Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: qVZYV0fzVtmA6BjibM31HGBD+tjpudZKUtuUirxnhtg=
Subject key identifier: 66:87:2E:EA:E6:12:BB:74:A4:02:EA:7D:5B:D8:71:1E:E2:CA:D1:E8
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 019679E9A668F60202CBDC75591A54B5593A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 0EED
Signing time: Mon 28 Apr 2025 01:01:17 +0000
Manifest this update: Mon 28 Apr 2025 01:01:17 +0000
Manifest next update: Tue 29 Apr 2025 01:01:17 +0000
Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: 9+bBi7YhEeLpe3flYMRlXTtqpdS/eiLQpD4SSUIw3zc=)
2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:a6:68:f6:02:02:cb:dc:75:59:1a:54:b5:59:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: Apr 28 01:01:17 2025 GMT
Not After : Apr 29 01:01:17 2025 GMT
Subject: CN=66872eeae612bb74a402ea7d5bd8711ee2cad1e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:64:e5:e6:2c:3a:d6:5e:9a:b7:ba:90:95:
4b:77:d9:d6:6d:f9:2e:8f:f0:22:bd:01:86:50:85:
35:7b:cb:22:e1:89:ca:f2:a5:3b:9d:65:25:32:e1:
7f:ac:2f:88:b5:25:93:97:71:e2:f3:55:84:88:83:
d2:09:76:1b:3d:f4:90:86:d6:de:16:ea:e9:9f:c1:
51:d4:d6:b8:77:46:87:5d:1a:36:92:e0:c0:fb:67:
11:d0:56:0f:e9:e4:b2:1b:09:bd:eb:12:e9:66:a3:
9b:9c:b1:82:cc:58:90:b4:7a:86:d9:88:86:43:2e:
15:09:9a:db:73:c8:ec:db:92:ce:ed:10:33:0b:18:
e3:8c:13:cd:f2:49:b6:af:80:d0:75:25:a2:75:0f:
da:44:08:d5:82:74:b3:0f:ab:5b:a9:ee:48:69:f1:
da:be:24:16:a0:19:1c:9f:e3:6d:cb:e6:f6:cd:0e:
a2:e4:4c:59:04:48:42:4a:b2:4a:52:f1:62:cf:bc:
cd:1c:f3:ec:6a:41:32:64:4e:86:87:ce:05:5d:2b:
05:37:75:d7:c7:8b:0e:9b:13:6d:1a:31:6a:16:3d:
7c:36:de:35:e3:bb:d0:a7:64:c4:a9:8a:33:1f:1b:
e4:34:e4:f9:8f:6a:83:11:61:7f:19:f3:d6:8e:d1:
5c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:87:2E:EA:E6:12:BB:74:A4:02:EA:7D:5B:D8:71:1E:E2:CA:D1:E8
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:a4:7e:14:38:82:9b:1f:5a:ad:31:38:3f:cb:39:c2:89:cb:
2b:6b:d3:26:3a:b5:45:1c:0f:9e:18:d6:9f:c2:ae:3e:7a:0f:
c7:9d:5f:d9:72:98:4a:bb:50:cb:6c:03:5d:a0:63:de:fb:15:
45:51:2e:b5:70:d4:32:3c:55:7d:60:6b:b3:2d:8c:39:da:b4:
94:9e:84:e3:eb:1f:86:fe:f4:00:f3:ff:61:18:5f:25:63:47:
6d:04:e1:7c:20:91:0b:cd:3f:35:e3:33:dd:be:c1:51:c9:5e:
99:7f:67:62:36:2d:17:7e:00:95:c1:6d:a3:7f:6a:d0:ae:2b:
8b:fc:f5:41:c3:80:13:15:e6:f5:73:ba:43:0e:74:af:54:55:
2a:94:a1:d5:c4:38:d8:9c:21:ea:7c:b1:c9:c1:3d:8c:b8:28:
3f:fb:ba:a7:fe:50:e8:cf:e3:95:7e:93:5d:30:ba:a5:b2:40:
6d:45:bc:15:49:2a:a4:4d:fb:23:f0:e2:63:54:0b:c3:e7:5e:
c3:f0:25:00:2a:56:70:2c:5c:8e:9b:c6:aa:6e:65:5b:63:93:
e2:c8:1e:cd:f1:0c:3c:9e:fe:8d:ab:eb:ac:2a:77:b9:b4:b3:
23:62:55:8e:fd:a1:c5:ca:26:7d:9b:c6:c2:c1:cf:89:4a:e5:
08:e7:e3:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:19:10 2025 by rpki-client