Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
File: dHyzZv9uI99sCX9grcf6gHVZgZE.mft (raw, json)
Hash identifier: 2jah+tE/iMlOuXLznMccc8VPXx0p5bZH9EiZmtaj5+4=
Subject key identifier: 44:3C:76:EB:4C:58:EA:03:C4:9E:23:09:B0:38:D4:D9:97:BA:46:06
Authority key identifier: 74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
Certificate issuer: /CN=747cb366ff6e23df6c097f60adc7fa8075598191
Certificate serial: 019678D644DF1E4E27B9AFEB49D1B58CD364
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
Manifest number: 08D8
Signing time: Sun 27 Apr 2025 20:00:30 +0000
Manifest this update: Sun 27 Apr 2025 20:00:30 +0000
Manifest next update: Mon 28 Apr 2025 20:00:30 +0000
Files and hashes: 1: _yLmchLwIYVTnPdJc9fw9h7BqNI.roa (hash: jQg4aqJLhfqC2o9cWdzjV4aGpmH8JtaZPWEi/oExAo8=)
2: dHyzZv9uI99sCX9grcf6gHVZgZE.crl (hash: jXsKixgfXy73hcQm3Nqmucq7O0LOk2v+3tJLHgtOmIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 20:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:44:df:1e:4e:27:b9:af:eb:49:d1:b5:8c:d3:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747cb366ff6e23df6c097f60adc7fa8075598191
Validity
Not Before: Apr 27 20:00:30 2025 GMT
Not After : Apr 28 20:00:30 2025 GMT
Subject: CN=443c76eb4c58ea03c49e2309b038d4d997ba4606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f3:69:42:51:1b:05:c2:a6:d8:65:1b:3d:d1:
b4:a2:58:b8:95:0d:a1:ab:75:50:aa:d0:98:c0:51:
fc:10:7c:80:71:a2:26:4e:0e:29:d6:86:5a:d2:9a:
95:a3:39:ed:94:37:5e:46:f2:98:14:25:ad:bf:f9:
33:20:5f:8e:38:58:d0:9f:ae:1b:72:c0:40:e3:20:
d3:3b:89:d2:e5:0e:d4:39:95:24:11:ce:a9:ef:8e:
e3:55:33:45:8a:8e:36:d4:61:5f:50:28:2e:9b:df:
6f:bc:6c:4c:16:49:f0:7e:aa:bd:18:9e:29:7d:1b:
72:40:09:be:13:2b:9a:2d:84:ab:17:22:61:11:02:
46:b0:93:a4:4a:96:18:ea:dc:90:54:ad:b1:cd:b8:
a1:7b:80:c3:14:77:5b:b1:de:fa:3c:3b:39:29:d1:
97:df:4d:0f:2d:0b:0a:f1:27:57:fe:6a:6a:bc:0e:
43:41:22:98:95:b4:4f:c2:9c:37:8c:4f:34:ae:2d:
a3:57:d6:07:50:c0:8b:c1:e0:ff:be:9b:57:49:56:
43:be:d2:b4:53:15:cd:67:ca:8b:09:2e:0a:6f:6b:
a3:e2:ce:d6:bb:91:cc:6d:69:19:ee:e5:67:23:1f:
27:9a:20:75:1c:04:6c:22:39:6d:44:a4:15:42:7e:
20:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:3C:76:EB:4C:58:EA:03:C4:9E:23:09:B0:38:D4:D9:97:BA:46:06
X509v3 Authority Key Identifier:
keyid:74:7C:B3:66:FF:6E:23:DF:6C:09:7F:60:AD:C7:FA:80:75:59:81:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHyzZv9uI99sCX9grcf6gHVZgZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3ab55d-852f-495b-b2b3-e02d730fe84e/1/dHyzZv9uI99sCX9grcf6gHVZgZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:44:20:c6:a1:58:d5:be:08:d3:a7:dc:f9:f2:f6:56:46:28:
3c:49:bb:02:ca:38:df:21:40:cd:a7:59:e0:47:08:2c:23:a2:
c6:9b:97:75:72:81:ee:0c:47:43:a7:06:27:ce:43:8d:a1:54:
3d:9e:2b:ec:58:be:b5:64:1b:85:1a:1f:67:60:03:30:ff:9b:
32:e4:f1:c8:3e:ab:4e:bd:50:f1:3c:a4:97:69:94:31:9a:69:
57:72:86:f9:bb:ee:60:ac:80:9b:87:17:64:70:80:32:da:54:
e3:18:e9:b0:a9:9e:f2:25:c9:fe:29:92:df:63:ab:36:9d:23:
99:e1:f0:70:e2:77:ff:8b:04:e9:dc:22:1a:c9:39:23:f3:60:
8a:f3:0a:d6:be:f1:63:fb:34:9a:e4:be:0d:97:37:5f:ef:49:
cc:c6:2f:21:12:9e:f2:9f:c8:c3:d3:07:63:2d:eb:a9:c2:3f:
16:ed:05:50:62:04:0a:86:8d:55:52:61:7a:42:53:04:39:b3:
40:ca:60:ec:8c:95:5c:b8:64:48:88:3b:06:fc:15:fc:7c:ae:
3f:f7:cc:80:8f:06:6d:93:91:92:f4:e0:b0:37:1d:a7:cd:3c:
ea:90:70:5b:3f:ca:51:62:e8:90:49:0d:ad:3a:66:73:04:9e:
ba:29:ed:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 04:29:08 2025 by rpki-client