Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json)
Hash identifier: 5s3WmQxfA8KAVzcMiRnTS+YqIRb40mSTTSfbM4pbRHc=
Subject key identifier: B1:D1:09:80:F4:F6:97:BC:28:AC:7C:CD:38:0F:DA:98:80:B0:62:83
Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Certificate serial: 01967E6A8273864FEC7FF818672EA8C4239A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
Manifest number: 08A7
Signing time: Mon 28 Apr 2025 22:00:31 +0000
Manifest this update: Mon 28 Apr 2025 22:00:31 +0000
Manifest next update: Tue 29 Apr 2025 22:00:31 +0000
Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: ilSMLSUh1SpWw8R+ni2Z2P42UTCuRAN4C0SNC0bbT1o=)
2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:6a:82:73:86:4f:ec:7f:f8:18:67:2e:a8:c4:23:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf
Validity
Not Before: Apr 28 22:00:31 2025 GMT
Not After : Apr 29 22:00:31 2025 GMT
Subject: CN=b1d10980f4f697bc28ac7ccd380fda9880b06283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d5:f0:7f:11:b3:01:e0:15:04:aa:57:5b:e8:
75:0b:eb:5c:87:5c:43:6f:dd:09:38:d5:5d:92:77:
43:f7:43:ad:d3:a1:c2:92:ea:c6:18:de:44:91:5d:
7e:a0:dc:9a:b9:29:94:3b:0e:1e:82:d8:6c:b6:09:
ea:a9:f6:9d:c1:51:df:ca:fa:60:be:f3:ed:a0:75:
a9:2a:ec:47:ed:43:bb:ca:be:7c:2a:30:f1:e3:72:
1e:a9:36:8c:3f:ee:8c:aa:38:6f:31:38:a2:71:17:
cc:06:9f:a0:30:6e:52:7b:7c:41:0c:80:ab:7c:3b:
ba:27:7e:be:5a:7a:17:9f:21:3d:81:ba:d4:2f:b9:
d7:2c:df:04:3f:a0:56:c8:2b:ca:23:2e:b1:d4:f1:
84:a1:51:50:a7:44:e6:8d:4c:11:af:f6:6d:81:da:
0c:b5:a1:1c:cb:46:44:1e:44:ad:34:81:e9:8b:ee:
33:19:dd:a8:c0:77:80:6e:14:1c:13:5c:22:b4:70:
a2:aa:b0:71:b0:34:e7:4b:cd:d5:ec:ac:54:63:cc:
3a:d8:95:e4:40:5b:20:b1:f0:e8:7f:a6:59:cf:1e:
fd:52:cd:3b:48:fd:38:5c:fb:01:13:ad:88:3b:5c:
50:33:88:6d:7a:6f:aa:d0:20:38:65:bd:22:b9:b1:
fb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D1:09:80:F4:F6:97:BC:28:AC:7C:CD:38:0F:DA:98:80:B0:62:83
X509v3 Authority Key Identifier:
keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f1:15:ab:f6:c1:ee:34:db:b3:d4:73:66:61:80:d0:4b:3e:
55:59:28:8c:e3:95:ea:2e:fd:04:52:d4:b4:ab:06:58:ee:40:
5a:91:e9:71:0e:fe:c3:78:af:e8:21:f0:7e:87:5d:2c:d0:a4:
03:55:ce:36:e3:77:73:02:8c:58:5e:53:1f:a2:3c:f2:32:35:
68:33:e1:00:66:62:44:20:10:cf:48:31:0a:fd:4a:37:ab:b5:
ae:30:cc:33:ae:df:d2:db:08:2c:65:3b:de:69:cc:8a:5a:5d:
8f:d1:ff:15:6a:d1:34:4f:ef:9a:ee:00:e7:00:1b:89:41:49:
71:5d:3b:a7:c4:1b:44:a6:42:17:6a:ab:97:b4:1f:f1:a3:4c:
44:8f:3c:d2:c1:50:d7:52:e2:e3:35:8d:80:8c:af:2b:97:49:
8c:d4:85:e5:8c:b6:10:4e:5a:f0:e9:df:51:c8:24:80:3a:c1:
ba:fe:d2:c3:b3:12:96:62:e1:06:12:40:bf:b7:61:67:4f:fd:
70:b7:fd:ec:ac:0c:e4:e0:52:39:4d:c9:6b:1c:4a:f3:ea:67:
e9:4b:94:03:c7:a1:6d:c1:72:ec:e9:46:ce:4f:dd:5a:b9:9b:
02:1f:37:53:9c:e4:c2:70:9d:2d:27:8b:22:89:be:e0:b5:a9:
d7:07:a8:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 03:28:31 2025 by rpki-client