Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: 1BsSzo60uZl0vvHAkmb842wXMkPwZQAi454R5d9Btzc=
Subject key identifier: 61:0E:41:BA:93:5C:0B:ED:F9:A0:89:9F:62:23:A7:34:D7:13:E0:45
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 01958B4DFF1D3F3CB0E7E5B9A77A974FD7FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0949
Signing time: Wed 12 Mar 2025 17:01:39 +0000
Manifest this update: Wed 12 Mar 2025 17:01:39 +0000
Manifest next update: Thu 13 Mar 2025 17:01:39 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: GPlU5nme54S3jNqF37CjMiHeCmVvIHctE3+mwNbKNRk=)
2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:ff:1d:3f:3c:b0:e7:e5:b9:a7:7a:97:4f:d7:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Mar 12 17:01:39 2025 GMT
Not After : Mar 13 17:01:39 2025 GMT
Subject: CN=610e41ba935c0bedf9a0899f6223a734d713e045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e8:25:41:f6:b1:99:61:54:c8:73:9c:a5:4e:
7a:35:e3:4a:d7:16:ef:e7:48:60:fc:c0:18:90:c1:
a1:b3:9f:22:95:ee:b5:76:5e:6c:04:85:82:bf:5d:
2a:72:bb:b3:1d:26:51:a1:6f:fc:38:0e:21:32:b4:
11:20:f5:9c:05:ef:40:d6:77:01:b1:c2:99:18:5a:
9e:2c:8a:37:f9:72:47:96:d0:89:58:16:0d:32:ac:
c2:c5:93:a4:64:5f:54:d4:26:8f:19:56:ef:24:70:
e8:7c:e2:83:0e:eb:b8:11:1a:94:cc:27:28:07:cc:
b7:7d:d8:78:b4:cb:2f:4c:df:3b:66:b6:05:e6:c6:
d7:d7:f6:bb:f3:3b:b8:52:3b:3c:b2:76:c9:63:ca:
64:65:2d:4e:14:a5:07:ce:21:2c:d1:34:7f:52:1d:
53:b2:d4:22:bf:03:d3:d1:09:ab:44:a4:cb:eb:e0:
e2:2a:34:93:bb:6e:80:b9:63:1b:92:b7:0d:45:ce:
5f:ee:b2:7d:a1:18:c9:b6:f1:c7:b6:84:4e:19:7c:
45:31:7a:fc:42:de:c8:a6:42:65:93:74:f4:98:01:
da:13:80:18:9e:94:db:4e:b0:b6:b8:49:1b:f8:d6:
95:de:e9:b4:e6:17:ab:a6:b9:aa:e8:a5:75:ad:a8:
d2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:0E:41:BA:93:5C:0B:ED:F9:A0:89:9F:62:23:A7:34:D7:13:E0:45
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:26:bf:8d:06:ab:a7:89:c4:c1:3d:37:78:e1:38:7d:89:af:
6f:4a:a1:36:92:32:33:9e:0e:fd:41:80:ee:ad:62:cf:c4:04:
0a:09:d4:b3:f7:0c:a2:22:9c:5c:82:f8:56:c5:7c:32:f5:bd:
17:44:04:92:14:6f:84:94:63:df:95:17:c2:40:1f:1f:44:04:
66:ab:ce:c4:ea:cf:67:39:35:56:91:56:d7:33:32:c9:9a:20:
04:3a:0f:8a:9d:d8:b9:b1:aa:4a:24:ae:45:70:0d:1e:3c:81:
0f:5a:bc:20:f6:b5:d9:33:8f:73:96:56:3b:3e:14:b0:f6:fb:
e7:d6:8a:7e:43:d9:5f:f1:6d:64:ed:56:3e:30:df:23:64:af:
8b:f7:05:b7:84:ae:92:79:7b:87:e4:eb:73:9d:15:2e:3c:03:
61:e9:a2:15:99:cd:ad:3d:9b:6b:11:49:4f:df:45:c9:3f:d5:
9a:b6:4b:02:21:cc:23:9e:5f:c9:00:d7:cc:7f:ee:6a:29:34:
12:19:a2:eb:e5:66:3a:22:d5:7f:c8:50:25:5a:fa:d3:19:d5:
4d:08:57:d2:e1:99:38:84:f2:89:8a:5c:21:26:3b:f7:58:45:
db:b9:a3:7f:41:00:9b:df:33:78:c6:c4:58:6d:1e:34:4f:9e:
02:c6:34:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:40 2025 by rpki-client