Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
File: JHQF6c7jnXGUTV4xSesBth-a2x4.mft (raw, json)
Hash identifier: 6sIowT7peTD45GETYnAaCJtkIt4L1Igd0m3UN7UQtZA=
Subject key identifier: BF:41:D4:6F:D1:FB:F3:71:BC:CA:DE:B4:D4:5B:FA:40:7C:C5:D9:E2
Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Certificate serial: 019610FC5463651EADBE60D0778ECD64EEA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
Manifest number: 0FE7
Signing time: Mon 07 Apr 2025 16:01:34 +0000
Manifest this update: Mon 07 Apr 2025 16:01:34 +0000
Manifest next update: Tue 08 Apr 2025 16:01:34 +0000
Files and hashes: 1: 0MRJhU0Qnhazf3uEIVGNielpVjo.roa (hash: QbTItXwb+MhiN+jNSFdFEHfTLMbgundvD0ftmWJwj5k=)
2: Ab1tskS4Q67Z2YctzJLxqj53W9g.roa (hash: AZCXpUJa1dgUBTX+Q3S9ZNI6U7aZKWGmwFCH40STagc=)
3: JHQF6c7jnXGUTV4xSesBth-a2x4.crl (hash: lY8GAS+tr/zy4OjXQ6olKS9Uo6fKQXXB4xEZBbw8keg=)
4: ZwMecEU89iNwlEPNMqqdNK21CRk.roa (hash: FTqQ+R8RJ6dWUyPAN/1xgiMPp5vc51aB62sTFqdJ7bA=)
5: f_0cBwbRlTos3u7H8bwrPKcXUN8.roa (hash: xaHHsjfR8A17jN6pVVS9xdai2iZp05T7G1TibqlcLQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 16:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:fc:54:63:65:1e:ad:be:60:d0:77:8e:cd:64:ee:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e
Validity
Not Before: Apr 7 16:01:34 2025 GMT
Not After : Apr 8 16:01:34 2025 GMT
Subject: CN=bf41d46fd1fbf371bccadeb4d45bfa407cc5d9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7e:d9:35:ee:6f:d1:2e:9f:61:44:dd:07:8b:
4c:6a:3f:72:45:c7:93:5c:e8:3f:3d:59:71:08:12:
0e:86:8b:37:c0:e3:07:c1:a5:c3:fb:20:8c:44:be:
39:de:51:4b:56:5d:95:23:db:80:34:50:eb:54:cd:
d4:0b:ac:a8:60:13:a5:6a:cf:10:21:58:f1:65:db:
7e:29:63:67:31:11:86:29:9c:87:ec:52:30:4c:57:
ba:18:d1:34:56:ba:27:b0:7a:91:59:db:f1:96:5b:
94:8f:dd:10:03:71:27:fb:81:dd:dd:2f:d8:2b:47:
96:3e:85:f1:2d:0f:66:ef:f5:5d:69:ee:26:3f:f5:
5f:99:c8:84:80:ad:14:88:ad:b1:09:98:84:39:8b:
dd:66:f8:ec:8a:1c:aa:c9:48:89:d0:2f:a8:e7:97:
16:bd:d0:a8:64:f6:10:06:86:74:dd:89:71:6d:b5:
c4:88:99:c7:ec:e3:c9:b3:8c:7a:e4:58:49:f4:32:
ea:08:70:c3:16:3b:eb:b6:1a:6f:14:50:61:bc:47:
a8:fd:6d:ef:39:4e:e7:97:7a:f1:86:9a:a4:ec:83:
99:a1:a2:2d:d6:e8:ac:84:d7:52:1a:d4:c5:11:c6:
3c:cb:ec:98:61:a4:d1:8d:b1:b1:5d:0f:98:c4:4b:
98:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:41:D4:6F:D1:FB:F3:71:BC:CA:DE:B4:D4:5B:FA:40:7C:C5:D9:E2
X509v3 Authority Key Identifier:
keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:f7:f8:bd:4b:1c:11:5f:23:8f:5c:9e:fc:e7:48:2d:a8:40:
e7:57:4a:83:8c:02:9d:b8:d3:37:71:77:bf:47:97:0c:43:d7:
56:a6:42:be:ef:22:89:55:d8:7b:76:44:87:10:a7:9e:ba:86:
39:59:37:d2:1c:c1:de:90:91:52:dd:29:f3:d9:ae:0d:57:21:
16:a1:e2:b5:05:ab:8f:80:37:b4:d9:a3:75:39:23:db:87:b5:
31:1c:22:4c:a7:80:31:a5:a7:58:bb:f3:1e:01:63:93:8c:e3:
d2:ad:94:37:a3:5b:bb:74:b9:ca:bd:ec:88:57:d1:a1:9a:d7:
bd:20:4c:65:03:6a:19:38:53:59:84:64:18:91:f5:fb:58:14:
b6:b3:59:8d:db:ec:53:53:54:80:f4:c0:b7:8a:0b:86:bd:55:
7e:10:aa:af:40:ef:67:64:c4:e8:4a:ae:df:f2:13:5d:bc:f1:
27:a1:73:8f:2e:1d:e5:e2:49:a6:f1:35:c0:4c:ba:ee:76:f8:
2b:05:30:26:d0:05:2b:09:e3:5f:4d:09:59:1e:bc:cb:9a:69:
b3:7c:30:ac:a3:74:fe:16:35:05:27:4f:0c:12:e5:04:ed:2d:
75:e3:16:8c:48:04:4d:5c:f6:88:cd:a1:15:6b:34:eb:87:d9:
3a:2f:cc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 02:15:27 2025 by rpki-client