Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json)
Hash identifier: 1E7a6Axw/NhwA0+tRM4hpJ/Sqsq5wgrQh5x9Y2kvCy4=
Subject key identifier: B4:0B:43:29:E1:07:98:9C:6C:5F:AD:EE:63:53:3A:20:DD:24:0A:C8
Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Certificate serial: 0196759E9200F7D1A58315DEEFB00C2FD312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
Manifest number: 018F
Signing time: Sun 27 Apr 2025 05:00:48 +0000
Manifest this update: Sun 27 Apr 2025 05:00:48 +0000
Manifest next update: Mon 28 Apr 2025 05:00:48 +0000
Files and hashes: 1: 2pti9pBmz4atvNZhpCWITb53-xY.roa (hash: 0r7is1hWfeXO9VX604GYHWtiKXbqtiLGFrPkk9l13E8=)
2: CR8YJspwxomYpmDyzYM2dLoc98I.roa (hash: iJ3gsU4zydGrCTb03TaGmqam+0fxWdzK3zynKtfQSFo=)
3: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: qzEFxrdeS0J1vqh1sP83uyoBg4Jx6Sq5vD253CkM/vo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:92:00:f7:d1:a5:83:15:de:ef:b0:0c:2f:d3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5
Validity
Not Before: Apr 27 05:00:48 2025 GMT
Not After : Apr 28 05:00:48 2025 GMT
Subject: CN=b40b4329e107989c6c5fadee63533a20dd240ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5b:d5:9f:64:5d:24:fc:bc:89:a0:2f:fa:b2:
aa:02:be:18:70:09:7f:0a:9f:af:ac:a6:ca:90:74:
62:0c:80:3b:39:0d:41:c6:85:5c:34:f5:fc:32:11:
55:5b:60:6f:6d:a6:66:97:4e:0d:ca:7b:95:dd:4e:
f2:67:87:45:a1:5a:ca:94:8c:1d:4d:29:3e:cf:e5:
77:ee:de:1a:74:a5:01:3f:b0:83:c1:37:d5:3f:e2:
66:62:c6:75:1f:86:fe:ff:0a:db:51:12:b5:19:64:
86:6c:89:8f:1a:74:72:00:5e:bd:8f:7f:8f:b2:b8:
1d:40:f5:df:c4:25:2f:26:73:b8:1c:9f:36:d8:05:
e4:75:37:ee:28:c8:62:51:35:97:83:e4:68:dd:d2:
63:e8:9b:7a:a7:35:8f:04:11:59:ab:eb:11:8c:50:
47:5a:99:2d:93:5b:45:5d:f1:1d:72:04:79:ad:b5:
05:27:e3:dd:94:4b:31:cf:ce:9d:65:6d:be:b4:f4:
c3:b4:12:04:e0:f4:92:53:81:64:6a:d1:42:86:d7:
e5:5a:20:8f:fc:65:7d:e7:29:b9:d9:59:4f:5f:0c:
db:56:44:74:b5:ac:fb:ba:6f:48:ec:23:cb:59:90:
29:4d:54:60:da:ac:04:88:f3:03:0f:58:05:6e:9c:
c1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0B:43:29:E1:07:98:9C:6C:5F:AD:EE:63:53:3A:20:DD:24:0A:C8
X509v3 Authority Key Identifier:
keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:32:10:8c:ee:c1:69:d8:b8:d2:52:7c:ba:f5:dd:19:45:3f:
1c:01:75:cc:c4:96:76:e7:9d:fb:b2:3f:b1:71:7d:ca:b2:bc:
6a:18:43:91:77:cd:e4:72:85:de:c0:89:36:55:99:09:13:cc:
be:1e:78:61:cb:53:d4:61:f6:e3:46:03:a0:22:4f:cb:2b:ba:
d0:1f:98:d7:41:86:98:cf:00:1f:ab:c3:79:a7:bc:c8:03:89:
6e:61:d7:15:e9:d8:80:f4:95:56:53:a1:30:4b:ac:66:e5:bb:
63:31:d4:39:ed:7a:ff:89:22:e6:58:a4:33:24:cb:e9:8b:34:
10:59:d7:15:80:33:c3:6c:8e:f7:d7:e8:dc:04:dd:9e:ca:56:
87:98:de:90:e9:6e:c3:62:d4:b0:7f:13:0f:b4:80:d1:79:11:
67:cb:e4:a2:a4:bc:7d:23:97:1f:97:51:d8:5b:9d:15:2f:c5:
99:ba:07:92:1e:66:0e:aa:f0:7e:dd:e1:48:13:10:15:91:3d:
97:ac:ee:b6:6f:dc:11:5a:0a:7b:d0:6a:8f:d6:94:65:a0:7c:
26:6f:5e:fc:81:5f:be:f2:d8:41:6b:4b:7c:f3:03:a5:4b:16:
24:60:ae:79:96:4f:ca:0a:a4:13:da:bb:87:f8:23:14:52:70:
f7:70:9d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 08:37:11 2025 by rpki-client