Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json)
Hash identifier: rytq5ROoE8Gkaxtzl3ACf1u8hNzEYY23QkaQyHAbA90=
Subject key identifier: A9:4F:B0:E9:E2:07:5F:64:88:C7:19:84:8A:8B:17:58:D0:08:42:5F
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 0196515B5215DDC1BE6132B5DA5DAB6FA22E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
Manifest number: 02C4
Signing time: Sun 20 Apr 2025 04:01:01 +0000
Manifest this update: Sun 20 Apr 2025 04:01:01 +0000
Manifest next update: Mon 21 Apr 2025 04:01:01 +0000
Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=)
2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: MJeWiQ5Smyy0Y/+E2ATkvoG2BI6O8Fbf/M7GUsqY0Fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:52:15:dd:c1:be:61:32:b5:da:5d:ab:6f:a2:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Apr 20 04:01:01 2025 GMT
Not After : Apr 21 04:01:01 2025 GMT
Subject: CN=a94fb0e9e2075f6488c719848a8b1758d008425f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a8:dd:10:46:0f:12:06:43:a2:bb:4b:40:cf:
53:ff:3b:d3:27:83:15:ef:95:b7:76:de:c9:55:55:
03:67:de:49:ac:d3:cd:c1:82:a3:55:ed:c5:ef:24:
f7:60:37:5e:54:bf:a6:fa:6d:7a:8b:69:31:38:13:
d9:f3:ea:a0:ab:2f:e7:b9:e9:53:82:6a:a7:4c:e2:
bd:9f:14:c0:62:f8:24:02:24:fd:c5:27:3f:b6:49:
6b:0b:9f:c7:26:94:48:ae:7f:86:35:84:d8:23:1f:
d1:f1:21:a6:c1:aa:26:09:85:0d:95:16:2e:f9:a9:
5c:bb:81:b3:aa:28:90:89:69:40:61:9b:70:eb:6b:
9c:aa:77:7c:d1:0f:78:cd:ac:f1:20:b2:fc:cc:45:
59:fa:5e:d8:b8:4c:49:22:fe:05:6e:e0:2d:69:7c:
66:c4:2d:66:96:33:a0:85:e5:ce:d2:4a:a6:02:7d:
9f:31:c5:2c:7c:2b:3d:18:70:a0:5b:79:b4:9b:4e:
55:29:bf:3f:08:ea:f9:03:61:cb:db:33:e4:16:5d:
f0:6c:c8:74:27:cc:e4:1a:a7:55:b1:1b:02:5a:1b:
ad:b2:0f:88:9d:4f:d7:14:e2:44:a5:fa:1a:87:ca:
9a:f5:f3:be:be:1f:71:35:44:58:ab:83:00:8e:12:
e4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4F:B0:E9:E2:07:5F:64:88:C7:19:84:8A:8B:17:58:D0:08:42:5F
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:d3:65:9b:be:f0:9a:4a:a9:74:d0:77:ed:11:fa:d1:fb:99:
9d:ee:61:a0:1f:d2:21:ce:e1:26:b4:4c:3c:89:79:dd:63:42:
ac:91:78:fa:3a:82:f4:3f:46:69:68:f6:0c:c5:31:d1:aa:f9:
f7:90:94:bc:b8:86:4d:0f:ca:a3:ab:57:04:7a:e1:7f:38:fb:
42:29:46:66:6e:ff:b1:ce:b4:23:5b:2c:39:53:86:84:3d:ab:
b3:c6:dd:f0:7b:95:82:fd:d2:f5:85:0d:08:e6:1e:bd:06:fb:
9f:e0:1a:e9:c0:b9:f8:7c:88:97:2c:96:b9:af:9b:bb:93:23:
16:25:6e:55:87:65:63:3e:f9:3a:c2:3f:9a:06:f1:08:91:6e:
a0:77:09:3f:e7:f3:e8:e5:d5:e9:21:91:0a:91:c1:94:0d:aa:
95:27:3d:d9:4a:50:7f:8f:91:56:c9:74:09:b9:32:16:a1:61:
21:89:95:59:f4:79:fe:bb:ff:c9:9f:50:67:67:df:95:bf:0c:
03:7b:d8:8c:7d:98:16:72:1a:e1:d4:97:4d:8f:2e:3e:1c:e9:
5a:53:bc:e7:32:79:9d:8f:77:41:8e:f7:9d:eb:ef:fa:c0:1c:
63:a5:a0:c7:05:37:fe:15:04:a8:b2:d0:1a:c7:10:fe:2d:3d:
be:46:99:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:35:37 2025 by rpki-client