Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json)
Hash identifier: xPHHIE98ELhg7t9oA/TRzShjXPtEcxviA5ZlwW0oiMc=
Subject key identifier: 0E:25:B6:74:78:1C:21:AB:9A:56:6B:BC:1E:2F:A0:C1:EA:92:69:D5
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 019614D8D450EF79FCDBE66FDAD5C94881CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
Manifest number: 0F1E
Signing time: Tue 08 Apr 2025 10:01:16 +0000
Manifest this update: Tue 08 Apr 2025 10:01:16 +0000
Manifest next update: Wed 09 Apr 2025 10:01:16 +0000
Files and hashes: 1: 0pi9IaQq2fBWcGfcpKeC_IHzvEQ.roa (hash: 7NVRHz/yavsbwJXBgfeDxYrCqDuUxp9nZbgGaZLZ9oA=)
2: 3wW5MOLSStojI9xiPbeDzYTIyjU.roa (hash: 2XAYsLytjrXYCpBJtfGxqKAam2Z4NRRhSRFoEEd4Llk=)
3: C3bQMRmtLfyKqffanrJ7_7vWCk8.roa (hash: EqbhaUJu7cZDNVqNN0UffRpUBKao2EeOOhzgBDrLfd4=)
4: bpfV9qpUqRU7ZbL5m4qH_-0K2rg.roa (hash: 4P0zOtuiLjjQhgT/25d48jeUAEanfYakXWIUUX0ljiU=)
5: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: Br+CZL8lgP0uE8j0MMeXUQvytzzTQZvkhNNt5GDsOMY=)
6: yXjHrq-s43_JYr0rLELUWWQUfRw.roa (hash: 4zzMUSCqPCS+1DFvUjbQidVA6cErC1SxAP7lBmahGck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:d8:d4:50:ef:79:fc:db:e6:6f:da:d5:c9:48:81:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Apr 8 10:01:16 2025 GMT
Not After : Apr 9 10:01:16 2025 GMT
Subject: CN=0e25b674781c21ab9a566bbc1e2fa0c1ea9269d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:53:9b:4e:63:3b:96:4e:5f:d7:2b:6d:85:f0:
1e:af:b8:e3:0f:19:4a:fb:be:3f:04:15:92:82:2b:
2c:c5:4e:84:12:30:14:d8:be:ac:75:95:d4:57:cd:
30:d5:fd:51:33:9a:3f:7f:05:7a:32:fb:7f:2d:0e:
bc:2b:af:e9:1b:f4:71:46:a1:81:58:9e:46:7c:e0:
f7:da:67:20:f2:ff:4c:4f:56:a4:13:38:61:64:04:
1f:d9:80:6f:ce:96:a3:eb:ee:78:f2:0d:4c:2b:64:
e6:72:fc:d4:47:35:6f:90:4f:50:f8:81:02:14:ef:
3a:83:38:3e:1a:2a:38:db:ce:ac:b8:d9:94:be:01:
b4:03:4b:91:62:d5:dd:82:4d:72:87:46:1e:0c:a1:
d6:13:a7:0e:26:ff:f9:32:7f:f9:22:54:bc:82:88:
a9:0b:90:d7:f8:32:dd:40:fb:5f:9a:ae:07:29:f5:
3e:36:89:c5:a9:2a:a6:62:20:0e:5c:ea:05:4c:f1:
5b:e1:85:13:6f:54:af:ef:6d:77:73:91:0b:04:52:
e7:ba:2f:20:77:a8:1f:8f:fd:81:6b:b8:77:af:c7:
65:ce:0f:d9:4d:20:53:71:49:6d:f8:c6:ee:e1:64:
9e:b8:09:8a:4d:a3:0c:01:72:d0:de:e8:df:bd:67:
63:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:25:B6:74:78:1C:21:AB:9A:56:6B:BC:1E:2F:A0:C1:EA:92:69:D5
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:5b:76:a1:9a:b2:f7:cb:a5:6a:04:0c:9a:4e:75:d0:1e:2b:
2e:80:e0:4f:24:cc:84:f2:58:89:cc:7b:9b:84:31:0f:d3:ac:
5f:77:dc:c6:2f:04:09:42:87:bb:0b:59:4d:e2:71:28:96:b7:
93:93:61:54:4c:7a:ca:c5:66:d9:9d:c3:ee:a6:67:cc:4f:a9:
e5:52:fe:d9:5f:92:a6:bf:b4:e4:d8:68:de:fc:19:e0:d2:5e:
38:b1:0b:29:d7:62:d0:b1:b5:a0:de:8c:be:6e:10:fe:8b:f3:
03:ee:2e:2b:bb:aa:e1:ee:29:f4:60:4f:2b:1a:e8:84:99:88:
93:7a:df:f5:84:dd:d9:d9:34:0a:66:07:db:1e:15:d9:27:36:
e5:21:1b:dc:18:56:b7:06:fc:1a:32:6a:50:f9:f0:5a:f1:90:
ae:d8:32:e6:0d:fc:93:84:21:88:47:ec:9f:d1:c9:eb:2a:d7:
b5:a3:7c:6f:f4:35:ea:06:28:2a:f9:04:b5:c3:a5:ed:f0:ed:
f3:62:10:a2:70:2d:ff:3a:0d:9d:8a:72:20:43:cc:44:18:f3:
08:35:67:98:d5:6e:8c:2b:ce:4f:5c:15:d1:c2:e4:7a:08:41:
bf:e5:45:b7:3d:51:44:e8:bc:ba:c0:4d:5f:66:fd:26:6f:4d:
4e:67:d2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:54:07 2025 by rpki-client