Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json)
Hash identifier: r7cuH2fThiA84VlMX/CKgne2909hVfX8tBUd/GsrJuk=
Subject key identifier: CE:F2:F8:69:10:C1:2D:0C:31:3E:F2:46:0B:83:29:F3:38:61:3B:33
Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42
Certificate serial: 0196748B808807E0096157B4DD297F5C93B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
Manifest number: 33
Signing time: Sun 27 Apr 2025 00:00:21 +0000
Manifest this update: Sun 27 Apr 2025 00:00:21 +0000
Manifest next update: Mon 28 Apr 2025 00:00:21 +0000
Files and hashes: 1: H_XoU52eTHbpZkmpLvAUJ7VlUWc.roa (hash: i8bOFbhv/rSJKPzgYxH26TzbQ5J62pViGnxTa332Y9Q=)
2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: CzPaAHPxmGFcTwJ3IJ0K7MzR/7yHnpHgh54OXRgaxfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 00:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:80:88:07:e0:09:61:57:b4:dd:29:7f:5c:93:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42
Validity
Not Before: Apr 27 00:00:21 2025 GMT
Not After : Apr 28 00:00:21 2025 GMT
Subject: CN=cef2f86910c12d0c313ef2460b8329f338613b33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:32:96:52:b9:76:8b:11:27:a4:e7:df:2d:bf:
27:29:e3:7a:bf:cd:74:d7:29:14:6f:37:4a:bb:b3:
f0:cf:c4:e1:57:25:88:32:8c:38:d9:af:aa:3c:1b:
bf:f7:0e:5f:44:5b:35:56:b7:c9:45:ad:d5:0b:9e:
b6:99:ac:0c:f1:1a:f0:4e:61:a6:c9:20:30:8d:6f:
2c:ff:c8:fc:8c:39:52:7b:36:ec:f1:28:4b:b4:d1:
05:4b:e9:9d:66:dc:08:12:bb:93:98:6d:5d:c8:8a:
da:a0:04:79:1a:d2:70:24:7b:df:ee:72:bf:73:37:
7b:78:9e:b8:a0:b4:34:00:41:e3:a7:ec:75:81:a9:
c1:60:4d:67:4c:c6:35:3f:cc:ab:f6:2b:9e:d5:7f:
3a:20:25:44:93:88:f6:a8:22:4a:77:a4:cf:71:5d:
8c:fb:22:2a:75:83:67:a3:f4:48:68:06:8f:35:9c:
d8:e7:18:08:35:dc:bb:5c:13:43:76:07:4c:fd:39:
ef:03:37:b2:cc:86:7d:cb:0f:5a:f1:ff:89:df:54:
dd:b6:e8:e3:e0:0a:f0:13:9d:94:f5:76:43:48:f1:
36:a6:33:be:d3:a9:e7:7e:40:c1:1a:7c:87:69:33:
8e:21:72:ec:10:4c:44:29:79:1a:7d:15:44:05:6c:
c5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F2:F8:69:10:C1:2D:0C:31:3E:F2:46:0B:83:29:F3:38:61:3B:33
X509v3 Authority Key Identifier:
keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:34:b9:6c:62:9d:e5:d5:34:3a:29:70:da:36:fb:8d:3a:e2:
d6:db:c0:cf:5d:98:b4:3c:a1:39:c6:9e:0e:de:5c:94:69:1c:
d7:26:f5:6c:db:1a:c6:e9:36:91:3b:04:49:aa:6f:9d:b3:25:
97:49:77:65:aa:47:e0:ae:1a:15:25:72:40:f3:9e:8c:cb:ef:
15:c9:28:a2:a3:31:c3:b6:6f:08:c6:62:78:c7:ec:d7:98:f6:
a0:75:86:e4:b4:f7:37:d9:c1:e1:fc:51:70:29:5b:a6:54:11:
16:96:5f:95:4f:31:3f:39:d8:b7:2a:20:ee:b7:e0:bf:e0:6f:
ea:8e:75:49:9a:63:46:0c:a4:62:e9:a4:96:ec:d3:50:f1:aa:
da:8e:07:1e:bc:49:cf:2c:2e:6a:40:3b:87:e6:a5:af:ac:2f:
a7:a3:ee:74:ce:8a:ab:d8:15:46:4c:29:24:c7:77:88:ba:1e:
11:65:0e:3a:89:88:31:25:13:46:d7:92:f5:ae:31:1c:3a:e4:
fb:25:36:68:d8:c9:90:2a:35:3d:65:33:94:67:a1:01:40:d4:
d1:4f:ae:a5:be:b9:fb:e9:1d:34:23:ec:11:a2:d3:ce:37:d5:
ac:6a:ca:7f:44:d2:90:99:23:2c:b2:d9:9d:6d:1b:e4:f9:66:
91:1c:97:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:26:07 2025 by rpki-client