Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
File: hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft (raw, json)
Hash identifier: EHJFaF1eF2LcHn9DYgP/hFcbLpF/aWVR9IHMaPnPa9Q=
Subject key identifier: AE:CD:39:C0:02:68:55:5B:D0:FC:63:4C:8B:0C:75:05:32:F4:BB:63
Authority key identifier: 84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
Certificate issuer: /CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Certificate serial: 01965EA878AF9E0FCDE299E23B9AF062FEDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
Manifest number: 0F3F
Signing time: Tue 22 Apr 2025 18:00:21 +0000
Manifest this update: Tue 22 Apr 2025 18:00:21 +0000
Manifest next update: Wed 23 Apr 2025 18:00:21 +0000
Files and hashes: 1: hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl (hash: 0tSaJ+tYmh3JQbQC8LQX58OBF3ao3TuTfM2RVF6LHDY=)
2: lJmvvXMVP9NKaYHWsyd-BJftiCc.roa (hash: eBBiq38eKi7tQKUMPizst8SumCc0cZEMghR739L+M0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:a8:78:af:9e:0f:cd:e2:99:e2:3b:9a:f0:62:fe:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84284d67c9abaf6fa8fea6142a5b2558c9cbcf74
Validity
Not Before: Apr 22 18:00:21 2025 GMT
Not After : Apr 23 18:00:21 2025 GMT
Subject: CN=aecd39c00268555bd0fc634c8b0c750532f4bb63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:fa:20:2e:3b:85:f8:f0:4f:b9:0b:2b:4d:
90:f3:ac:dd:07:fb:35:63:2d:ff:2e:a4:f1:a2:4e:
55:89:82:6c:69:75:9f:71:65:9d:d2:71:b9:af:c7:
13:f9:69:74:bd:4b:14:ad:fd:22:6c:ae:cf:2a:48:
64:c3:5b:19:9b:25:36:aa:ee:12:39:7c:b8:40:e9:
b7:2f:f4:bb:b7:54:fa:59:10:53:a7:ec:19:bc:05:
f7:3d:bb:90:57:a1:e5:ab:0c:e7:6b:22:e8:78:55:
dd:9f:a2:c8:03:df:26:9f:28:32:bc:3d:24:70:90:
69:8c:6f:89:c4:04:0f:ba:6b:98:16:b3:2d:12:57:
15:56:12:e9:c2:b8:cd:f0:70:59:62:ae:67:48:b3:
76:27:0d:f8:c0:95:be:28:a7:4a:f0:60:9b:2c:70:
1e:0a:cf:09:7e:63:98:a1:3d:c6:2c:3e:10:16:a0:
c0:ff:27:8f:75:62:af:15:c1:64:29:fa:2d:fc:d1:
31:ba:a4:79:82:6f:2d:f2:ad:70:5b:31:40:85:bb:
42:8a:aa:c6:05:8b:43:66:f2:60:10:ad:5e:b6:e8:
a3:56:9f:39:0e:8a:14:80:b6:d0:ab:73:fa:37:c6:
68:b7:5f:48:47:d7:96:65:c9:6b:e3:7d:ef:24:43:
43:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CD:39:C0:02:68:55:5B:D0:FC:63:4C:8B:0C:75:05:32:F4:BB:63
X509v3 Authority Key Identifier:
keyid:84:28:4D:67:C9:AB:AF:6F:A8:FE:A6:14:2A:5B:25:58:C9:CB:CF:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hChNZ8mrr2-o_qYUKlslWMnLz3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/30af46-27ed-4482-840e-65f856f1249e/1/hChNZ8mrr2-o_qYUKlslWMnLz3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:45:98:b3:88:80:5c:0f:a1:f0:a7:ee:55:56:cb:c6:c6:e8:
67:7c:4d:9f:fd:96:a3:ff:d5:12:da:4e:57:b3:d8:40:d2:5f:
76:f4:e5:a5:70:9d:70:bf:91:5b:3d:37:ff:b5:54:e3:b5:01:
ce:e1:db:b8:e7:34:bd:a6:26:f3:e8:08:fa:83:3d:9e:d7:da:
f9:94:41:4e:67:ec:20:51:55:de:c0:bf:9a:67:14:70:fc:e2:
31:2a:7f:57:f1:d3:22:09:2f:98:98:be:f7:a5:0c:5e:48:b8:
ba:4b:7c:6a:53:f9:fc:09:1b:aa:87:3e:05:26:da:7d:0c:5c:
79:a9:78:2a:ab:96:4e:df:50:79:5c:0a:b1:5c:39:56:c5:25:
34:8d:c6:f5:51:63:11:2e:0f:6c:b0:ea:64:89:c9:0a:ef:bd:
9d:f8:f2:58:7e:35:4c:a3:58:9f:0b:07:10:2d:f5:f7:57:02:
90:66:8c:2d:6e:20:28:7d:53:eb:74:e0:66:79:53:98:ea:b7:
a6:b4:86:c8:d2:28:71:a3:a1:ed:6d:d9:fa:70:42:6d:85:20:
38:7d:30:e5:61:d5:ed:a6:66:5a:04:86:17:7f:9e:cd:d8:9a:
20:32:c4:b8:5f:b6:9f:c2:48:26:51:12:e6:38:f6:ec:04:af:
e4:57:50:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:31:16 2025 by rpki-client