Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json)
Hash identifier: oYgkgJhDNwOCSKFkWXbsnng2bhW1b7uQHDOKN2f9aLs=
Subject key identifier: B0:37:8C:9A:0A:54:74:89:CC:51:ED:26:2A:03:C6:8D:50:07:14:A9
Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Certificate serial: 01963FC23DB6DFA76B8BD1213D8A1AB1D8DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
Manifest number: 05D3
Signing time: Wed 16 Apr 2025 18:00:16 +0000
Manifest this update: Wed 16 Apr 2025 18:00:16 +0000
Manifest next update: Thu 17 Apr 2025 18:00:16 +0000
Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: d+H4fRFvh0dQKHraIvs3i6jWa/Hc56J/TtUHBd49Piw=)
2: ZYblDAaDwwmnrchNjFrf0zm4tO0.roa (hash: TUJh6mrSVIERTxbeRqv55tj1PiJ2BrobmYQdllbfBL8=)
3: a5ENWfgeJoTdkmkmWh2QDvelWp8.roa (hash: oka6UR7fuDvaS+P0EhzHRaWdX/8yDP3LK7DL0R3JiIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:3d:b6:df:a7:6b:8b:d1:21:3d:8a:1a:b1:d8:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae
Validity
Not Before: Apr 16 18:00:16 2025 GMT
Not After : Apr 17 18:00:16 2025 GMT
Subject: CN=b0378c9a0a547489cc51ed262a03c68d500714a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:28:87:4e:83:ed:07:1a:31:cd:08:f1:ed:d8:
15:92:8f:ab:81:61:2b:00:8a:59:ee:be:79:6e:10:
d3:25:70:48:e7:d7:a9:a0:c7:ef:fb:6d:43:60:ec:
90:90:dc:75:b3:6d:44:66:3b:3c:79:7e:fe:30:db:
e4:f4:ea:9d:78:a0:85:2e:a5:5e:6a:3a:b9:69:0a:
2c:56:f7:c6:d6:71:a8:92:2e:81:cf:66:e6:ab:9c:
64:5b:3b:e8:53:76:5c:7b:e8:14:a4:09:59:c7:4d:
28:47:a1:92:5e:9e:4a:10:03:b1:fa:76:85:4c:72:
4b:73:c8:35:ae:5a:bf:c5:ab:b2:52:93:69:5e:63:
39:19:c6:3e:50:2b:bc:54:e1:32:e3:69:78:2a:a1:
51:55:36:4e:49:37:56:ca:e7:72:11:08:18:6a:34:
c6:4e:dd:30:5f:35:2b:74:62:42:54:9b:4f:7a:e6:
ac:5c:f9:72:71:3f:24:0b:cf:3f:ac:a7:4d:6f:44:
3c:bc:53:6b:69:ed:8c:a3:35:3d:a7:68:b2:2a:c4:
bc:0d:40:5e:db:72:0d:8a:99:f5:03:55:60:c4:da:
31:3e:f1:44:28:58:49:4c:8b:39:cf:39:7e:be:e5:
f6:c9:5f:10:2f:2a:c7:1b:0c:96:0b:40:5c:2e:b8:
41:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:37:8C:9A:0A:54:74:89:CC:51:ED:26:2A:03:C6:8D:50:07:14:A9
X509v3 Authority Key Identifier:
keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:48:6c:24:76:10:3e:8c:81:47:06:4e:9f:2a:02:b8:0b:84:
27:39:29:0a:3b:5b:47:9f:d8:70:f0:3b:0f:5c:70:56:36:8d:
dd:d2:71:8e:b1:8f:8e:9f:bc:51:20:01:be:73:ef:0a:2a:a4:
67:5d:e3:e9:dc:ef:71:bc:4b:4d:bb:8b:70:1d:ff:69:c4:42:
9f:82:dd:99:43:82:07:96:c1:67:44:9b:d0:b6:79:04:72:fd:
27:23:5b:e5:e0:51:5a:5e:8a:74:ee:e1:36:69:68:f2:54:e5:
90:20:a0:0f:f9:bc:21:a4:b7:ee:b3:31:36:0c:4e:4a:aa:33:
80:99:ce:b8:59:4c:27:a2:e4:e7:d7:4d:4c:e6:b0:94:9e:79:
2f:14:3e:6e:f0:02:f6:8b:a5:69:41:49:6f:31:54:a6:78:24:
fd:04:c0:64:61:de:77:12:49:8b:bf:6b:d1:09:af:9f:91:2a:
d2:4a:60:40:a3:4b:32:83:38:cb:d5:90:a9:09:cb:af:26:c9:
8c:3e:fd:78:38:ce:56:4b:be:d0:55:13:81:a1:2d:2e:3d:1b:
98:f3:ab:b6:41:46:63:ec:1a:8e:7c:4d:d5:c0:69:7f:cc:07:
49:c1:99:27:d6:00:29:c6:fa:ef:c9:3c:05:50:72:f5:54:1b:
7c:ab:80:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:23:42 2025 by rpki-client