Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
File: H7XBu67UTItq4_K1ZtAcwljfws4.mft (raw, json)
Hash identifier: LeMK/KBHFIjEa6S7phU86B6fsjsqAzMkItz7aJ+ZZFs=
Subject key identifier: BC:0B:87:07:31:9E:F2:83:53:BC:B1:F2:48:F1:A9:F4:7C:F5:26:A7
Authority key identifier: 1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
Certificate issuer: /CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Certificate serial: 019658020795181AF84726B86405A4218D42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
Manifest number: 1086
Signing time: Mon 21 Apr 2025 11:00:50 +0000
Manifest this update: Mon 21 Apr 2025 11:00:50 +0000
Manifest next update: Tue 22 Apr 2025 11:00:50 +0000
Files and hashes: 1: H7XBu67UTItq4_K1ZtAcwljfws4.crl (hash: OvisM/imRAai7CNDqy1SA438D9AC20HUsznPEeH8KwM=)
2: MEWWY0epwShfEJbfHo9y4r51GYY.roa (hash: SGRcwmohz12gMReH4Cn9V8oKzsRQ7LvpKURqTZBMtCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:07:95:18:1a:f8:47:26:b8:64:05:a4:21:8d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Validity
Not Before: Apr 21 11:00:50 2025 GMT
Not After : Apr 22 11:00:50 2025 GMT
Subject: CN=bc0b8707319ef28353bcb1f248f1a9f47cf526a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:73:b0:c3:02:ee:a7:d4:e0:f8:2a:17:a8:d7:
70:93:c6:1a:74:99:9b:85:df:75:83:0b:b3:39:9d:
8b:c2:eb:16:bb:67:fd:aa:e6:86:a6:57:57:6a:eb:
86:a4:14:37:5d:89:2c:97:d0:aa:31:81:62:49:62:
14:42:75:3d:4d:03:cf:34:70:55:3a:4a:62:c6:b4:
5e:5b:cf:28:67:cc:a6:86:fe:7f:a1:e1:11:57:80:
5f:10:74:ba:6e:8d:ed:17:c8:fa:18:4d:0d:19:1e:
7c:eb:5b:1b:b4:42:b1:70:15:80:ed:cb:5d:c8:44:
09:0b:b6:ca:64:f9:38:46:3c:77:8c:f5:c6:7a:c1:
88:06:5f:25:06:3f:d9:11:46:2b:22:8c:5c:44:1f:
e4:f1:a6:4b:43:e4:13:a5:61:a1:34:6f:04:0e:1f:
cc:f7:14:07:9c:26:a6:38:9a:2a:10:bc:9f:28:7a:
35:91:2f:16:b8:6b:34:a3:4d:27:f9:ff:e7:ca:09:
c7:e4:b2:97:d1:54:6e:12:e2:7f:e1:f2:f5:10:e9:
37:8b:80:1a:e4:f2:d7:16:7b:5d:84:2d:25:74:29:
fc:6d:55:12:4a:52:80:69:4f:fa:66:ba:e0:61:4a:
2d:95:c4:3e:30:8f:90:b6:fa:8a:dd:6b:77:20:a4:
c6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:0B:87:07:31:9E:F2:83:53:BC:B1:F2:48:F1:A9:F4:7C:F5:26:A7
X509v3 Authority Key Identifier:
keyid:1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:20:2b:11:8a:5f:09:22:15:fc:0c:eb:4e:66:a6:08:fe:a5:
1b:ae:72:01:49:f3:e9:c6:54:fe:c2:f0:c0:8e:2b:d4:f4:86:
ca:9f:04:2b:6d:05:44:68:b3:55:94:c9:e1:84:9d:0c:72:de:
40:f5:f5:3f:eb:f9:c0:b9:0c:9e:99:e8:d3:71:97:90:38:39:
86:17:fe:8d:e0:fb:ad:bf:29:a7:fa:60:88:b9:1b:4a:a7:f6:
cd:6f:ce:6e:c9:84:9d:ee:fb:9a:11:58:0d:fe:0a:9e:1f:6f:
c2:38:9f:c3:ad:2f:76:d4:70:1b:a9:6d:14:5c:03:7c:a9:b3:
d6:3a:63:ab:4f:02:1c:bd:5c:c8:b2:6a:3d:4e:0e:31:25:00:
65:36:6e:be:4d:cd:e2:1e:e4:d5:b8:67:9b:b4:cf:77:d2:a2:
38:82:97:71:9e:7c:8f:d5:d1:25:60:0d:42:1c:52:8e:2a:1f:
5d:4c:90:52:5f:60:ef:9e:87:5d:ef:d4:e1:7b:97:ad:a9:95:
8f:52:49:94:6c:b7:01:cb:7c:ec:29:60:f6:89:93:c1:12:76:
b2:e2:df:8d:5f:92:47:5a:61:86:bd:b5:94:71:2a:3c:66:8c:
9c:a5:59:1b:b7:7b:42:c0:11:37:be:07:bc:91:80:24:c7:1b:
01:cb:8a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:06 2025 by rpki-client