Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
File: htqvTmjTIiSCMFRM2NspVo5s8AM.mft (raw, json)
Hash identifier: 9jN+PUgxcyft/k9isBI4Y3BuVt+P23tN+qOGgDX2fQU=
Subject key identifier: 0C:F1:35:AA:9B:28:B7:64:9D:D9:B7:9A:F4:CC:EC:4D:57:D5:3E:4F
Authority key identifier: 86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
Certificate issuer: /CN=86daaf4e68d322248230544cd8db29568e6cf003
Certificate serial: 0196439F4878E89271810853F90FAF1FBA6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
Manifest number: 14F6
Signing time: Thu 17 Apr 2025 12:00:34 +0000
Manifest this update: Thu 17 Apr 2025 12:00:34 +0000
Manifest next update: Fri 18 Apr 2025 12:00:34 +0000
Files and hashes: 1: htqvTmjTIiSCMFRM2NspVo5s8AM.crl (hash: R3SYqmcNyaqbd6pVI2quNGe9dRJvQT5l1SHd3SsJ9PY=)
2: uiT-f1UkP8u3VtHM1H2WjnfclYk.roa (hash: tX+V4MHF7T2iULGYZ2/cXlHTKSsA+WHHf7K/tt0Vdcs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:9f:48:78:e8:92:71:81:08:53:f9:0f:af:1f:ba:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86daaf4e68d322248230544cd8db29568e6cf003
Validity
Not Before: Apr 17 12:00:34 2025 GMT
Not After : Apr 18 12:00:34 2025 GMT
Subject: CN=0cf135aa9b28b7649dd9b79af4ccec4d57d53e4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c2:3e:2a:e0:7d:7d:cd:fb:85:2c:4f:cb:1d:
e6:33:8d:9b:3f:63:2c:a0:77:f7:28:ac:34:56:07:
14:b8:11:3e:4d:35:27:62:14:a6:36:3f:dd:43:41:
35:1c:d5:10:dc:ca:85:ac:35:25:4d:cd:ab:b1:93:
9f:a2:9f:9b:5a:c8:c7:1d:53:22:8b:99:60:e1:bc:
b4:01:3a:72:b0:22:29:e4:2d:84:8a:4c:e0:b8:b4:
2f:e6:5d:a3:71:74:8e:6e:e8:26:ee:0c:8b:65:3f:
94:6c:f6:94:37:a5:65:0f:df:0f:ab:81:9b:d5:b6:
41:ab:10:45:7b:69:b2:11:87:ac:1c:c4:51:a0:c7:
14:1e:21:aa:61:25:7b:1c:4b:69:9b:3f:bf:8b:79:
84:08:44:06:21:5e:f3:e7:79:fa:3e:75:5a:3c:17:
14:bf:7a:9a:9a:90:de:20:15:e2:7a:68:fa:cd:e0:
82:fa:fa:02:54:57:d5:30:86:40:50:0f:09:f6:5d:
96:54:45:68:22:19:27:23:26:53:e1:ed:9a:7f:6e:
0a:81:0a:d3:b0:39:4f:a0:f5:f1:2c:d2:3f:ff:90:
4c:5b:b9:36:39:ea:20:db:00:6b:96:ff:41:b7:5f:
40:c8:b1:a0:c4:97:f0:1d:84:43:06:c2:5a:9e:c8:
94:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F1:35:AA:9B:28:B7:64:9D:D9:B7:9A:F4:CC:EC:4D:57:D5:3E:4F
X509v3 Authority Key Identifier:
keyid:86:DA:AF:4E:68:D3:22:24:82:30:54:4C:D8:DB:29:56:8E:6C:F0:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htqvTmjTIiSCMFRM2NspVo5s8AM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/57d1db-d8eb-49e0-8133-5bc90505d8ca/1/htqvTmjTIiSCMFRM2NspVo5s8AM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ae:53:3d:eb:f6:b1:55:ac:71:6f:34:54:17:27:83:09:34:
7e:0f:86:79:d0:0c:09:00:84:af:d7:1a:63:58:00:17:05:b0:
b4:aa:df:cd:42:ec:db:f8:e0:3e:c7:3f:8e:8c:0b:4d:3c:a5:
d8:44:0e:ac:f2:0f:90:7b:52:ff:1b:4d:76:32:fd:4d:82:da:
fb:75:22:8d:38:c4:b8:a6:6c:80:6b:03:3f:33:ba:ee:0a:5f:
79:11:08:59:4f:c7:09:8a:e5:ac:6b:e0:d6:8b:87:96:38:b3:
24:33:a2:01:2c:b1:cf:82:da:27:d7:a2:ad:08:00:5f:c0:a9:
cb:f3:5d:f1:db:d4:57:40:f0:14:cd:43:ca:c7:d8:32:0c:01:
09:c7:07:83:ea:99:eb:eb:f4:bc:ce:4d:6c:32:75:97:53:0e:
9b:a8:9e:94:55:f2:4a:ba:b9:56:56:03:c8:85:2f:6f:f9:6f:
92:f7:d7:b3:11:3a:de:e9:22:9f:53:73:57:b5:b0:bd:82:58:
2f:df:9d:4a:6d:1a:2e:f3:cf:72:84:c2:95:9a:fc:3d:e4:16:
d0:d1:13:3d:dd:06:af:b5:64:4a:59:53:52:e4:9a:a7:64:2c:
5b:54:c8:25:6f:17:45:8f:b4:ea:b3:8c:9b:7a:40:c6:0c:fc:
b1:75:80:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:20:38 2025 by rpki-client