:9b:80:4c:a8:6c:2d:0c:9f:3a:
3d:84:6a:05:46:be:de:f8:6d:07:a3:2f:9d:53:a6:
8a:07:33:36:58:50:de:1b:30:96:92:d7:95:d4:6e:
87:e7:48:74:11:3a:ce:3e:29:45:9d:08:e9:a0:23:
5b:4a:ea:46:47:de:15:9c:b1:36:a2:ad:33:ad:9d:
3c:98:82:45:5b:2f:b6:50:1c:88:0e:46:80:f5:8a:
15:8b:3e:0a:97:de:4f:0d:e4:67:82:b8:fb:8c:bf:
6c:e4:5c:f6:2a:d6:e4:8e:90:b6:b7:8c:14:80:58:
fe:3d:44:0f:a5:ba:d3:5e:3f:b7:1a:32:be:30:21:
9f:6f:1a:38:b6:a2:cc:80:c0:f3:6b:86:80:8f:06:
39:b6:e9:57:d2:81:e0:65:8d:a2:1c:77:89:92:42:
1b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:08:25:13:78:0C:03:B4:A5:37:CF:C0:32:25:9F:5E:10:FB:ED:DD
X509v3 Authority Key Identifier:
keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:7a:10:8b:c4:e8:24:5b:20:6b:3a:7f:f5:a4:1a:a3:91:a2:
76:94:91:c9:8a:a0:4d:e7:ad:0a:16:91:66:8f:7d:5b:d2:eb:
5e:08:48:07:2d:c5:21:0e:30:eb:4e:27:0d:91:13:41:18:ec:
f7:70:61:54:79:ff:90:74:f5:ad:e0:2f:cf:82:c9:a4:c1:34:
53:fe:ba:6f:a3:5e:a7:52:12:8d:f4:a5:90:f7:01:14:e5:3b:
74:fe:88:5a:c5:86:06:bd:c2:8b:7c:58:c9:22:7e:34:1a:4b:
fd:88:17:f9:97:6b:a2:16:00:2b:9b:30:7a:b3:54:c9:be:d8:
0a:07:88:9e:c6:64:f5:e4:da:3e:33:49:ca:93:26:24:64:f9:
70:49:7a:10:72:2a:83:ce:74:af:1d:ae:70:f8:4a:5e:22:2d:
ed:e9:c2:93:d8:6f:3d:53:2d:dc:f8:dd:74:ff:ed:88:2a:71:
39:94:b7:aa:b6:3d:b0:93:83:06:95:ef:78:d7:9f:63:ff:12:
c8:40:a7:38:c4:86:02:f8:f4:1c:80:6a:83:e4:59:c6:48:55:
41:5a:0e:da:f6:eb:85:d7:6f:ef:90:ac:ad:23:77:5b:34:e9:
ad:b0:8f:2c:a5:38:99:bc:e5:37:be:f9:4e:ba:93:9e:36:11:
d2:46:36:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:32:24 2025 by rpki-client