Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
File: hRwoH1drQ6HKuVPJIEHOlZknDHg.mft (raw, json)
Hash identifier: Rof3pa4tKgX17QmTJpR7JEPEvGFeAsFLoUIxwR2LANc=
Subject key identifier: E5:B0:10:CF:A4:E3:A3:DE:2F:75:6E:FC:23:19:5F:4D:D0:43:02:C1
Authority key identifier: 85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
Certificate issuer: /CN=851c281f576b43a1cab953c92041ce9599270c78
Certificate serial: 01964AB3FAC79B1A0CAB5717B0A598DE62F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
Manifest number: 137F
Signing time: Fri 18 Apr 2025 21:00:31 +0000
Manifest this update: Fri 18 Apr 2025 21:00:31 +0000
Manifest next update: Sat 19 Apr 2025 21:00:31 +0000
Files and hashes: 1: XhZd4AXcprYaSWJWAkCvII9n7bo.roa (hash: +WoaFZAXvgLhbONkinxfr9JdPcFsQuGimoN13TlQ0XQ=)
2: hRwoH1drQ6HKuVPJIEHOlZknDHg.crl (hash: cDgGAoFUG/y7oYrqHxzqldNQzh2irPpbpbBbvCj9ZHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:b3:fa:c7:9b:1a:0c:ab:57:17:b0:a5:98:de:62:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851c281f576b43a1cab953c92041ce9599270c78
Validity
Not Before: Apr 18 21:00:31 2025 GMT
Not After : Apr 19 21:00:31 2025 GMT
Subject: CN=e5b010cfa4e3a3de2f756efc23195f4dd04302c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3f:d1:3b:0e:2d:81:1a:c3:29:a4:2e:bc:38:
87:1a:32:a8:63:f2:6c:9b:7e:8e:33:ff:7f:9a:9b:
6f:9d:10:e2:dc:ee:fd:c3:2b:e6:b5:98:29:34:10:
54:a7:3f:0b:1d:82:bf:77:80:2c:62:00:0a:45:5d:
87:c0:fb:2e:a4:8b:de:94:9b:1b:59:99:bb:73:9c:
12:92:d1:01:8f:68:e2:f2:76:29:b5:94:b3:0d:98:
c1:9e:e5:91:56:f6:e1:c7:a4:7d:a1:de:80:f5:a5:
ba:a8:46:4f:1d:79:4b:aa:64:b1:b2:37:56:a3:ea:
56:30:99:88:27:12:99:05:43:7b:75:af:0a:49:88:
30:27:a1:58:1d:97:35:c8:b3:22:b6:4b:9a:70:33:
68:7e:86:72:a0:49:4d:c7:97:32:da:9a:b6:f6:a4:
85:9c:8f:8e:6a:de:f4:3b:fc:3f:83:bb:dc:0d:ab:
29:ad:7d:e8:49:5c:7f:00:29:67:d7:26:b9:ba:fe:
57:a5:6f:b7:cd:2e:18:ec:02:41:f3:8c:02:90:11:
33:48:d9:69:ec:fc:22:54:be:36:99:2a:cd:8d:52:
dc:92:73:52:e5:b5:19:95:ee:b6:ad:48:36:87:bf:
1e:4b:5d:36:a5:61:74:4d:a4:8d:d7:41:fc:3a:f3:
01:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B0:10:CF:A4:E3:A3:DE:2F:75:6E:FC:23:19:5F:4D:D0:43:02:C1
X509v3 Authority Key Identifier:
keyid:85:1C:28:1F:57:6B:43:A1:CA:B9:53:C9:20:41:CE:95:99:27:0C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hRwoH1drQ6HKuVPJIEHOlZknDHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4a68a7-dc31-40fa-a110-91d56200baf4/1/hRwoH1drQ6HKuVPJIEHOlZknDHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:73:d6:19:68:76:bc:9f:a8:f0:37:3c:63:b7:b6:3f:27:b2:
5a:8c:d8:bf:c5:59:6a:3a:7b:4d:15:a5:40:eb:9c:d5:9f:0b:
09:1d:11:98:49:e4:64:fd:0f:2e:c5:64:03:31:4e:fd:68:c5:
c2:90:96:0d:28:53:0a:56:28:53:df:b7:2a:8d:01:ee:58:cc:
70:af:6d:c5:b8:dc:49:3c:04:2c:e1:c8:a0:5d:b9:cc:69:83:
80:bb:d6:31:63:39:23:ab:9a:ee:6e:a9:93:28:34:fe:0b:e6:
60:e6:30:d7:04:8a:f0:13:d7:fc:12:f3:65:b6:76:2d:a7:32:
c9:01:c3:ed:26:50:83:4e:16:7b:c3:41:ac:b9:c7:76:b2:bb:
da:e4:d4:d8:bb:c8:f2:96:d7:cc:61:7a:cd:48:76:29:bf:54:
36:3a:3b:3d:0d:98:a4:dd:81:4f:c8:d1:df:29:66:50:69:d4:
f3:2c:e2:19:d9:77:62:bd:1d:37:41:5f:6f:fc:b3:33:81:5b:
5e:69:1a:d2:d4:11:bb:e0:de:fa:6f:f9:d7:5b:2c:7a:b4:b0:
ae:f9:5c:e4:89:e3:c7:c4:99:14:4f:ea:f3:15:b7:c3:fb:1c:
a6:f7:e7:02:f9:ce:b3:0b:a0:0b:ab:05:49:e3:ea:16:4d:8f:
a3:d2:3c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:53:37 2025 by rpki-client