Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json)
Hash identifier: K7Se/4qnkIhE4eghWAkmlqwzL9+ftXdLxnmGNZeD7yw=
Subject key identifier: 24:82:E0:7D:94:6E:81:1E:33:16:30:F2:8E:14:00:75:6C:28:90:8E
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 0196564A2EFFBD4EBD2A998CBE7E72CA468D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
Manifest number: 0D80
Signing time: Mon 21 Apr 2025 03:00:24 +0000
Manifest this update: Mon 21 Apr 2025 03:00:24 +0000
Manifest next update: Tue 22 Apr 2025 03:00:24 +0000
Files and hashes: 1: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: 25CadyxZZbRtdd0DxpGyFtHRWJTI/FfgWuidKtRnY6M=)
2: pkoA1nbX0r8lwiVwxbfu80R8kOU.roa (hash: dAPrEkvaKQk5s5Z7WHpV1G3F1Sw4lOg/QTiasC7ZX1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:2e:ff:bd:4e:bd:2a:99:8c:be:7e:72:ca:46:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Apr 21 03:00:24 2025 GMT
Not After : Apr 22 03:00:24 2025 GMT
Subject: CN=2482e07d946e811e331630f28e1400756c28908e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:11:2f:d0:f0:16:73:ab:26:ac:40:d5:e2:8e:
25:27:b8:52:09:d6:e0:5e:56:8e:63:ee:7d:9f:10:
a9:41:8f:7e:a1:00:7c:60:7c:18:56:51:ef:d8:44:
fc:54:2f:1b:55:93:5e:fb:7d:ea:65:2f:11:df:97:
72:ec:2b:37:3a:e6:87:59:6b:8b:a2:6d:f1:19:aa:
cc:55:61:71:e4:99:f1:89:7e:c2:a8:fb:24:f3:36:
c9:9f:fe:41:59:00:8d:2c:3b:76:dd:22:f6:51:ed:
8d:ce:59:5a:c0:ab:94:4a:46:0b:03:19:a7:75:00:
39:8e:d0:e3:8b:6b:b8:1c:23:d9:e9:1b:24:34:ac:
ec:30:71:ec:65:38:e2:86:3e:17:24:63:dd:17:c5:
91:dd:ce:83:c6:25:48:5c:ee:fc:e8:66:d5:78:99:
17:dc:63:86:f0:47:8f:4d:b5:8b:57:84:ca:e2:81:
b4:a9:bf:25:ae:3a:b2:eb:13:9f:8d:74:49:29:b8:
6f:84:08:e8:6c:91:65:fc:97:2a:24:e0:f5:8f:1b:
0f:0d:61:14:bc:bd:c5:3e:d6:c1:70:a7:1a:47:3c:
81:8a:a7:ec:ea:5d:c0:f4:4d:14:d4:0b:8d:55:7a:
96:db:e8:d1:e5:8b:f1:a8:a5:64:9d:e1:87:43:4e:
d4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:82:E0:7D:94:6E:81:1E:33:16:30:F2:8E:14:00:75:6C:28:90:8E
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ac:ed:e6:34:3d:0f:ec:47:56:55:3c:b9:81:0d:9a:f0:23:
24:4e:37:5e:80:69:bf:70:6f:c1:bc:78:79:22:ea:01:2d:a2:
d1:e1:0f:bf:db:6d:4d:e8:05:af:8c:ed:aa:f9:a7:c3:be:8a:
3e:a1:cb:0f:4a:8e:fa:be:73:eb:87:51:e1:95:e6:65:53:30:
08:5a:f3:f7:32:ca:87:5c:94:29:a8:fd:1b:11:e1:73:56:f0:
39:9c:9e:a1:40:c4:f8:2b:a9:12:03:79:b5:74:f9:ad:23:02:
d8:27:8a:56:a9:29:eb:2b:ff:3d:49:49:21:a5:c7:39:45:61:
ed:bf:47:ca:33:62:e1:b5:af:ad:7c:cf:a3:48:70:f2:b0:82:
b4:14:da:e8:a6:78:57:ac:dc:16:13:ef:18:8b:32:ec:52:bf:
fb:4f:fe:ed:ee:ec:cd:9c:de:d7:2e:4f:ea:1a:c7:5d:86:1e:
36:d2:cd:c7:db:78:e7:a4:c0:5d:a1:e9:10:96:9e:aa:48:1d:
e2:3a:e0:bf:f5:72:b1:89:61:56:76:fc:fb:b2:2b:7e:d4:6e:
14:10:4f:88:f1:de:de:ff:f5:b8:c5:66:43:ac:b2:78:79:e7:
bb:33:e6:d5:60:6d:b2:f2:cc:1a:75:e2:dd:93:63:3c:e1:ac:
8f:36:ef:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:29:16 2025 by rpki-client