Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier: HvHBMFLAJzuP44qnw40byFuWkBiDJV12BB/9suadOps=
Subject key identifier: 0C:24:B5:B9:66:6A:35:D6:27:65:16:06:64:30:10:A1:A9:D7:06:C1
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial: 019690029DE52393BFB97E429E67AF3D5C5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number: 0E7A
Signing time: Fri 02 May 2025 08:00:12 +0000
Manifest this update: Fri 02 May 2025 08:00:12 +0000
Manifest next update: Sat 03 May 2025 08:00:12 +0000
Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: EPpV9kg38C+HkvLqMF2TWTdmcImrIRJ8j4nOLzvkhQQ=)
2: NO2hwXxk6AiYVNho9DdnmakKibo.roa (hash: KjRA6xm9G+dFvFvEr1pRfwpBhmr4/09q+ZWaH5ApdDY=)
3: On6R4nNTZ0YYv_0GBGytm6COqe8.roa (hash: bNbiiOOyNE6FHV7YY8Nd3d02QHZTqUZthKpv3jqVHn4=)
4: _UiUxv0oU2Vs8vl9aQlqGT-rguM.roa (hash: EibngS/6U5WbywdZke7WcdMlnrfByt82mvGn2UMi818=)
5: qnHwx7ZjqkHGMQ3UL_6iH_ZiPZ0.roa (hash: v6x8FXcAuZgdOrpOuZAffsHlmhE2j1MwJFDVe05keHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 08:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:90:02:9d:e5:23:93:bf:b9:7e:42:9e:67:af:3d:5c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Validity
Not Before: May 2 08:00:12 2025 GMT
Not After : May 3 08:00:12 2025 GMT
Subject: CN=0c24b5b9666a35d627651606643010a1a9d706c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f1:06:16:48:e1:a9:fe:e2:7b:b8:68:6a:c8:
b5:f4:d6:e3:62:40:30:3f:27:0e:ad:56:0f:22:d8:
ea:9f:0d:f2:11:3a:57:6c:ac:de:cb:34:1e:fc:55:
11:e8:54:a8:76:1c:5b:af:ed:fe:a4:47:02:75:1c:
e4:74:05:93:08:24:4c:35:f9:31:f1:cd:c8:3b:44:
fe:5f:91:d5:2f:8c:28:9c:cc:0c:e4:3a:67:e4:c3:
7b:77:c1:e7:07:47:be:cf:cf:8e:90:40:10:8f:37:
dd:fa:95:c8:30:42:d2:00:28:ae:53:40:57:36:ab:
13:c5:3b:04:cc:c7:53:0d:f0:60:4c:f1:44:9c:9e:
61:08:5b:b7:ea:b0:04:3b:26:e4:73:2d:3b:88:6f:
b2:f2:aa:87:43:4e:30:8a:0b:73:31:e8:f2:2c:07:
db:d5:bd:21:55:2b:07:20:55:f3:28:6e:7d:b8:bf:
b2:13:64:01:8d:69:73:30:c0:54:a0:1f:6c:fe:8e:
ca:c2:c5:cb:91:d2:68:df:fd:b7:ef:37:c4:cd:e0:
ad:26:ec:69:bc:03:2e:d7:50:be:32:29:fa:c2:56:
5e:39:29:be:0d:86:07:ad:1e:c5:ee:0a:86:15:36:
a0:e9:c5:77:a6:be:92:a9:10:b1:63:08:55:41:48:
b3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:24:B5:B9:66:6A:35:D6:27:65:16:06:64:30:10:A1:A9:D7:06:C1
X509v3 Authority Key Identifier:
keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:e9:86:45:f4:53:3c:1f:9d:44:a8:d1:5c:66:cb:ff:13:c8:
e2:c6:6f:91:8e:ab:02:fd:e5:ca:77:42:33:08:c0:dd:d6:0f:
db:2c:1d:05:21:56:0a:f0:01:d3:31:72:d0:36:f5:23:e6:58:
f3:fd:c5:f9:98:3d:4e:70:f8:11:b4:e6:49:07:0e:45:21:56:
26:28:fb:cb:30:63:fa:d6:4e:d6:e1:93:fc:75:20:45:d6:79:
c8:6d:64:65:4e:dd:6c:ed:ab:bd:af:61:72:1f:8e:1d:99:fe:
a4:20:41:34:ce:9f:2f:03:b0:b5:b1:65:13:cc:90:f1:46:ea:
51:e0:30:02:e5:55:bf:30:b4:10:36:d8:3a:89:5c:ba:c8:13:
47:13:23:30:d7:5f:06:bb:c4:be:72:10:71:c7:be:c7:2c:0b:
6d:70:dc:a3:9c:aa:de:5b:7b:c1:3c:2d:b2:75:b8:e7:dd:4c:
1c:44:7c:12:9e:d6:a2:14:90:75:92:18:34:c9:65:e3:2f:2f:
01:80:bd:8d:d5:83:ed:19:7d:4d:f8:d0:bc:0e:fc:35:86:7a:
d8:89:52:d4:be:e6:78:1b:7d:5c:d2:ff:2a:de:d5:4c:67:93:
e9:87:00:68:97:0a:f6:34:28:36:01:7f:04:fa:12:42:a4:f4:
64:7c:7c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 15:40:42 2025 by rpki-client