Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
File: heFWexaBgzyUSl8mQKngO-jvC_Q.mft (raw, json)
Hash identifier: qxZ7QD/rYrVOBnDnQ8F+eNsbQUCrChWJL1jtr+fzZP4=
Subject key identifier: 90:4B:8D:F8:4F:DE:DC:CF:75:EA:77:19:BD:B7:59:7A:4E:68:1D:ED
Authority key identifier: 85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
Certificate issuer: /CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Certificate serial: 01968691C8B007121C45DF5E50B92A036CBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
Manifest number: 0E24
Signing time: Wed 30 Apr 2025 12:00:22 +0000
Manifest this update: Wed 30 Apr 2025 12:00:22 +0000
Manifest next update: Thu 01 May 2025 12:00:22 +0000
Files and hashes: 1: IVTm7Sk0HOhJBNyed6XFY_Z2R94.roa (hash: i1RGEeFc6A0tWd9gQ48945gkWc6E43q8yFMFeZXbGTI=)
2: heFWexaBgzyUSl8mQKngO-jvC_Q.crl (hash: a/sWMePKCK2B+azYAmhRftNlWhYRK3VUkQoOxK52ovw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 12:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:91:c8:b0:07:12:1c:45:df:5e:50:b9:2a:03:6c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85e1567b1681833c944a5f2640a9e03be8ef0bf4
Validity
Not Before: Apr 30 12:00:22 2025 GMT
Not After : May 1 12:00:22 2025 GMT
Subject: CN=904b8df84fdedccf75ea7719bdb7597a4e681ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:97:f6:b3:fb:25:db:bd:50:5f:c6:46:3d:
33:7e:3d:77:d4:17:ee:6b:06:a6:80:0c:53:70:29:
b1:fc:39:a5:25:61:8e:5c:51:e2:f7:26:b5:8a:2e:
e8:9f:c7:07:72:12:a6:e6:06:52:77:bf:f9:9d:53:
1d:a0:13:91:2c:38:4b:97:56:1b:fc:ec:7f:ef:a8:
d7:0a:b9:73:25:8f:00:85:cf:21:b4:16:e9:41:44:
01:4a:70:73:e2:00:4c:e8:58:a1:d8:d8:1a:aa:56:
45:9d:6f:a0:5e:4f:e4:50:d7:bb:1a:f9:99:a4:c1:
a0:f7:a1:0b:a1:dd:db:54:a3:2e:3e:6f:35:ad:9d:
15:e3:12:df:6a:71:d8:9f:1d:fd:8e:cf:9d:7a:5b:
aa:16:af:55:ed:64:89:63:75:65:88:a5:14:93:36:
16:5d:b6:17:83:cf:67:ac:41:50:16:42:54:2a:b1:
f4:09:8f:20:3b:73:d8:83:7d:7f:1c:54:e1:12:c7:
0e:0e:1a:64:f4:26:a3:7a:91:91:26:32:fd:54:29:
1c:b8:52:03:fd:df:12:af:38:0e:5f:6b:92:9c:07:
56:6f:62:d9:a2:4b:90:8f:24:74:1e:c9:e8:5f:19:
4d:74:e0:e4:1c:4e:85:8e:99:02:e0:e8:3f:e3:86:
e1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4B:8D:F8:4F:DE:DC:CF:75:EA:77:19:BD:B7:59:7A:4E:68:1D:ED
X509v3 Authority Key Identifier:
keyid:85:E1:56:7B:16:81:83:3C:94:4A:5F:26:40:A9:E0:3B:E8:EF:0B:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/heFWexaBgzyUSl8mQKngO-jvC_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/df4945-f532-4a01-a7fa-53a998de63e3/1/heFWexaBgzyUSl8mQKngO-jvC_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:58:05:e8:59:31:1d:f5:fd:56:84:01:37:e6:e0:85:85:8f:
da:43:37:87:33:81:6c:ae:06:cb:36:7f:1e:b3:7e:69:d1:7f:
e8:82:44:be:54:d7:98:9b:72:ad:e2:df:a7:72:49:0f:d8:9d:
d9:b2:28:05:05:77:93:88:22:52:27:96:89:96:ae:4c:23:3b:
82:6f:37:45:dd:79:7a:f3:6c:68:92:9f:e5:8a:b2:71:23:c8:
6d:e5:74:af:84:43:f6:da:78:3d:85:5e:54:19:06:3b:a5:2a:
bf:f7:f3:40:23:5f:43:af:6f:d6:cf:71:12:0a:fd:39:27:35:
04:31:a7:7a:7c:34:92:73:64:5c:05:8a:ee:13:ee:78:8a:b3:
00:59:19:d4:7d:61:e4:81:74:2f:c4:a5:0a:0a:92:ff:2b:a5:
c7:5b:66:d6:ee:60:7d:5a:70:43:7e:43:70:c8:ef:34:de:3e:
4b:26:51:6d:74:1c:28:55:f1:9c:1f:7e:34:5a:30:5c:2a:b1:
0c:0f:1b:7e:31:8e:7a:63:29:42:f8:f1:7f:dc:a9:df:1e:30:
68:82:da:9c:83:e1:7b:5c:af:19:a9:6d:cf:39:a6:ff:a5:02:
06:21:3e:e3:62:ef:a4:1d:1c:de:83:53:79:41:54:00:05:92:
c2:c1:09:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:23:27 2025 by rpki-client