Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
File: j_he_yRIxzZG41Sv6mQbz3nnx_k.mft (raw, json)
Hash identifier: zlCCUeih/Kw9Uej4qqwnubRnegn+p6rOqwkB562cCf4=
Subject key identifier: 54:D0:66:47:9A:3E:29:6A:3A:AB:A8:54:87:B8:D9:F3:95:C1:DF:C2
Authority key identifier: 8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
Certificate issuer: /CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Certificate serial: 01958C61358E9DB2C7FE5D355C7B5A032D5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
Manifest number: 03F2
Signing time: Wed 12 Mar 2025 22:02:15 +0000
Manifest this update: Wed 12 Mar 2025 22:02:15 +0000
Manifest next update: Thu 13 Mar 2025 22:02:15 +0000
Files and hashes: 1: izDgJyT_jFs6Afm1vFmx3IUq128.roa (hash: +piNMelo8kmyTOhWUH5qriIcmuElNVknleJSz/MJ2T8=)
2: j_he_yRIxzZG41Sv6mQbz3nnx_k.crl (hash: 0D3BNvPc01YVpE1VAVNVMBQeCbB6SwScMdohXQKqN+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:61:35:8e:9d:b2:c7:fe:5d:35:5c:7b:5a:03:2d:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff85eff2448c73646e354afea641bcf79e7c7f9
Validity
Not Before: Mar 12 22:02:15 2025 GMT
Not After : Mar 13 22:02:15 2025 GMT
Subject: CN=54d066479a3e296a3aaba85487b8d9f395c1dfc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:cc:22:92:13:09:d8:49:b8:27:d4:a2:88:11:
e8:67:43:e7:88:0b:12:bf:87:68:9c:6f:c7:cb:b4:
16:81:b5:2f:20:ee:e5:9a:eb:f5:5a:b3:70:f7:4a:
6d:26:bd:2d:f7:85:30:20:6d:ff:80:2e:e4:6d:16:
04:1c:44:c2:9b:6f:43:ac:3b:88:15:c5:94:2d:b5:
89:64:8f:76:ea:9d:1f:55:e7:58:5d:84:31:53:bc:
50:5b:25:90:69:89:d7:b6:8b:8b:19:62:5d:e4:45:
78:fc:54:07:3a:87:77:ca:a8:c0:dc:15:7d:21:ff:
d0:c5:31:ea:48:e5:fe:65:7c:16:a4:5e:f4:7f:1c:
96:ee:b8:84:ca:6f:78:29:24:ba:68:50:06:f6:a1:
64:8f:4f:76:ae:cf:bc:c7:65:6c:0a:44:47:41:65:
20:71:dd:9f:cb:14:4d:05:db:06:82:7c:18:56:7e:
fb:d2:fe:97:5c:1e:6e:b0:d8:d6:d2:3e:e5:da:98:
2d:89:69:79:58:96:ad:8e:ce:b5:c7:d2:d8:66:e6:
db:c6:29:d1:1c:ad:dd:cb:69:69:83:8c:a7:12:1b:
9c:1f:2d:73:03:90:ca:4a:d3:9b:fa:4b:6e:8d:82:
5f:71:0d:da:8c:22:fa:9a:80:a5:6f:d6:c6:f3:af:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D0:66:47:9A:3E:29:6A:3A:AB:A8:54:87:B8:D9:F3:95:C1:DF:C2
X509v3 Authority Key Identifier:
keyid:8F:F8:5E:FF:24:48:C7:36:46:E3:54:AF:EA:64:1B:CF:79:E7:C7:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_he_yRIxzZG41Sv6mQbz3nnx_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9fe53d-eb4e-4e6b-9022-e322087870d2/1/j_he_yRIxzZG41Sv6mQbz3nnx_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:37:34:9a:6d:98:7d:1d:f2:52:73:8e:46:05:37:19:51:43:
67:54:b6:11:51:54:df:d7:78:62:4e:25:79:8b:34:72:3b:f3:
0b:41:3f:30:eb:41:db:04:21:17:d0:aa:6c:ef:59:e3:80:7d:
a6:8f:f0:93:25:70:9d:8e:8f:b5:5a:aa:7c:0a:a2:3d:2d:45:
24:dd:22:ee:78:78:f2:cd:b6:a9:d4:27:58:4c:ab:2c:d3:34:
56:fd:22:d1:94:6a:a9:2a:d3:bd:db:79:57:fe:d9:6f:55:d5:
96:e9:e7:d2:07:6b:b5:57:6a:9d:83:fb:f6:92:74:6b:82:d7:
4f:46:81:99:65:69:11:24:a8:3c:09:40:15:f4:29:b7:ab:49:
3a:93:c5:39:f8:10:c7:a7:c4:64:b0:69:f3:2e:c9:b8:c2:e7:
a2:9f:9a:3b:69:40:05:7d:bf:b2:3c:0e:8f:c6:f0:4b:65:c6:
6d:fe:be:de:0f:13:cb:79:5a:c6:cf:81:6e:43:b6:08:6c:a5:
2f:de:95:75:e2:36:9b:fd:0d:13:31:cb:1a:91:bb:42:c3:ac:
9d:70:42:b2:46:bf:30:b3:2b:bd:30:de:31:f5:d9:55:87:19:
34:d1:b5:e1:13:51:72:1f:1f:48:0f:eb:8c:9a:29:93:27:5c:
d3:d2:03:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:52 2025 by rpki-client