Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json)
Hash identifier: JfqJiU0SXz1d2FzBGKiFD2bz031yqsgugCZNuBhqsO8=
Subject key identifier: A7:58:30:6C:3A:6E:39:60:25:BB:26:AA:B2:B7:F5:66:3C:F7:39:F8
Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Certificate serial: 019674FA080FBC9C156626D3DE1A6AB6028B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
Manifest number: 151F
Signing time: Sun 27 Apr 2025 02:01:05 +0000
Manifest this update: Sun 27 Apr 2025 02:01:05 +0000
Manifest next update: Mon 28 Apr 2025 02:01:05 +0000
Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=)
2: XOmOBh50cvCvJmnFjaJhaHYW2sE.roa (hash: 6F6wNjub6rC7wNAaFOeBE6JJ3w2cU7C6GJM4bNB9ZQQ=)
3: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: sRbDLkJ/XD2+KX0+4o1j3/nERNGCiywVoWGyqjiwIg4=)
4: viZJ1ILrK-Lhvo6EpJnhGu2o9Q4.roa (hash: VBEvk2C209Y5tb0FL9tK/NrEWGQ6MCpm2RIBK/aQkDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:fa:08:0f:bc:9c:15:66:26:d3:de:1a:6a:b6:02:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39
Validity
Not Before: Apr 27 02:01:05 2025 GMT
Not After : Apr 28 02:01:05 2025 GMT
Subject: CN=a758306c3a6e396025bb26aab2b7f5663cf739f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:69:b7:29:55:8c:6b:3b:f5:21:33:db:92:eb:
68:ed:da:2e:72:ed:9d:f4:21:ff:ee:cd:ff:ee:7a:
74:86:7f:4d:85:ac:3e:2e:da:c1:72:c9:b6:d1:7b:
bd:fb:1c:a0:df:e5:51:c2:c9:a8:1e:ae:e3:0c:82:
55:d3:1b:76:51:06:a9:69:0e:ae:57:66:da:94:25:
49:0c:5f:01:99:c7:60:3c:31:4d:ba:4f:43:5a:86:
fa:f8:75:09:1b:6f:13:a2:1b:1d:49:79:7e:3d:43:
d7:93:e6:2e:8c:0e:86:1f:43:ac:9c:22:c5:ac:4c:
32:77:29:c3:9a:66:16:d2:b2:0c:71:00:49:17:1f:
d8:da:0d:27:48:75:a2:4e:31:e9:22:fc:de:c7:87:
e9:09:9a:26:91:aa:62:68:11:ce:02:dc:00:08:a7:
05:39:18:72:83:ac:b8:2a:cd:e8:ae:5e:ad:15:26:
2a:5c:16:51:4f:65:eb:29:35:98:10:19:00:e0:13:
f2:b6:b6:1f:3b:3d:3f:32:ee:f4:5e:cb:47:cc:c5:
2e:18:4b:93:76:fe:6e:40:d2:9f:bf:c9:4c:ee:c0:
f6:de:35:cb:ef:66:55:a7:b3:43:1f:55:1c:47:0c:
0a:3e:6c:e1:26:16:c2:ac:29:d6:e2:98:66:6b:ac:
e2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:58:30:6C:3A:6E:39:60:25:BB:26:AA:B2:B7:F5:66:3C:F7:39:F8
X509v3 Authority Key Identifier:
keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:bc:17:46:5e:68:83:98:00:2d:1b:fc:46:4b:65:75:d4:e9:
8f:80:0a:67:1c:95:03:f8:10:58:22:75:5d:73:9b:92:77:2a:
d3:39:74:fe:05:0f:1c:b3:95:a6:7c:8a:cf:43:65:ea:51:26:
33:b0:44:28:51:f9:ce:c1:35:68:e8:4c:60:43:a5:57:5d:b6:
c4:a7:d7:31:fe:7b:66:3b:cc:57:34:11:23:46:5d:6f:8a:b3:
96:58:a0:83:06:a8:5b:d6:32:66:3c:2b:74:29:a6:15:1d:1c:
9d:85:a1:7b:4a:f5:5c:df:c6:19:ec:79:01:1c:c9:a8:b1:62:
3c:ed:8a:19:9b:e8:c5:81:1f:2f:1b:b4:41:b4:f4:10:65:39:
86:3e:61:22:fd:d1:c9:3e:d8:bc:60:f3:7a:fa:11:56:6b:4d:
b1:d2:55:4d:98:91:10:bf:67:c8:15:16:77:71:fd:6b:ee:87:
74:72:04:83:fc:35:9d:d4:bf:e4:bb:10:d9:5a:1a:05:95:aa:
9a:00:4f:c8:11:fa:49:3f:79:bf:13:cd:cc:9e:b3:a2:04:9c:
09:e1:2e:2e:64:49:ae:ae:28:57:43:42:55:67:dd:be:be:98:
8b:56:f3:e0:43:ba:7d:d4:14:2e:0d:c7:6b:2c:9b:40:9b:d9:
73:ea:e6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 04:12:44 2025 by rpki-client