Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
File: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft (raw, json)
Hash identifier: gDAigag2sFMAkObA7OhHJI139d9tKBYt+k/HrWHOFtM=
Subject key identifier: 3D:DC:5C:BB:E5:D3:6B:9E:BE:8B:41:C1:41:EF:85:33:83:33:DC:78
Authority key identifier: 86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
Certificate issuer: /CN=86c62c6962ea33029b480260989e1851c3252171
Certificate serial: 0196594B67BB8F030D2E784C156383F2637E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
Manifest number: 90
Signing time: Mon 21 Apr 2025 17:00:35 +0000
Manifest this update: Mon 21 Apr 2025 17:00:35 +0000
Manifest next update: Tue 22 Apr 2025 17:00:35 +0000
Files and hashes: 1: hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl (hash: hRMFDysnaMgnAEiLQPIXRlU/LD/wetCAooeyHMR42fE=)
2: is7DkK81PMh7JZG7-MMXvu0KAJc.roa (hash: 5AryV0mRq30AxQOgSKEEzO83i7o3Dx9gPE05wVnrsnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 17:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:4b:67:bb:8f:03:0d:2e:78:4c:15:63:83:f2:63:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86c62c6962ea33029b480260989e1851c3252171
Validity
Not Before: Apr 21 17:00:35 2025 GMT
Not After : Apr 22 17:00:35 2025 GMT
Subject: CN=3ddc5cbbe5d36b9ebe8b41c141ef85338333dc78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:8c:6c:77:1a:8c:20:25:c3:1d:5f:eb:95:
35:2c:c9:1f:dc:b6:34:4b:56:f4:a6:43:ee:1d:78:
a4:41:86:3d:a7:cd:fa:1d:d8:ce:c7:b4:24:1b:e5:
39:bb:b4:09:20:8f:51:18:05:8f:f3:f8:0d:e7:06:
7f:6f:b9:26:2f:94:d0:e0:c1:7b:7a:ec:26:95:7f:
88:4a:e9:13:7b:73:5a:ee:c0:35:95:d8:df:80:c2:
9f:85:ee:0a:25:41:3b:80:6f:00:49:db:6c:2d:e9:
87:b4:00:27:cd:b9:87:95:4b:fe:84:f6:c0:a8:c2:
60:63:87:da:0b:8c:7c:27:76:74:ba:e7:de:82:5e:
87:d1:e4:9d:79:87:a1:0e:0a:f3:96:17:7d:5a:26:
ce:a4:f5:0f:5e:a8:09:d6:74:d0:72:e8:27:af:93:
38:99:09:11:0a:04:b4:d0:09:3f:6e:b8:6c:5c:8f:
2f:10:3d:42:4c:07:71:f3:77:cb:f1:ac:54:02:4b:
59:14:81:ea:04:cf:68:99:b0:9b:45:a3:1f:e6:77:
13:24:bb:4d:e9:e9:97:7c:2e:c5:94:a0:15:3d:47:
df:c8:c2:47:c2:9c:07:80:55:aa:2f:29:7b:3e:cf:
5a:c4:cf:a5:69:ef:b0:54:5e:5a:e7:3a:e7:b4:30:
e9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:DC:5C:BB:E5:D3:6B:9E:BE:8B:41:C1:41:EF:85:33:83:33:DC:78
X509v3 Authority Key Identifier:
keyid:86:C6:2C:69:62:EA:33:02:9B:48:02:60:98:9E:18:51:C3:25:21:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/375f04-3eb2-4d9b-90fd-249bb461ba5b/1/hsYsaWLqMwKbSAJgmJ4YUcMlIXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:99:e1:45:bd:03:14:d7:e7:86:d3:57:73:cf:7a:16:96:0d:
76:8c:00:e3:8a:ac:30:92:71:67:77:2f:56:b1:a2:88:c3:ba:
88:59:b0:94:94:ad:30:40:78:87:02:18:88:2d:82:ea:60:4e:
41:2a:6a:34:35:55:bb:39:35:a6:df:d3:86:1a:65:b7:84:9a:
e0:fb:9d:36:2e:47:82:9c:7b:cf:07:18:cb:15:ba:c3:af:01:
94:55:f5:0b:a5:6c:ea:4d:bd:3e:60:d8:db:4c:53:a4:8a:40:
92:dd:bc:ad:63:0f:4b:1c:61:1e:b5:9c:10:3f:ff:1e:1c:3e:
c1:4e:0b:08:a8:da:55:97:6f:d3:74:6a:f9:53:25:f6:b1:d4:
b5:ac:a5:cc:21:98:fa:59:c9:a6:b0:c7:07:cf:41:0e:41:ef:
89:60:27:2c:7f:f2:26:19:c9:16:ac:fe:c4:21:dc:b0:9f:df:
df:8b:8b:4f:87:45:65:d9:b2:cd:82:c4:c9:80:de:97:fe:84:
f4:c8:67:be:9e:c5:e5:42:0b:73:b7:18:09:3f:66:71:fa:b0:
eb:08:15:ed:62:59:83:5b:e7:f0:fe:de:c2:87:16:73:04:ce:
0b:4b:49:f3:0c:38:58:eb:e4:61:6b:d6:d9:ad:11:62:52:97:
6a:83:b0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:00:24 2025 by rpki-client