Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
File: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft (raw, json)
Hash identifier: n9yDeTJSKckeXCjWCIb8nryM+Yij9lL/VE6rXLYt4WM=
Subject key identifier: 0E:00:4C:C9:A9:18:EB:99:E4:38:3D:11:FE:BD:C4:18:2A:A7:DF:55
Authority key identifier: 85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
Certificate issuer: /CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Certificate serial: 0196447B98885F0859EF702B86F848276960
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
Manifest number: 9E
Signing time: Thu 17 Apr 2025 16:01:12 +0000
Manifest this update: Thu 17 Apr 2025 16:01:12 +0000
Manifest next update: Fri 18 Apr 2025 16:01:12 +0000
Files and hashes: 1: cllA8kNp-t480y7IfyyWuiklziY.roa (hash: 5bq8pPC98WVuN+UCw7i3OOCXOObrhETW5cCP805rEU4=)
2: hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl (hash: HToATfgRttJdPdRjl5AJDeo5Tvn7A4xdzRNrTe3emcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7b:98:88:5f:08:59:ef:70:2b:86:f8:48:27:69:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f870119e5921bf12495dc902dcfe3d8d4a37d8
Validity
Not Before: Apr 17 16:01:12 2025 GMT
Not After : Apr 18 16:01:12 2025 GMT
Subject: CN=0e004cc9a918eb99e4383d11febdc4182aa7df55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:52:46:db:0d:9e:4a:98:3a:91:3d:68:19:eb:
8d:6d:40:7b:b2:83:a6:b7:8a:fe:a7:16:76:2e:2e:
e7:0e:0d:1a:16:aa:e4:fe:64:fd:40:85:0b:16:97:
ac:6a:a6:ca:62:7b:90:c0:59:25:43:60:72:bb:9f:
b8:05:07:58:0d:93:3d:ce:42:0f:26:22:6f:01:35:
66:92:d1:df:b1:12:0c:bc:5e:e9:d3:39:79:bf:85:
8c:54:f7:6d:fc:94:e0:71:46:d4:43:80:da:08:a9:
5c:f8:b2:df:56:49:5c:e1:b6:34:ee:5b:01:f0:57:
5f:21:f6:a7:b2:1d:52:18:12:a9:39:a3:24:21:ff:
fa:66:58:cd:8a:5c:c1:73:61:3e:d1:d4:cb:7a:9f:
2a:96:38:97:52:7b:d6:f8:c3:5c:2f:16:d9:12:82:
ab:35:97:14:cb:0e:6d:55:a3:c9:6a:4d:23:f8:ca:
94:1e:56:1f:11:99:d6:d3:dd:9f:e6:66:c4:e4:86:
f3:87:3d:07:fa:f1:75:83:08:36:f5:ce:6a:3e:0f:
ab:fd:a5:ba:f2:ad:a6:7f:d1:44:74:c7:c7:b5:5e:
a6:a6:5a:90:3e:28:8a:69:40:f8:af:6f:e8:f6:69:
9c:aa:07:25:58:7f:f9:14:84:3b:59:aa:5a:7a:4e:
b0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:00:4C:C9:A9:18:EB:99:E4:38:3D:11:FE:BD:C4:18:2A:A7:DF:55
X509v3 Authority Key Identifier:
keyid:85:F8:70:11:9E:59:21:BF:12:49:5D:C9:02:DC:FE:3D:8D:4A:37:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/bb6f34-347b-4bae-8f92-ea84a51eb3dc/1/hfhwEZ5ZIb8SSV3JAtz-PY1KN9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:c4:32:34:cb:5c:c0:6d:c4:d9:f5:0c:3d:3f:bc:e7:de:14:
4a:16:1b:7a:86:c1:69:63:21:80:3f:b5:43:b3:dd:ff:04:6d:
00:44:fe:b7:ff:bb:0a:16:93:9b:9d:57:57:de:56:42:2f:b0:
83:18:eb:fa:81:39:d6:f4:04:60:54:ab:6c:9e:c0:ff:c9:bc:
e6:a3:51:b8:2d:3a:bc:d2:62:2a:9a:13:7e:0f:7c:50:09:67:
df:8d:93:41:c8:64:b8:f5:0c:f7:62:91:68:0d:5a:38:05:79:
98:79:83:94:94:f0:94:d5:71:07:58:52:81:f3:d5:18:e7:4a:
29:c7:6e:11:18:56:b4:72:be:15:07:2c:5d:34:a7:6a:3a:b4:
36:7d:65:63:e4:22:1f:28:ca:65:01:89:d4:d0:44:20:2c:f4:
d7:8b:dd:17:af:f7:27:d4:4e:e3:08:78:57:1d:1f:11:80:9c:
ff:d5:ae:cb:2d:54:a2:f5:23:f2:47:47:78:da:2d:62:e4:86:
c5:9a:a7:cb:73:97:5b:12:4f:b4:6d:51:64:2b:be:f6:0c:03:
60:cd:71:70:9a:9d:25:e8:ee:c8:66:86:45:64:c8:7f:29:bf:
6f:24:7b:74:4b:98:0d:7b:18:5d:41:37:da:ff:25:e1:32:22:
5c:c7:35:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:29:05 2025 by rpki-client