Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
File: hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft (raw, json)
Hash identifier: XuWSKfwKJ5MHOe88vjx8znrIH6zOgai7S7WXCbAF04g=
Subject key identifier: 62:C6:47:82:1C:95:22:B6:E0:FF:FD:3F:1B:DB:97:78:78:B2:03:40
Authority key identifier: 85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
Certificate issuer: /CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Certificate serial: 0196515A99422D14924ECEC5408EC3A159CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 04:00:14 +0000
Manifest this update: Sun 20 Apr 2025 04:00:14 +0000
Manifest next update: Mon 21 Apr 2025 04:00:14 +0000
Files and hashes: 1: KUCsTzvnwNnMm7Jeca6aVL9k1f0.roa (hash: 08CBdTpQIdxpgYISvMqyNDiM+ICQK0H520OtR31swUg=)
2: hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl (hash: m59ijjx20KyVYcbhT2cNv5Y3XtH5fxGM3UZWJH3BTzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5a:99:42:2d:14:92:4e:ce:c5:40:8e:c3:a1:59:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854e103aaec432fc191d49819bd1ab71fe1cfa80
Validity
Not Before: Apr 20 04:00:14 2025 GMT
Not After : Apr 21 04:00:14 2025 GMT
Subject: CN=62c647821c9522b6e0fffd3f1bdb977878b20340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e2:bf:d5:e8:9d:44:ec:41:6f:b5:95:f0:70:
92:83:a9:c5:83:08:fd:a0:10:5b:04:34:5d:f7:95:
ed:f6:40:eb:d9:ff:4a:60:fe:5a:ab:8a:98:f5:2e:
c9:0a:d7:e8:eb:dc:52:6e:92:8c:c3:dc:e7:42:60:
bc:e1:2d:3a:f7:94:8c:38:bf:c9:29:f0:06:2a:7c:
a3:57:fd:34:15:5b:2a:c9:ed:02:0e:c3:42:af:a9:
bc:eb:ce:98:28:82:81:c1:51:10:00:8b:cc:59:41:
ba:86:3e:ca:f0:b0:c0:f9:24:be:f7:bd:75:d0:5f:
e4:3e:13:df:2c:bb:0a:70:6a:a2:d7:d4:a8:d0:4b:
14:ef:c9:4f:17:bb:77:d6:0e:13:58:fe:04:d2:25:
d4:4f:a9:5d:b6:e6:61:7f:6e:58:14:73:e8:61:22:
b4:d6:a8:12:7c:7d:ae:24:66:8a:fc:5b:0a:7a:b4:
72:b5:eb:fc:c2:8b:aa:59:00:00:2b:2a:86:c0:77:
89:df:f5:95:c6:c9:d0:d1:a9:4a:b6:8f:17:5f:78:
49:35:9f:d3:41:99:87:ca:ff:55:68:e3:64:aa:f2:
2b:07:75:b5:50:f4:b8:ab:af:83:b8:dd:f3:dd:38:
79:92:f1:40:27:08:81:e4:6f:72:35:cc:92:2f:ee:
75:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C6:47:82:1C:95:22:B6:E0:FF:FD:3F:1B:DB:97:78:78:B2:03:40
X509v3 Authority Key Identifier:
keyid:85:4E:10:3A:AE:C4:32:FC:19:1D:49:81:9B:D1:AB:71:FE:1C:FA:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hU4QOq7EMvwZHUmBm9Grcf4c-oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/65f4a2-5f69-465b-8891-9c01df7b9e66/1/hU4QOq7EMvwZHUmBm9Grcf4c-oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:bc:80:46:17:40:b2:d8:79:20:6f:de:8a:77:bf:c6:92:ba:
78:2b:ca:c1:0f:0a:e0:34:66:f6:b9:80:14:69:ea:fc:8c:d7:
59:b9:f0:d5:41:d8:66:52:d7:19:1a:59:a4:c5:98:e0:31:a8:
58:ea:1c:d2:97:6c:87:8e:dc:5d:fa:33:8c:55:b0:fe:af:c5:
d9:1c:2d:d1:35:1f:bd:b8:60:3c:aa:05:b7:85:57:91:64:df:
da:3e:bb:e3:a1:eb:f1:20:8a:cb:5e:35:db:9b:a6:d4:18:ce:
2f:46:c0:85:6e:56:93:ea:10:47:26:ce:68:11:aa:f6:ea:a1:
ff:46:2a:9a:53:78:13:ca:f3:63:ef:5c:06:34:b4:cf:36:2b:
93:cf:cd:2e:93:70:c7:29:fe:f3:02:09:f9:fa:be:f3:a2:b7:
2d:f1:f9:da:73:b0:0a:29:85:34:25:08:13:e5:97:e1:b1:95:
8d:bb:e8:29:a6:05:f5:b5:e4:15:ac:5f:1a:64:ea:15:ca:f9:
8c:6c:6b:29:3d:11:48:d6:87:99:4d:fa:d3:94:f0:54:cf:5d:
40:27:2e:fe:ad:59:bd:de:f3:a2:c8:f4:1b:39:c6:c0:2f:f8:
d9:1d:a1:66:1e:dd:65:53:66:d8:f9:bb:ce:c4:d7:10:59:c5:
63:83:75:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:15:17 2025 by rpki-client