Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
File: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft (raw, json)
Hash identifier: KJpY9qlBhxrdTWlX9nCWk3KeTazWeyabUjIKpBGccls=
Subject key identifier: 47:0E:8E:19:34:9B:93:E1:2A:7A:54:72:A6:92:DE:10:39:0E:EB:20
Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Certificate serial: 01968E82DCAE777C92947C7BC0C41D603A9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
Manifest number: 0A20
Signing time: Fri 02 May 2025 01:01:02 +0000
Manifest this update: Fri 02 May 2025 01:01:02 +0000
Manifest next update: Sat 03 May 2025 01:01:02 +0000
Files and hashes: 1: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl (hash: YJk0MqNWkJarIJ1feodJPoprKDTtU38gQK8vahkIqZk=)
2: ntEteGeDZu85wNJOAqgjTrUSx54.roa (hash: Q0TMKcR9tSI7oBt+FGXWaqYBj7j3GPsfDK87Fv5h+YM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 19:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:82:dc:ae:77:7c:92:94:7c:7b:c0:c4:1d:60:3a:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5
Validity
Not Before: May 2 01:01:02 2025 GMT
Not After : May 3 01:01:02 2025 GMT
Subject: CN=470e8e19349b93e12a7a5472a692de10390eeb20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:af:11:14:a4:46:10:10:4b:13:1a:0a:70:d1:
7e:95:9c:8c:b5:ff:9d:4e:7a:ef:91:e5:9b:29:9e:
c3:92:37:f1:18:99:fa:f1:46:4a:e2:32:43:64:49:
13:e6:f2:7b:70:90:f6:58:14:96:78:34:84:f5:72:
a7:b3:de:20:7c:c9:6a:97:c6:2a:0e:76:21:10:6f:
61:95:7e:00:9c:07:3a:e6:fa:9c:64:d0:db:df:b4:
8a:bf:49:5d:d2:cd:33:8f:ae:c6:4a:fd:4f:66:23:
82:6d:ef:a6:89:85:65:97:8d:90:0a:a8:1b:df:b7:
71:e9:b6:ec:42:8a:17:8b:08:98:81:45:85:fe:c0:
c7:ef:6a:52:bd:0b:33:41:a6:a5:ec:99:19:9c:d6:
9e:28:2b:e3:e7:a1:66:76:ee:43:3b:ba:9b:51:f8:
64:20:ce:c1:a6:55:f1:7a:8b:c8:6e:99:fb:5b:dd:
b7:db:6c:61:ba:12:79:0d:85:5f:d3:2c:e1:66:c9:
66:f5:26:82:7b:05:41:90:c3:86:3f:bb:b2:f6:71:
5c:85:bf:0b:16:90:a5:fa:8c:98:96:44:1d:f4:44:
c3:19:fe:f9:e4:d8:5e:3a:a3:40:19:86:6e:a5:1f:
31:08:fb:b2:1d:61:20:c8:db:d9:53:10:ad:1b:90:
d2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0E:8E:19:34:9B:93:E1:2A:7A:54:72:A6:92:DE:10:39:0E:EB:20
X509v3 Authority Key Identifier:
keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:d0:56:72:10:23:82:99:53:27:ce:07:60:13:ce:8f:ee:a5:
8b:ca:e8:18:f2:97:ac:37:01:b2:5c:c0:34:f6:20:33:8b:c0:
2b:40:d0:fd:4f:5a:db:44:c4:7b:0e:23:4a:98:d4:9f:7b:13:
11:10:eb:e3:0c:28:cb:c0:84:32:2a:df:69:b2:ef:d5:de:82:
b4:e0:15:8c:2b:3a:9b:e5:a0:ed:ad:b3:0b:ac:b5:51:aa:89:
75:2b:ba:b2:27:a8:f3:b5:b1:98:04:1b:77:3c:2c:90:7d:67:
c7:6d:c7:37:1b:07:60:16:7c:63:3b:59:97:55:c9:8c:e1:09:
45:e2:2f:3a:63:ee:83:a8:09:0c:7c:4f:37:2b:a6:8a:09:ce:
6c:43:78:4e:b5:d5:b4:d3:41:7e:16:d0:00:63:18:35:9a:be:
f3:05:6f:d4:9e:57:f2:fc:a0:57:6c:03:02:2a:44:32:ed:d8:
a9:64:9d:4f:35:07:0a:8a:bf:d8:86:59:37:ab:32:e3:40:0b:
72:36:42:bc:00:94:c8:89:ee:cd:4f:36:f4:42:92:71:38:99:
f7:c5:fb:fa:ac:ca:eb:98:b2:12:6b:32:82:a8:df:e6:52:7d:
2c:2f:6d:10:18:34:16:36:b7:96:6e:39:b2:a2:d8:90:3c:49:
32:1c:95:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 02:44:01 2025 by rpki-client