Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: 0UiZ/Io2YDFjmWZAPblPtnh5yl8mNyzwZK2QWM3a2jg=
Subject key identifier: 89:80:D7:97:70:11:74:9D:CB:58:DE:D0:0B:47:30:3A:0D:86:F8:D2
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 01965D5F2E14C9C5EDC0ED48A2C414EFB320
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0E63
Signing time: Tue 22 Apr 2025 12:00:40 +0000
Manifest this update: Tue 22 Apr 2025 12:00:40 +0000
Manifest next update: Wed 23 Apr 2025 12:00:40 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: 2rkt9YJ4UCtq19UQ7ppS+qrIFC9hBzu461psT/lCM2o=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 12:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:5f:2e:14:c9:c5:ed:c0:ed:48:a2:c4:14:ef:b3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: Apr 22 12:00:40 2025 GMT
Not After : Apr 23 12:00:40 2025 GMT
Subject: CN=8980d7977011749dcb58ded00b47303a0d86f8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e9:31:ac:ad:60:48:69:d5:05:59:25:fa:4a:
79:2a:a3:c6:91:1f:42:da:26:d9:61:58:0c:50:1c:
24:f4:16:3e:a1:06:49:84:ff:f6:94:f3:f5:c6:d0:
03:a1:90:a6:aa:a1:80:a2:9e:2f:fc:bb:60:f8:6d:
2c:fc:b0:fc:8b:6f:22:ba:49:50:28:73:5d:b1:d1:
0f:b6:91:8f:40:4d:cd:e0:57:d0:2f:bf:68:df:f5:
bc:82:79:87:54:68:0b:fb:d3:c1:e1:24:59:58:6e:
02:57:f6:af:65:80:59:e8:fa:55:78:83:96:5b:77:
25:60:1a:71:eb:5d:54:95:20:aa:e2:f4:ca:a7:e6:
0d:43:14:dc:98:aa:17:a2:89:7f:bb:68:66:a1:1c:
6a:34:69:fe:dd:3f:d1:f9:2e:6c:3f:34:66:bf:8a:
a8:9b:9a:f6:12:af:36:fe:38:ad:3b:28:1f:83:3d:
1d:84:15:18:a9:2b:ee:eb:eb:0e:b8:34:73:8a:cc:
0d:84:ca:1e:87:07:ca:32:36:a7:54:41:ae:2b:cc:
eb:fe:5b:27:b7:4a:7d:d1:24:90:a7:42:78:a3:28:
02:7d:55:99:34:6d:71:9d:ff:92:7b:19:c3:56:5b:
e2:6d:dd:f7:4b:50:f3:69:d4:00:0e:08:55:a7:86:
fd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:80:D7:97:70:11:74:9D:CB:58:DE:D0:0B:47:30:3A:0D:86:F8:D2
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:21:94:3a:00:2a:a3:78:0e:f7:fe:20:64:12:74:85:ad:f4:
9e:dc:98:72:1d:89:4c:9f:1b:28:25:24:ad:9f:f1:24:d9:76:
9e:4a:b7:95:da:15:5e:2c:0e:19:8e:43:4d:cc:85:07:6f:23:
bc:c5:d5:ec:22:73:ac:e0:b0:76:f7:37:7b:79:6e:e1:2e:c3:
11:ab:ec:cc:32:fa:ca:06:54:a8:25:51:c8:78:11:e3:ec:13:
5a:77:b9:06:6e:92:35:f5:70:e1:cb:6f:03:91:54:a6:7d:1a:
df:97:99:73:43:d5:f7:48:08:71:de:dd:e4:23:2d:3f:1d:58:
0a:88:4a:25:70:f2:c5:b9:c0:f2:eb:ba:bb:8c:86:cf:a8:55:
d4:de:67:b5:f5:c6:bc:0b:4d:d8:e6:35:fd:86:3d:4f:1f:91:
68:93:61:0a:e6:ff:a3:91:04:52:d4:20:93:64:1a:0c:af:b3:
72:96:34:71:63:9c:f8:8c:36:cf:ea:e0:d0:bd:3a:b2:e4:0d:
05:f3:7d:99:d8:6b:76:b6:20:5a:4e:9d:c2:5f:81:51:73:2e:
67:4a:55:0b:19:98:f3:18:e4:39:15:35:3d:3c:81:c9:f0:28:
77:fa:2f:0c:3d:6f:d6:0c:8a:c8:12:6b:db:ba:b5:b7:73:75:
41:b0:f6:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:07:34 2025 by rpki-client