Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
File: h5WLpmHENczSXCBgRi72ANJxnuA.mft (raw, json)
Hash identifier: B1JnuOeKvLwt6j2ZTpz/BQCNYc/6Z27uZMfIKNcvCG4=
Subject key identifier: B8:8E:12:08:94:06:D3:A7:47:D8:26:EE:4C:A6:13:FC:AF:31:D6:62
Authority key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
Certificate issuer: /CN=87958ba661c435ccd25c2060462ef600d2719ee0
Certificate serial: 01958EBC971FE984C05D50B8D4A03DE0A15D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
Manifest number: 1498
Signing time: Thu 13 Mar 2025 09:01:18 +0000
Manifest this update: Thu 13 Mar 2025 09:01:18 +0000
Manifest next update: Fri 14 Mar 2025 09:01:18 +0000
Files and hashes: 1: h5WLpmHENczSXCBgRi72ANJxnuA.crl (hash: uP0niNTPkqHm5nejUBJrFzqcX/TsNfo4wLrY26T1amY=)
2: jQqQfOrb2tEbgL6-n1pYKtKDCGI.roa (hash: urbNu0k2kZWVDcdCEYQ210AYS3ke0pUxaEecPK2agnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:bc:97:1f:e9:84:c0:5d:50:b8:d4:a0:3d:e0:a1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87958ba661c435ccd25c2060462ef600d2719ee0
Validity
Not Before: Mar 13 09:01:18 2025 GMT
Not After : Mar 14 09:01:18 2025 GMT
Subject: CN=b88e12089406d3a747d826ee4ca613fcaf31d662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3b:b2:4f:37:e1:47:9b:79:0e:cd:f5:93:36:
7d:1f:29:78:56:12:63:b9:20:5a:aa:9b:f8:f1:85:
16:1f:01:ac:08:b0:57:c6:25:78:0e:5b:32:12:d9:
6e:cd:74:00:1d:57:aa:6b:ec:4a:ea:1f:5a:68:9b:
17:05:b3:d0:e9:27:cf:96:7b:1b:0a:83:2a:c3:ea:
4c:78:a6:93:75:9f:6d:bb:0f:c1:e6:9d:14:f6:b0:
67:18:8f:27:c6:1b:5a:f7:ff:c9:ea:53:4c:8b:9f:
4c:ce:21:46:2e:f5:19:03:79:a3:a2:aa:7c:1b:22:
a8:8a:c7:50:81:de:94:b1:6f:c6:c7:64:a6:a9:00:
62:8e:f9:3a:99:d4:bc:87:01:96:8b:2c:a3:94:0e:
1f:bf:86:8b:e0:c0:1e:80:81:56:95:ea:7d:14:24:
a5:fb:ac:11:53:8e:b8:5c:05:e5:a5:4a:0b:f8:21:
d2:53:46:c9:8b:b6:39:69:38:35:a2:2a:57:26:7c:
d4:93:45:60:5a:d0:ff:80:09:a8:6c:15:2d:c5:0e:
1d:b8:e3:2f:63:4d:0e:9f:95:a8:1c:1f:78:8d:5a:
94:66:ad:9e:b5:5e:07:2f:d4:26:0b:65:ad:a4:e2:
59:54:a4:34:a6:5f:63:1e:c0:c9:e7:f4:19:6f:2d:
71:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8E:12:08:94:06:D3:A7:47:D8:26:EE:4C:A6:13:FC:AF:31:D6:62
X509v3 Authority Key Identifier:
keyid:87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:96:b7:6b:a4:c9:2b:23:09:09:d0:d1:43:95:91:c9:b8:fa:
82:21:24:62:e3:db:d1:0b:30:a4:2c:2b:b6:f1:6f:e3:72:0c:
7a:1d:13:34:18:33:65:5c:04:b6:d2:b3:50:4b:62:f6:30:e7:
c9:1c:73:4a:bb:a7:13:aa:3d:a1:4b:7f:89:3e:12:e2:3d:05:
8f:08:33:d1:7f:fc:f4:b9:0d:6d:bc:86:dd:f6:20:b0:31:07:
e2:be:16:d7:64:34:e1:1b:5d:f0:bb:ee:ef:11:97:9f:e6:c4:
2a:38:7f:6a:b1:3b:1c:d6:16:82:96:b0:17:a6:97:47:86:c3:
33:de:52:66:49:f5:91:c1:26:30:53:ca:82:14:a1:6b:5c:3b:
4e:fd:f4:a0:6a:03:a0:3c:bb:76:d9:2d:af:8a:2c:86:f1:27:
4a:d7:0f:7f:3b:b4:83:6e:90:78:fd:f7:de:21:ef:df:e3:43:
13:6c:38:3a:0f:09:49:e5:d6:d9:ee:96:6d:21:0f:bd:2f:47:
43:0e:a8:d8:54:3e:75:5a:c4:be:b6:2c:ed:5e:05:50:63:0c:
8e:cf:a1:e4:8f:c0:c5:20:75:bb:57:b2:84:d5:79:54:ed:87:
72:74:d2:1a:7d:6d:cd:ce:50:ba:4e:0c:6b:a1:c4:68:52:3c:
2b:e5:f5:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:05:37 2025 by rpki-client