Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
File: hLWkCydKlj5e0-8C6DmcubG7DHs.mft (raw, json)
Hash identifier: Ja6NA914xDnnG1gDD30kslzCqAef0ff9hSToCgsyi4E=
Subject key identifier: 16:BE:23:EB:3D:34:2D:74:C4:35:7C:79:9F:FF:A2:39:98:DB:6F:6A
Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Certificate serial: 019644B26DBF71020F2FE3A84FC4E0F3C5C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
Manifest number: 14F6
Signing time: Thu 17 Apr 2025 17:01:06 +0000
Manifest this update: Thu 17 Apr 2025 17:01:06 +0000
Manifest next update: Fri 18 Apr 2025 17:01:06 +0000
Files and hashes: 1: O8vYugo1IMFhRrolkiJ5A2F_9k4.roa (hash: vT082QVsehcKVaVyOGMEheCQhaYoT8jhfxj4aHEzNiI=)
2: hLWkCydKlj5e0-8C6DmcubG7DHs.crl (hash: w14/m+AX5ukZi6rTw1k6YMRuXoguoVED+C70AHy+da8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:6d:bf:71:02:0f:2f:e3:a8:4f:c4:e0:f3:c5:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b
Validity
Not Before: Apr 17 17:01:06 2025 GMT
Not After : Apr 18 17:01:06 2025 GMT
Subject: CN=16be23eb3d342d74c4357c799fffa23998db6f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:78:bf:bb:cb:bd:5f:9d:de:e9:af:6a:5c:d8:
f5:b6:65:7d:b4:ed:fd:a7:e7:e6:87:09:d9:7d:62:
45:57:d1:4b:09:93:02:0a:b2:27:66:8b:f4:65:87:
a1:7f:08:ac:26:fb:65:a0:89:45:a5:3f:a9:3d:b9:
d6:3a:37:3b:8d:08:b1:68:2b:0d:5f:e7:77:8a:5a:
f1:8a:b5:5e:e5:89:37:49:6a:d4:ad:a2:fe:06:a7:
18:ba:8e:5c:7d:7d:db:20:e0:e9:82:84:95:09:e2:
02:8b:e5:8c:41:e8:5e:5f:78:f1:e3:08:ae:55:15:
dc:0b:57:0e:20:50:39:4f:f0:b3:3c:94:5e:b5:07:
e0:c1:40:bb:79:9f:d1:ad:fa:a9:b8:70:19:19:51:
e8:ee:55:fe:c3:70:5c:24:a7:d2:ef:9e:71:3d:f7:
0d:65:ec:f1:94:27:bd:60:6c:e7:f2:a3:fb:4d:3c:
97:4a:8a:af:7d:4a:37:cf:9f:4a:fe:ab:2a:a7:55:
98:b6:03:54:54:48:7a:19:2f:53:d7:1e:d3:5f:7c:
18:de:db:42:6f:31:cd:6e:f3:64:37:52:5d:91:79:
6d:46:da:aa:98:32:a4:fe:96:95:50:b1:9b:0f:fe:
13:a2:11:06:6f:7c:17:f8:3b:c0:e1:1d:a6:41:67:
db:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BE:23:EB:3D:34:2D:74:C4:35:7C:79:9F:FF:A2:39:98:DB:6F:6A
X509v3 Authority Key Identifier:
keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:bc:4e:ac:47:24:d1:d7:f0:64:89:9e:c3:5e:ba:d1:a9:57:
6c:66:37:fa:a9:b9:92:93:f9:a8:b5:18:5c:ac:ba:ad:1c:30:
37:c3:f5:13:c7:68:d2:7c:a8:0c:61:6a:2d:5e:37:51:8a:62:
b2:ff:8c:58:96:67:a6:10:7d:46:5b:ce:4f:f5:55:cc:8c:b4:
07:82:9e:25:42:63:e8:c1:d1:eb:20:42:16:4b:4a:83:8b:35:
a4:fe:c0:45:a0:4d:85:56:56:2e:ad:11:3d:e3:71:cb:9d:83:
40:53:45:9d:5f:e2:3e:9b:69:63:fc:e1:11:ef:10:b0:c4:38:
e3:fc:c1:64:21:50:a8:f8:57:fd:9c:08:83:f1:ba:dc:65:25:
a3:f0:9e:cc:4a:0a:15:da:61:de:3c:9d:bd:cd:64:e1:ac:60:
3a:92:fa:04:b7:e2:a7:79:15:a2:7b:9b:ae:8b:0c:23:46:b8:
09:5c:f0:0d:e7:cf:55:37:a5:8d:a9:d7:00:7c:f2:09:68:8d:
8d:43:25:16:f8:18:1f:87:f3:66:a4:a6:52:36:44:3e:12:b1:
38:14:4b:19:ba:a7:fc:8f:a3:aa:63:fc:2a:b8:94:95:04:4f:
5f:21:7a:32:6e:d4:41:30:58:3e:39:d9:ba:98:46:4e:8e:cf:
42:15:c7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:35:21 2025 by rpki-client