Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json)
Hash identifier: hSBH/NRnpHvqcnFrY+WuzwWz3sT5SihjRg9P848GAJs=
Subject key identifier: 78:C6:68:D5:CD:D5:E1:0F:11:24:51:5D:FA:29:48:E2:46:35:B9:DE
Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Certificate serial: 01965380672B614DD297F2B46A0D2B0530F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
Manifest number: 0365
Signing time: Sun 20 Apr 2025 14:00:45 +0000
Manifest this update: Sun 20 Apr 2025 14:00:45 +0000
Manifest next update: Mon 21 Apr 2025 14:00:45 +0000
Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=)
2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: JHbpqJcGoG0Oj3iKLC+e0SBr6PY3BGVLwZxMtXK5XZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:67:2b:61:4d:d2:97:f2:b4:6a:0d:2b:05:30:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4
Validity
Not Before: Apr 20 14:00:45 2025 GMT
Not After : Apr 21 14:00:45 2025 GMT
Subject: CN=78c668d5cdd5e10f1124515dfa2948e24635b9de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:38:65:39:13:2b:88:db:b4:42:97:17:72:7a:
55:6d:31:5c:8b:77:23:6c:e6:91:96:31:69:f0:40:
0c:13:e0:8b:94:15:c5:e2:dc:ea:47:e8:14:f9:67:
ff:05:57:55:64:c6:f7:46:fc:c6:93:8e:82:d5:c8:
f2:e4:e8:4f:ec:08:78:de:78:3f:6d:9a:53:03:64:
51:16:fd:2d:fc:5c:87:2e:31:49:cc:66:4a:c0:5c:
73:46:3a:de:f1:f4:3d:a6:c3:c1:da:12:93:8b:64:
59:5c:2e:f2:f3:ca:29:70:2c:89:4e:cd:a4:d2:42:
a8:95:cf:6f:f4:a9:1e:bd:fe:03:97:98:80:a1:9e:
7f:8e:35:b7:a0:ee:de:c4:dc:9d:e8:31:d4:d9:06:
fa:6b:1c:58:4a:3c:a6:3d:f8:52:17:b3:64:58:8d:
33:f4:b8:5f:db:89:dd:be:da:4a:39:92:3b:6f:21:
01:e8:89:ba:d0:12:79:33:e2:c7:8e:c0:80:d0:db:
24:c0:bf:47:6f:b3:51:f3:ee:19:17:8c:6e:a9:7b:
d2:09:c6:7b:a6:ff:70:e2:f6:bf:37:87:e7:10:c9:
5f:30:77:bc:db:94:a9:c8:70:23:05:9d:90:8d:26:
8a:5c:bf:d4:11:00:64:e5:d7:c5:57:2a:36:6b:8c:
45:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C6:68:D5:CD:D5:E1:0F:11:24:51:5D:FA:29:48:E2:46:35:B9:DE
X509v3 Authority Key Identifier:
keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:47:36:de:4a:e9:d1:e1:6b:e4:70:f8:3c:fc:e0:c6:1e:22:
2f:21:28:f9:bb:2a:1a:8a:69:cb:3e:fa:db:db:a1:0e:44:d0:
ad:8a:52:62:7d:c4:bb:9e:1a:18:1e:00:ca:2e:e3:26:4a:63:
8a:f8:c9:08:dd:1a:e5:cd:47:46:f1:0e:1a:78:9b:10:0c:2b:
75:76:4a:11:08:5e:48:0d:7a:b9:d7:53:32:35:4b:52:c1:e1:
a0:9b:7f:da:f3:dc:65:c4:db:e9:37:d7:b6:a7:2f:07:4a:f0:
11:1b:3b:93:89:96:71:33:af:8f:0f:e8:dd:f8:e6:94:08:40:
0a:3c:34:2c:80:45:c1:f4:ed:c4:4e:ec:a6:ea:79:a5:72:2d:
c9:3a:00:ec:6c:e1:64:0b:28:2e:cd:30:38:bf:51:dc:b6:59:
e7:4d:63:03:e6:60:f7:1d:7b:53:d7:47:03:34:70:04:59:2c:
c5:d3:fa:28:50:7c:ed:f9:1c:bf:0e:80:6b:84:b1:a7:6d:71:
b5:e2:56:6d:34:f3:95:7e:07:54:01:4c:3a:5b:f1:3e:31:ae:
5d:58:6a:2e:7c:af:e6:cc:f8:76:73:8f:52:33:5f:a9:f9:47:
a0:1c:10:c4:34:68:78:fc:0c:af:ef:11:be:91:5d:c9:e8:49:
d7:29:10:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:36:29 2025 by rpki-client