Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
File: CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft (raw, json)
Hash identifier: ykOSmOQaWqPGLmL+OCVUKAZtd0Ms7tVuPUfOoEBbQxY=
Subject key identifier: 26:BB:4F:C1:C7:47:5E:1A:67:BE:22:D5:66:C6:54:DD:DA:A8:26:F3
Authority key identifier: 08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
Certificate issuer: /CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Certificate serial: 019650115B05C9E5DE4B243E0941CFDCC5D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
Manifest number: 10FF
Signing time: Sat 19 Apr 2025 22:00:36 +0000
Manifest this update: Sat 19 Apr 2025 22:00:36 +0000
Manifest next update: Sun 20 Apr 2025 22:00:36 +0000
Files and hashes: 1: CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl (hash: 5EuvSIz9I5xl7YzBxlW7Os4ZRzVZLOP2hK8ToHSMqF4=)
2: NSQQr0dchBVb5NqeR8z3x_MXCeI.roa (hash: XPvSVq5h7mPPG5QqR8bg1ZJJPL/y/MfsW5VYh5EY4C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:5b:05:c9:e5:de:4b:24:3e:09:41:cf:dc:c5:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d1f1f8b41d74f7d866b1e5adfd18afe2027108
Validity
Not Before: Apr 19 22:00:36 2025 GMT
Not After : Apr 20 22:00:36 2025 GMT
Subject: CN=26bb4fc1c7475e1a67be22d566c654dddaa826f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:d2:4f:5d:48:19:b3:8f:27:2e:66:ae:a3:
39:2e:8b:f8:f4:6b:9e:68:5f:29:7d:8a:d8:ca:8f:
0b:d7:5f:23:9b:e5:df:41:a3:59:2f:e1:fa:c7:50:
0a:17:24:1d:db:45:11:95:69:53:07:1c:81:0d:31:
3f:0f:30:d5:95:b4:4c:5d:81:a7:a2:4e:95:8e:b9:
5c:82:b2:ce:ba:8d:14:cc:09:f1:31:de:ef:56:f1:
0d:b8:ed:da:13:be:e0:3b:49:9c:3b:9a:8d:dc:3e:
5a:6b:31:39:c1:8f:d9:7d:65:fa:21:a0:a6:47:62:
30:23:3f:04:e5:75:cd:cd:b4:b0:a0:92:2c:5f:47:
f5:67:88:9c:74:73:79:d8:62:4f:c9:df:b0:d0:6c:
52:03:a4:90:3d:73:ec:5b:32:c8:67:6a:6b:ad:8e:
54:41:ed:dd:26:a7:a9:30:89:2a:30:e6:6e:c4:90:
44:1b:d3:ab:4f:a4:0c:99:47:fe:47:f9:e7:9b:34:
b1:c3:be:40:db:00:37:ce:75:35:ee:04:16:d3:b0:
a2:35:da:72:64:f7:6f:25:8c:23:d3:23:1b:3a:c6:
f7:a6:7a:09:48:7f:0e:30:75:6f:67:48:da:8b:0c:
15:f0:91:b5:ec:4e:72:80:0c:3c:c6:68:21:36:fe:
0e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:BB:4F:C1:C7:47:5E:1A:67:BE:22:D5:66:C6:54:DD:DA:A8:26:F3
X509v3 Authority Key Identifier:
keyid:08:D1:F1:F8:B4:1D:74:F7:D8:66:B1:E5:AD:FD:18:AF:E2:02:71:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNHx-LQddPfYZrHlrf0Yr-ICcQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/29c015-d747-4fc7-932b-df5cb9f0e3a4/1/CNHx-LQddPfYZrHlrf0Yr-ICcQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:30:92:09:53:1b:54:3f:c9:78:4d:ad:24:ed:a6:a0:e3:eb:
6a:56:c4:ba:68:0a:b9:a9:67:23:37:b8:70:2f:05:8d:01:8f:
aa:55:4c:4b:ad:eb:d1:45:2c:7e:1c:18:f9:e0:30:35:af:84:
9d:7b:f8:4d:71:db:c8:d5:fb:72:38:90:8d:92:1f:5a:68:c1:
54:9a:3e:ad:c8:d2:8b:af:d1:b9:b0:c7:74:b8:ee:f9:33:8c:
6b:b6:ff:fd:87:df:ee:2a:f0:c6:c9:6f:33:bb:c7:bd:c4:84:
8c:1d:80:3b:24:27:80:0a:e8:1e:e4:50:d4:b2:da:8a:07:e0:
15:56:98:a6:b0:9e:49:e8:cc:e6:14:29:c0:93:96:9b:9c:21:
27:d7:65:88:54:d5:63:3e:5a:f3:5b:a0:2b:75:96:f6:de:3a:
b8:a0:d7:c6:cc:bf:5d:6c:63:97:7d:d0:e3:eb:11:6a:a2:89:
a4:09:cc:d7:f2:8f:03:1d:32:c8:ca:a4:89:20:38:f1:db:e9:
d5:29:89:39:98:c4:53:d2:41:74:b3:7b:fe:a7:53:1a:77:f9:
76:a5:fc:2a:06:94:18:9b:c8:66:11:b7:91:d8:b6:14:f6:66:
14:dd:85:bb:df:9c:f9:7e:1a:87:19:e6:85:93:b7:d9:07:14:
67:0e:fa:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:21 2025 by rpki-client