Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json)
Hash identifier: LjTf/7wffGFriXKKsKIY5fqJ2HCqTyKF9pV+Y+KZTZg=
Subject key identifier: 04:AD:72:16:F7:9D:31:F0:C0:22:CE:97:7D:97:FF:A9:31:37:EF:CA
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 01965EA8C8960CCFF70F3C3DECB1419D48A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
Manifest number: 100B
Signing time: Tue 22 Apr 2025 18:00:41 +0000
Manifest this update: Tue 22 Apr 2025 18:00:41 +0000
Manifest next update: Wed 23 Apr 2025 18:00:41 +0000
Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=)
2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=)
3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: dOLXeOMXXcCWpaY78JTyf+sDur8ZmLDVzNbSAeW7D0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 18:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5e:a8:c8:96:0c:cf:f7:0f:3c:3d:ec:b1:41:9d:48:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Apr 22 18:00:41 2025 GMT
Not After : Apr 23 18:00:41 2025 GMT
Subject: CN=04ad7216f79d31f0c022ce977d97ffa93137efca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:aa:24:d7:7e:ef:9c:dc:b1:d4:75:df:03:d6:
30:0c:49:42:24:9d:02:eb:4d:a9:08:92:5f:d6:8a:
a8:46:15:ce:9d:53:8c:c2:6d:bb:51:fc:29:71:f0:
d7:42:05:2d:48:1f:16:1f:29:2d:e6:64:cb:65:8d:
08:2c:3f:56:77:05:79:ab:ed:61:df:bd:d8:a4:9d:
2b:eb:30:a8:1e:61:c1:29:07:a0:79:b0:95:8f:b0:
0f:4f:f0:63:8c:1e:af:fb:16:ea:bf:52:e5:2b:a0:
96:6b:66:fe:a3:84:b1:e7:55:f1:2d:a0:c1:4c:36:
73:4d:aa:81:7b:21:76:20:c1:5a:f6:da:ae:05:4c:
61:f6:78:44:84:51:10:cd:8e:c1:ab:b9:09:fb:43:
41:f1:3f:15:a1:89:05:86:96:8f:49:57:b7:26:f9:
e8:06:d9:f4:79:69:e4:46:8e:d3:a8:52:bd:b1:14:
cf:92:f6:2c:4d:d7:94:41:d7:44:46:13:c0:91:5f:
f5:e1:fe:52:8a:a0:f7:a3:47:a9:c9:3b:63:8c:61:
fb:b0:d5:3d:d9:47:00:33:37:b5:65:2c:47:be:ab:
1c:ec:93:70:3d:74:92:f6:7c:15:30:5c:f7:1c:27:
08:f9:66:a4:8d:c1:6f:ac:b8:43:e0:d4:20:de:65:
0a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:AD:72:16:F7:9D:31:F0:C0:22:CE:97:7D:97:FF:A9:31:37:EF:CA
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:9f:11:04:76:d3:70:73:d6:03:82:27:58:99:87:bc:e7:ee:
82:de:75:87:86:d7:5d:31:10:5d:e5:b1:f2:01:af:f4:ae:d5:
d0:b2:3a:b2:8d:ee:b9:44:e5:c3:f8:46:c2:eb:cc:63:ea:5d:
10:40:7b:78:b5:11:05:ee:93:81:3d:67:eb:4e:2f:3c:0e:ce:
3b:24:ef:b7:ed:7b:7c:20:03:99:66:26:ae:13:73:13:a5:8a:
38:32:fe:7c:6c:07:09:ba:2f:c3:60:4d:df:66:84:67:e8:bf:
76:6c:63:f7:ab:17:fa:e9:04:d9:81:f0:b3:14:e6:c1:4a:aa:
cd:4a:38:9b:3c:2b:f1:4f:57:8b:ce:4b:a0:8a:81:e8:59:e7:
83:f7:f7:51:e7:11:63:0d:49:e1:2c:7f:21:c9:b7:8b:61:89:
f6:68:56:74:b8:b7:bb:d5:99:3e:8a:b7:91:e8:40:58:f9:c8:
ea:cf:f8:b4:44:38:44:b2:94:d0:a9:71:6e:bb:59:c7:28:9c:
fb:8f:38:46:64:ec:19:8b:b0:5b:0e:82:45:f0:5c:29:61:fa:
ac:6a:5f:5a:57:c3:f2:3c:44:df:97:bd:2d:65:7f:17:c8:a7:
ea:f0:96:f5:2b:03:c2:35:50:8b:35:8f:6e:4c:ff:bd:37:19:
62:b1:de:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:20:02 2025 by rpki-client