Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: t9uDIz2SpznjSTJ5d2GMyxN8kIw1mFOEPNF7OhdwvG4=
Subject key identifier: 7E:D1:21:A2:85:08:51:17:9C:78:EE:C0:C9:65:56:F7:48:C6:B3:9D
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 019658A6B67473521F2F5081FAA44749FFA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 14:00:42 +0000
Manifest this update: Mon 21 Apr 2025 14:00:42 +0000
Manifest next update: Tue 22 Apr 2025 14:00:42 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: aLBwKb/Gp/Pp3jD3BF+E82IiWu5xbs1VyIAfsgCE23g=)
2: vNgalWxKyCFGqWuDm-_4-hQvAN8.roa (hash: dwnMTxgyRJ4mgwfPlrMhwXTTLitc5c5TREsY1/YmwBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:b6:74:73:52:1f:2f:50:81:fa:a4:47:49:ff:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Apr 21 14:00:42 2025 GMT
Not After : Apr 22 14:00:42 2025 GMT
Subject: CN=7ed121a2850851179c78eec0c96556f748c6b39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f7:9a:0d:08:8f:df:f8:d5:e6:47:94:40:c3:
d4:60:58:5b:bf:02:9b:e8:d3:8f:99:22:85:64:54:
e5:c6:bb:f2:80:99:7c:e3:20:0b:72:56:77:6a:f1:
09:58:05:d8:d5:1a:36:5b:34:48:d4:ea:72:04:ef:
e9:98:fa:74:a9:58:44:da:7f:2a:88:4c:1b:f5:53:
59:c1:f4:2d:88:ff:46:5c:ea:5e:1e:8d:bf:74:2b:
37:37:13:42:a2:2f:5a:bb:ab:98:b3:4c:5b:d8:7f:
f3:d9:b6:89:6a:fd:e7:2e:c8:9c:b1:d0:4e:cb:16:
4b:bd:5d:fc:9f:cf:31:e7:46:6a:dc:5b:ff:4d:0c:
5b:cd:6f:4f:aa:3e:4e:48:bb:ab:81:c6:8a:f3:ed:
0f:55:3d:49:c9:70:dc:51:12:13:05:3c:c4:a1:3a:
33:6b:f5:eb:7e:8a:f0:c3:1b:a1:1e:1f:5b:67:bf:
ce:56:b0:80:a6:83:00:34:ef:17:47:77:2e:bf:f4:
b7:ea:11:3c:f8:47:c7:79:85:71:81:22:39:f8:45:
9d:54:e1:69:61:0e:93:30:89:4a:59:08:aa:7e:f0:
4b:a7:fa:2d:75:34:ed:7a:0d:48:68:a2:49:4e:93:
40:7f:08:a5:50:70:17:5c:25:f4:13:63:89:08:86:
6a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D1:21:A2:85:08:51:17:9C:78:EE:C0:C9:65:56:F7:48:C6:B3:9D
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:2b:13:7f:fa:ea:3b:5a:9b:d8:e5:9a:68:40:2d:1e:fb:09:
0d:7b:7a:fb:60:e3:35:fc:9e:d9:fb:d6:78:6f:79:01:bd:a7:
78:b8:22:4f:f5:41:c3:06:21:f4:72:e8:43:64:c0:5f:ae:bc:
ab:47:2b:85:5b:33:fc:41:f5:4d:8b:ef:38:26:55:0b:16:06:
5a:c7:e3:a8:e7:06:d3:cb:77:c2:7e:04:7f:1b:35:ec:6d:86:
01:f9:a6:51:a3:72:ac:29:48:c8:f0:e2:d1:c9:53:30:3d:80:
2e:f6:39:25:f7:01:2c:b9:ed:cf:c5:f4:29:03:76:d0:56:01:
9c:b1:81:2a:46:c8:b3:b3:bf:28:17:81:92:d0:1d:c0:e5:9d:
0d:51:db:01:3a:f6:3d:d4:a0:bf:80:f0:a3:e1:ee:15:a7:14:
58:b2:a9:24:be:51:08:fd:55:5d:58:01:a0:46:6d:c4:7a:46:
6c:8d:e5:85:95:89:b8:80:c5:bb:01:2e:00:de:62:04:c0:1a:
a8:33:03:1e:6c:dd:ce:dc:78:4a:0f:88:f5:fc:c3:ed:fe:0d:
dd:bb:5b:d4:f0:72:85:37:13:81:0c:fe:8c:6a:8a:c0:12:50:
d2:1a:a3:9b:21:d0:97:10:c8:db:a0:f5:b5:f4:44:c8:cb:e2:
b1:08:a4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:09:34 2025 by rpki-client