Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json)
Hash identifier: SHWU5APVynofl+EDSM0yz3LX5+P3bk303DRjyg5HnJE=
Subject key identifier: 02:FD:E2:B0:01:AD:07:4E:2C:C2:CA:E0:B0:6E:F2:3F:7A:9B:6B:45
Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Certificate serial: 019652DB707C8925CE6E6A7848CEFE16CD35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 11:00:34 +0000
Manifest this update: Sun 20 Apr 2025 11:00:34 +0000
Manifest next update: Mon 21 Apr 2025 11:00:34 +0000
Files and hashes: 1: RIDaaDvlCW6kZ_Qmkvg7iHhvkxs.roa (hash: TtEPT7gUdS6PVf0+fJoFxhyGOnl72shQIlFVnXWjJd4=)
2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: LfmFDwRcKTcdI8+5tpZ5ioPNYucKfRsA/EsDEwmGU8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:70:7c:89:25:ce:6e:6a:78:48:ce:fe:16:cd:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5
Validity
Not Before: Apr 20 11:00:34 2025 GMT
Not After : Apr 21 11:00:34 2025 GMT
Subject: CN=02fde2b001ad074e2cc2cae0b06ef23f7a9b6b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:cd:46:d4:2c:d3:1b:56:bb:dc:55:b8:17:
cc:bc:a9:fa:2f:a6:79:26:d7:c8:fc:af:43:27:cf:
2b:1e:bb:2a:14:b0:da:68:7d:35:ff:86:a9:38:99:
e1:32:74:d1:24:f9:65:3d:91:c8:27:2b:26:66:b1:
5e:04:22:6a:c1:83:f5:8f:a2:dc:2e:a4:d9:d3:cb:
01:b3:36:a1:e2:24:f3:7f:4b:1a:96:51:60:69:ef:
98:f6:de:78:a5:9d:64:4b:a4:48:7c:49:ac:09:7f:
e7:de:6a:a9:72:62:d3:a6:c8:f9:c9:56:ef:d2:da:
8b:9a:11:f3:9c:3e:e0:df:13:6b:2d:ac:62:96:5c:
8a:27:1b:59:c4:3a:b6:48:9e:2e:aa:d6:48:5b:e1:
de:e4:0c:5e:bb:a2:39:8c:cf:02:8d:41:8b:b9:b2:
c2:d4:07:c2:e1:53:c9:24:8a:bc:6e:4b:cf:51:90:
06:1e:38:12:83:91:a9:c3:5f:65:6c:35:3e:56:cb:
a5:ed:06:33:a4:41:4f:fe:77:2d:8b:fc:41:27:51:
b8:35:fd:0b:9e:86:22:af:f6:b7:34:2d:fe:2c:39:
5d:66:1a:20:11:c8:a7:08:56:71:14:b3:59:fc:e0:
b8:c5:b2:cb:25:85:45:81:cc:6a:6d:10:4f:c9:cf:
81:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FD:E2:B0:01:AD:07:4E:2C:C2:CA:E0:B0:6E:F2:3F:7A:9B:6B:45
X509v3 Authority Key Identifier:
keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:71:9b:63:85:cc:8f:c7:7f:5a:f7:e7:ef:11:0f:53:ab:6d:
6f:88:bd:a2:4f:8b:40:36:b8:f1:60:71:6d:d5:a4:2a:f8:59:
50:09:64:e1:40:d0:28:bc:e0:35:73:34:50:f2:77:b0:d2:43:
df:42:eb:31:8e:01:71:d7:d3:cc:57:c6:4c:53:7b:31:31:d1:
d3:38:75:b6:a1:a4:b4:15:b2:f7:e7:1d:3d:23:a2:0f:b2:ae:
20:81:2d:bd:db:d0:db:f4:fe:c4:5c:8e:91:84:b5:29:aa:24:
80:39:df:96:80:96:e5:0a:37:55:c2:f4:20:9e:84:44:d3:dd:
7e:f4:42:08:7f:a2:ef:85:48:2a:62:c6:a6:df:5e:23:da:80:
78:c5:94:bf:d2:e5:84:7f:a2:c1:cf:06:1f:0d:b8:16:02:2d:
06:3c:cb:e0:af:c4:4c:1f:9e:51:e7:bc:4d:ae:48:09:00:45:
6e:59:3b:b9:74:d6:b0:36:a5:bd:9a:5b:58:08:41:40:a6:cc:
23:b3:53:d1:ee:ba:f7:55:a9:b1:c9:b1:7f:a5:d1:98:75:51:
6e:9d:bb:73:df:01:bd:9e:b4:47:ab:a1:4c:11:cd:3a:c3:0d:
68:26:64:1b:a6:c4:41:12:c9:b2:43:59:3b:56:59:93:7f:c8:
f2:f2:a1:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:17:19 2025 by rpki-client