Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
File: 8hWid5SXEbLAHNxmnkDhcTlYVbs.mft (raw, json)
Hash identifier: DHP3SEf0z1V6iggczFlmXlTgcI+qx8m+UbwYN7osQoo=
Subject key identifier: 9A:07:47:58:45:96:58:EB:35:52:A5:C8:D7:7A:2C:50:A6:76:09:0F
Authority key identifier: F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
Certificate issuer: /CN=f215a277949711b2c01cdc669e40e171395855bb
Certificate serial: 019652366EEB048400302222FCEA5EA7E172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 08:00:21 +0000
Manifest this update: Sun 20 Apr 2025 08:00:21 +0000
Manifest next update: Mon 21 Apr 2025 08:00:21 +0000
Files and hashes: 1: 8hWid5SXEbLAHNxmnkDhcTlYVbs.crl (hash: zdIbEf/U5+QQYb75WNXHesbwUgksezSZoOwP8XFycEU=)
2: e9rn6bxSsUmtvRo7sJ4lEtK6S2Q.roa (hash: lsA08XTxVJOQQYnez6W7EOdFIkHihRjO9Y7qKfekirQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:6e:eb:04:84:00:30:22:22:fc:ea:5e:a7:e1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f215a277949711b2c01cdc669e40e171395855bb
Validity
Not Before: Apr 20 08:00:21 2025 GMT
Not After : Apr 21 08:00:21 2025 GMT
Subject: CN=9a074758459658eb3552a5c8d77a2c50a676090f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e9:28:c9:6e:c0:eb:46:ae:97:c6:01:5d:81:
e4:18:5b:a6:27:3e:43:99:ca:b2:92:90:e8:38:50:
67:b6:f7:a8:9d:05:2f:c7:94:45:61:8f:2d:ca:2b:
80:07:77:ac:77:14:88:23:c2:26:3a:77:35:49:be:
1a:cd:2d:df:31:b9:ff:ec:d6:e9:de:35:c9:48:59:
f0:a1:9d:14:57:62:a1:f0:9c:6d:2e:78:0a:50:af:
54:41:f4:26:6f:a3:0b:51:63:2d:6d:82:51:31:7f:
eb:0d:63:5f:03:a6:d3:b3:c8:3e:c2:a7:8e:7d:9c:
be:6b:94:21:8d:36:f4:13:03:dc:98:33:71:31:3e:
d1:24:4a:1c:93:5b:70:af:b9:91:3d:61:7e:ac:68:
24:b0:7a:ab:11:af:8d:52:14:10:11:26:ec:9e:ef:
2f:29:f6:38:9d:a6:d6:d0:97:c6:a7:3e:da:54:bf:
9f:ab:98:0d:11:f2:40:ea:95:5a:8e:e4:71:17:d0:
73:30:0c:70:84:b0:01:95:e6:a9:63:be:e7:75:51:
87:14:40:85:02:97:45:49:01:9b:48:fb:25:ce:fe:
b4:2e:72:a2:78:64:18:fb:c8:48:1a:6f:07:40:95:
9e:03:1a:31:e5:da:d8:f3:18:77:0a:b4:50:4c:fc:
1f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:07:47:58:45:96:58:EB:35:52:A5:C8:D7:7A:2C:50:A6:76:09:0F
X509v3 Authority Key Identifier:
keyid:F2:15:A2:77:94:97:11:B2:C0:1C:DC:66:9E:40:E1:71:39:58:55:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hWid5SXEbLAHNxmnkDhcTlYVbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f08d45-543c-49f7-9e78-903c198590fa/1/8hWid5SXEbLAHNxmnkDhcTlYVbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:9f:2d:7d:0f:c2:27:2c:37:c1:7a:a4:27:fc:45:88:37:62:
50:ba:c0:9a:58:f5:75:ef:6f:c9:90:ff:52:1f:0f:d9:c7:e0:
b8:d8:bd:36:58:bd:18:b4:93:5c:43:12:ec:28:75:f3:8b:6e:
e7:c3:53:4e:c8:db:d8:af:e4:37:eb:03:46:a3:f7:dd:00:d2:
3a:fe:af:50:de:41:f5:f2:b0:11:a0:8f:52:0d:ec:c9:38:30:
01:35:4c:3c:66:de:3e:ce:cb:60:a4:f8:00:0a:c7:32:22:d8:
d6:fd:b2:ea:5a:b7:27:ab:f1:9d:bc:b5:8a:9c:bb:5c:b8:24:
17:47:af:80:d4:fe:90:28:1d:4e:2a:2e:a5:b9:51:0d:d9:4b:
40:d0:7f:f0:00:88:4f:29:c3:ed:71:3c:f1:3d:45:f3:69:51:
66:31:e6:79:2b:a3:3b:ef:55:af:2e:8c:86:99:f7:39:33:57:
5b:88:90:b6:5e:35:4e:06:1d:64:9e:c7:fc:62:76:69:f0:21:
b6:00:2b:1e:5d:7b:4f:9f:57:23:ff:a8:e7:a0:14:0f:8a:30:
03:30:1f:c2:e1:9c:14:5d:93:70:86:4c:4e:0a:c5:af:58:3f:
55:4b:2d:e5:1e:12:92:8e:ee:64:fc:3f:93:91:47:9b:c1:b5:
f5:db:e7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:20:15 2025 by rpki-client