Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json)
Hash identifier: 5PNvq6fnewR5S8eBigPT5Q0c1Qcl3W8rDtnu6dn17L0=
Subject key identifier: FF:1E:2F:8D:6B:D0:0D:E0:27:DB:54:76:33:79:71:94:66:AB:A3:87
Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Certificate serial: 01958BF27803B63579174F6FEC84D769EFF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
Manifest number: 06A9
Signing time: Wed 12 Mar 2025 20:01:18 +0000
Manifest this update: Wed 12 Mar 2025 20:01:18 +0000
Manifest next update: Thu 13 Mar 2025 20:01:18 +0000
Files and hashes: 1: GrVfgYYa0s5gLsRQp5P5vAQeHlE.roa (hash: Twu1XyErZ1bzBOtE8/HK3XbggJvMpOYaRXT376BODWE=)
2: XUIGCJfhGsoP5FdVAQmT9lUNYuc.roa (hash: hjmwDLHRKf4c787nov0R6bRVLxtqmM1uwueYf+NK6fU=)
3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: wjd6A126QlQvEfGsy97+ndoZDaUD+AKqiVlAPtNYohQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:78:03:b6:35:79:17:4f:6f:ec:84:d7:69:ef:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904
Validity
Not Before: Mar 12 20:01:18 2025 GMT
Not After : Mar 13 20:01:18 2025 GMT
Subject: CN=ff1e2f8d6bd00de027db54763379719466aba387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:56:b5:f1:0f:62:49:01:30:0e:59:3f:48:f2:
b8:56:03:38:2e:c6:08:8f:3a:ba:c0:da:4a:6f:02:
51:96:d3:77:3e:5a:89:b9:c1:54:b3:8f:9c:ff:9f:
e8:ef:db:4d:6e:af:40:e4:e1:e6:e0:57:64:a3:39:
da:d5:81:fa:b1:10:9f:aa:45:8d:ea:b1:d9:d8:c5:
3d:a9:9e:f1:10:87:10:13:cc:b2:a8:0a:7e:47:d2:
e1:f6:9e:96:a2:3a:e8:6d:a7:f2:e1:bb:04:89:04:
16:32:b5:6a:dc:7f:3c:91:e2:ad:51:e8:49:b8:70:
94:09:0a:ea:e5:29:2a:25:e5:63:21:b5:96:dc:53:
a3:68:a4:d2:cd:dd:e1:77:d5:73:3e:2e:ef:ce:94:
72:a9:b3:83:1d:f5:a4:ca:08:6e:54:94:3b:76:cc:
a1:f5:f8:83:89:3b:23:bc:88:b6:38:cc:44:da:73:
77:8e:42:06:b3:7f:a2:28:b4:a5:ff:7c:a3:cb:ea:
40:19:0d:8d:91:b8:f9:59:9a:1f:79:3a:07:bf:d8:
4f:66:a3:15:3b:46:d2:5a:e6:9a:d4:4a:51:93:bf:
a5:c3:4b:af:1e:7d:a9:02:fb:8b:a7:45:40:72:98:
00:fc:1b:a5:6b:88:11:13:61:ae:6b:5d:6d:d2:01:
7c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1E:2F:8D:6B:D0:0D:E0:27:DB:54:76:33:79:71:94:66:AB:A3:87
X509v3 Authority Key Identifier:
keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:2e:4b:24:a9:1f:63:37:91:f6:8d:2a:28:a7:2d:25:e2:ba:
58:39:59:ec:b4:d4:58:ee:83:79:08:c7:b5:83:c4:f5:87:5c:
73:71:f9:ce:d5:d6:20:53:b2:fa:ea:a4:59:03:14:f7:3b:40:
1e:fc:01:1a:55:8b:63:ae:78:d4:e2:57:c6:53:17:a2:1c:16:
3e:c4:db:34:b7:59:1a:55:19:41:c3:8c:db:fe:15:1b:9d:36:
34:72:ca:48:d6:a8:6b:66:d8:7c:84:34:39:f6:e0:36:3b:d9:
0f:15:55:be:a8:06:d2:ea:57:d4:51:2b:a4:f8:c3:4d:c0:b8:
18:f7:18:58:61:a1:ae:73:9f:89:33:c9:b7:4e:e2:57:38:af:
42:f2:c9:9c:35:d8:38:55:6e:1a:12:d3:8c:b7:3a:37:e1:2d:
00:7d:09:e8:df:1b:c3:e9:2a:b2:65:13:7e:52:97:5c:40:6b:
57:83:19:7d:ae:6b:09:b6:c1:3f:dd:89:ed:f2:f5:5f:39:d0:
da:9f:1e:df:3d:ea:22:a3:82:04:bc:68:51:ae:a5:fb:80:b0:
45:2b:67:51:db:10:96:f8:ec:62:e6:65:52:ba:a2:68:25:df:
df:1e:e0:b7:40:bf:25:cc:82:5a:fe:7f:5b:0a:ad:fe:5d:a6:
5d:b2:18:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWL8ngDtjV5F09v7ITXae/0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MjBiNzdkMDM1YjkxMmZmYTQwNmRmZGRmMjllM2EyOTYz
ZTY5MDQwHhcNMjUwMzEyMjAwMTE4WhcNMjUwMzEzMjAwMTE4WjAzMTEwLwYDVQQD
EyhmZjFlMmY4ZDZiZDAwZGUwMjdkYjU0NzYzMzc5NzE5NDY2YWJhMzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFa18Q9iSQEwDlk/SPK4VgM4LsYI
jzq6wNpKbwJRltN3PlqJucFUs4+c/5/o79tNbq9A5OHm4Fdkozna1YH6sRCfqkWN
6rHZ2MU9qZ7xEIcQE8yyqAp+R9Lh9p6Wojrobafy4bsEiQQWMrVq3H88keKtUehJ
uHCUCQrq5SkqJeVjIbWW3FOjaKTSzd3hd9VzPi7vzpRyqbODHfWkyghuVJQ7dsyh
9fiDiTsjvIi2OMxE2nN3jkIGs3+iKLSl/3yjy+pAGQ2Nkbj5WZofeToHv9hPZqMV
O0bSWuaa1EpRk7+lw0uvHn2pAvuLp0VAcpgA/Bula4gRE2Gua11t0gF8eQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP8eL41r0A3gJ9tUdjN5cZRmq6OHMB8GA1UdIwQY
MBaAFIUgt30DW5Ev+kBt/d8p46KWPmkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mMDQ2ODYtMzU5Yi00NzQ0LWI5MzAt
MWFmMjc5NjI1ZmQwLzEvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9mMDQ2ODYtMzU5Yi00NzQ0LWI5MzAtMWFmMjc5NjI1ZmQw
LzEvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwS5LJKkf
YzeR9o0qKKctJeK6WDlZ7LTUWO6DeQjHtYPE9Ydcc3H5ztXWIFOy+uqkWQMU9ztA
HvwBGlWLY6541OJXxlMXohwWPsTbNLdZGlUZQcOM2/4VG502NHLKSNaoa2bYfIQ0
OfbgNjvZDxVVvqgG0upX1FErpPjDTcC4GPcYWGGhrnOfiTPJt07iVzivQvLJnDXY
OFVuGhLTjLc6N+EtAH0J6N8bw+kqsmUTflKXXEBrV4MZfa5rCbbBP92J7fL1XznQ
2p8e3z3qIqOCBLxoUa6l+4CwRStnUdsQlvjsYuZlUrqiaCXf3x7gt0C/JcyCWv5/
Wwqt/l2mXbIY8w==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:48 2025 by rpki-client