Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.mft
File: ho8gMJli98bhwyZ_CD4STYPddvw.mft (raw, json)
Hash identifier: Bi6yUeWWLsr9TiqVMnn5EYgk24sxwR/VQF9Cf/HrrC8=
Subject key identifier: DD:CB:4D:BE:79:29:FE:96:7D:67:AB:FF:47:F2:65:29:E3:4E:15:5A
Authority key identifier: 86:8F:20:30:99:62:F7:C6:E1:C3:26:7F:08:3E:12:4D:83:DD:76:FC
Certificate issuer: /CN=868f20309962f7c6e1c3267f083e124d83dd76fc
Certificate serial: 019681D9A7E1278AAF7E37C2225A99FEAAFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.mft
Manifest number: 1518
Signing time: Tue 29 Apr 2025 14:00:47 +0000
Manifest this update: Tue 29 Apr 2025 14:00:47 +0000
Manifest next update: Wed 30 Apr 2025 14:00:47 +0000
Files and hashes: 1: ho8gMJli98bhwyZ_CD4STYPddvw.crl (hash: N9+TmvCmFlera23Yc28xx1FABtrLdbBq9uHzT0oL+80=)
2: rfewBBlrs58wJgdGtzFYKvwGFI8.roa (hash: 12fD5K/uMK4YG5nY9pYsgAuOVyylAM893HbTm9LpUXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 14:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:d9:a7:e1:27:8a:af:7e:37:c2:22:5a:99:fe:aa:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868f20309962f7c6e1c3267f083e124d83dd76fc
Validity
Not Before: Apr 29 14:00:47 2025 GMT
Not After : Apr 30 14:00:47 2025 GMT
Subject: CN=ddcb4dbe7929fe967d67abff47f26529e34e155a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ba:95:57:13:61:81:7b:64:e9:5b:aa:6a:8d:
95:1a:f2:64:02:8c:78:6e:19:66:93:f5:0d:77:7a:
7e:fc:34:52:db:30:8a:c6:3f:f7:46:ea:91:53:72:
1e:2e:e8:be:b0:07:c1:59:07:db:43:59:31:1c:ba:
2f:99:92:45:7b:21:c3:01:aa:25:1d:c8:a6:23:ba:
19:80:90:ca:50:91:64:2b:14:bc:83:05:25:fc:90:
e2:fd:6c:7a:f8:99:e8:8f:cf:fd:3e:ad:56:05:0c:
5e:0d:2a:0b:1d:17:d6:d1:a9:c7:de:7a:26:cf:4d:
bf:20:98:3d:11:7c:ce:23:07:25:00:19:76:26:10:
dc:b4:67:4f:f3:e6:41:74:2d:29:be:86:a3:76:1b:
17:90:c7:a8:fc:3e:f5:e7:fd:f8:4d:6d:a1:ca:e6:
39:2c:a1:f4:5c:3d:1e:50:51:84:09:7b:8f:10:57:
47:dd:d7:a2:92:09:e1:24:92:f4:7f:00:b2:b0:d5:
7a:89:54:2f:af:18:5c:a0:58:30:c8:16:ba:7b:0b:
48:7b:7c:e5:f7:9a:fc:01:df:54:26:b8:f5:43:cc:
4e:49:12:d3:42:60:39:60:c4:7e:d6:82:71:03:fc:
95:5a:71:75:3a:76:75:85:bb:57:2e:b0:69:4c:3b:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CB:4D:BE:79:29:FE:96:7D:67:AB:FF:47:F2:65:29:E3:4E:15:5A
X509v3 Authority Key Identifier:
keyid:86:8F:20:30:99:62:F7:C6:E1:C3:26:7F:08:3E:12:4D:83:DD:76:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:9a:1e:08:a7:7e:24:67:ec:4b:19:40:90:d3:2a:84:c2:d6:
b9:6d:6a:39:54:ad:1c:5f:4d:bb:e3:1b:00:6d:cf:d0:1f:c3:
92:ce:c9:25:2d:90:c5:d0:02:75:f2:6c:16:f5:09:41:b0:a3:
0e:6c:ec:e8:94:ec:d5:01:85:2b:71:07:a4:e7:9c:1b:b5:5e:
0c:94:5c:ba:84:a4:52:83:68:0f:ea:bf:56:08:7c:83:88:8e:
33:64:08:e1:d9:a5:97:7b:a0:e6:14:51:20:c3:d6:3a:85:32:
48:72:fe:17:c6:cf:c4:f6:e3:d8:77:10:23:11:c5:79:e7:ba:
51:b6:2b:e8:10:ce:55:df:f0:56:f8:48:57:1c:14:75:b1:36:
40:c7:28:e5:27:98:a1:d3:9c:34:4f:d6:b8:3b:19:0f:cb:dd:
57:e9:87:08:01:45:36:a0:22:be:75:fb:7b:e5:fc:65:62:1e:
b5:54:18:b8:46:bd:21:0f:49:a1:88:f3:6c:0e:5c:ff:f8:ac:
eb:c6:be:eb:a9:09:41:2b:aa:3e:a9:83:fa:25:8f:5f:b5:46:
c8:33:47:52:06:b5:55:d7:e2:90:a1:1a:34:92:5a:23:02:6f:
14:27:3a:da:85:fc:05:9b:70:f7:e4:3e:df:25:4c:c6:1a:6d:
19:92:e6:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 17:45:31 2025 by rpki-client