Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json)
Hash identifier: aT7jZbsmMLyGwx6xv6TSQ3cDDgeb2ndjESDkJoVT2HE=
Subject key identifier: DB:B4:A9:C5:FD:BF:75:4A:9C:C8:2C:FA:EE:77:F6:E9:87:9B:FA:AD
Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Certificate serial: 019695972FD4F2D90480FF62394E07F9A7D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
Manifest number: 07AF
Signing time: Sat 03 May 2025 10:00:35 +0000
Manifest this update: Sat 03 May 2025 10:00:35 +0000
Manifest next update: Sun 04 May 2025 10:00:35 +0000
Files and hashes: 1: 5iC1C_l2xnIVtV_ynL6awoKgYMQ.roa (hash: c0Zm1e9RjgR5PBfasK6Q1TzGKpfYhKyszQz9aW+gUGA=)
2: K2099PO4iAtvBzGlnwl1axWP2hE.roa (hash: 6aTZlr/sfRYyJqs+vE8kRpR5W2QDPbSiPNBoLmmWJlA=)
3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: 1qJJojLOFp2SpcPZxAqItSD0Mo4VNJAFf70Q2hHTNzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:95:97:2f:d4:f2:d9:04:80:ff:62:39:4e:07:f9:a7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a
Validity
Not Before: May 3 10:00:35 2025 GMT
Not After : May 4 10:00:35 2025 GMT
Subject: CN=dbb4a9c5fdbf754a9cc82cfaee77f6e9879bfaad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:95:32:25:68:ae:c9:e2:bc:a3:77:b7:71:
b5:a0:ff:3d:a5:be:3e:eb:18:d9:b6:a6:ea:0a:82:
45:e7:54:84:41:01:6e:c8:f6:59:02:28:7d:04:bb:
7d:ef:33:37:32:0c:90:c4:7e:55:3d:64:2b:b3:f3:
d2:31:24:d6:bb:61:94:bd:99:7b:cb:6b:8b:46:02:
2d:f6:9d:15:c2:32:1a:3d:85:0a:08:4e:c8:9b:29:
24:b7:b1:17:76:1d:4e:7e:e0:7f:c1:ce:a2:1a:09:
d8:76:4c:9a:c9:79:c6:28:82:12:c9:45:5d:48:8b:
e2:de:eb:3b:aa:c3:6f:5c:ce:bd:27:49:54:06:fe:
85:ca:06:4b:05:c3:9e:67:70:06:4f:f5:fb:6e:61:
66:6f:0d:4c:39:95:77:c8:c1:ef:8e:d3:0d:af:fa:
5b:9b:4d:52:a7:d5:71:d1:58:43:f3:db:81:78:cd:
f1:ec:b5:72:e2:56:49:e2:2a:6d:1b:27:39:18:34:
80:06:bd:8d:c5:d4:63:e3:c0:61:61:14:f2:ca:2f:
f6:ce:f7:3f:10:dc:a5:b4:d2:27:40:9e:ce:78:02:
43:e7:74:2d:98:3e:46:32:a3:18:fc:3f:a6:c6:c8:
0c:cc:04:1c:3f:eb:35:10:c3:0b:4b:a3:91:98:88:
9d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B4:A9:C5:FD:BF:75:4A:9C:C8:2C:FA:EE:77:F6:E9:87:9B:FA:AD
X509v3 Authority Key Identifier:
keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:e8:64:63:bc:e7:db:f9:ba:fd:b6:52:a7:a4:ee:c1:0a:cc:
14:d7:b8:58:db:cf:69:d4:ff:25:7b:33:f8:72:44:91:25:0b:
ed:8a:a1:01:02:1c:80:5a:8b:53:95:30:0d:f0:a3:4b:78:b4:
d9:b0:c6:c8:6e:9d:4c:cf:4f:6d:04:e9:3c:03:f3:ee:18:b6:
52:32:50:2f:10:cd:9a:9c:bd:68:ca:eb:da:a1:31:1e:4c:36:
e0:4f:47:d9:bd:77:e5:b1:79:f2:ff:d9:ca:a3:95:74:9f:bd:
f9:00:46:84:44:01:5f:59:2a:01:13:c1:3a:2d:5e:df:3b:99:
b6:0f:b5:a1:7f:24:57:36:7c:52:ed:98:8c:bc:e5:7f:72:6c:
98:4d:e8:52:9e:b6:c7:58:c5:eb:5e:39:6c:9e:52:16:1c:de:
c2:ff:21:41:bd:30:12:74:8f:26:76:0d:69:c1:ee:68:1a:e4:
f1:13:9c:48:39:3a:5a:6d:0b:39:65:7d:91:96:27:72:32:cc:
96:20:3a:1e:a5:3c:a5:53:6c:8a:aa:07:d0:b9:f4:cc:57:57:
67:b1:b4:9b:5f:66:a8:ba:d5:83:fb:56:0a:b5:c4:45:0d:65:
3d:e2:f7:4d:82:c0:e2:21:f5:14:64:fd:65:f2:dc:c3:15:e4:
74:b9:9c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:35:00 2025 by rpki-client