Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json)
Hash identifier: z7LkLKzU7MPrbgyTfiCUSmYQO9afGV7Ot99o4Pub/mU=
Subject key identifier: DF:69:2C:A2:6D:4A:7B:85:5D:59:02:F6:56:29:FC:25:1D:A1:4B:2F
Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Certificate serial: 0196790D8232C55A6A2914E6173A7B11FB33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
Manifest number: 0591
Signing time: Sun 27 Apr 2025 21:00:50 +0000
Manifest this update: Sun 27 Apr 2025 21:00:50 +0000
Manifest next update: Mon 28 Apr 2025 21:00:50 +0000
Files and hashes: 1: Kw49QnoalcUIwGD7L_UCEBnFzUk.roa (hash: 5nS3wTYqHyzRyVlDkHb3qPe9ElMZpDyRT50Au3dlMjE=)
2: TYiDdMg7jFYESVHenYkZA0H7wJM.roa (hash: nVrivhjrdRI0cWTmcIVa/wHRsP8sZBjo+02UhnnNCZw=)
3: bAtdqWOn7XIMZb40RJnvw-dOPu0.roa (hash: ajLP5I+MW9lN2Pm4hOADp3bTpGVbkghpKs5apJzZVDw=)
4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: GrvWnC1mGSRRPYcfDoOlVneqMvxpJygiimdI6ixEtZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:0d:82:32:c5:5a:6a:29:14:e6:17:3a:7b:11:fb:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b
Validity
Not Before: Apr 27 21:00:50 2025 GMT
Not After : Apr 28 21:00:50 2025 GMT
Subject: CN=df692ca26d4a7b855d5902f65629fc251da14b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:37:4f:3c:df:a4:e0:94:a1:26:21:54:28:ce:
6e:3d:ef:9a:c3:f3:a2:3c:fb:c7:57:67:0e:9f:d6:
24:73:b8:3d:25:ea:97:96:5c:21:3a:3d:12:0c:6e:
32:59:2f:1a:8b:60:1e:04:76:2c:4a:8c:cd:f1:11:
35:4b:3e:0d:e3:6f:94:9f:0b:12:11:64:f5:e1:9a:
81:99:41:f7:9e:2d:cc:42:5a:c4:b2:e8:46:ed:3a:
9e:75:d1:04:5e:ff:fc:e0:94:06:0b:7a:41:47:ff:
d3:9a:15:49:4b:2c:3c:68:e6:18:61:a4:a1:c2:1e:
d2:5a:bd:01:9a:ef:c9:19:ae:74:d9:34:cc:9d:d5:
41:ba:d8:68:78:fd:8b:fd:1a:e0:a3:0b:d8:cd:5e:
ac:93:5d:3a:03:0d:7c:1c:4b:5d:1c:cd:5f:3f:4d:
36:5a:27:f0:5f:a7:9c:bd:89:f2:b1:1f:48:d7:56:
86:56:07:cd:48:6c:64:27:ad:d7:a3:53:54:7f:f6:
b9:cc:0b:83:b3:b7:68:14:67:bb:0f:13:18:5f:ae:
f8:86:a0:1e:59:34:ee:f3:1d:5a:f0:75:71:68:3f:
72:c5:f1:d1:71:f2:b3:c8:63:41:4f:57:73:dd:b0:
12:d5:5e:31:bd:ee:42:2e:17:93:06:ab:9b:0e:0e:
d2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:69:2C:A2:6D:4A:7B:85:5D:59:02:F6:56:29:FC:25:1D:A1:4B:2F
X509v3 Authority Key Identifier:
keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:f2:03:fa:7b:3d:41:50:c3:a9:bc:95:cb:ed:bf:65:e1:07:
c3:8f:e0:8c:aa:3f:4a:44:a9:63:52:a3:76:d6:05:cb:ce:d9:
3f:6d:66:ba:2f:52:44:70:5e:df:0f:47:2e:84:0d:e9:19:b9:
13:55:21:cf:20:25:0c:ff:7b:c3:5d:1c:ef:12:b6:2e:b1:73:
1a:58:97:5a:0c:65:66:0f:20:e6:3b:fb:e0:71:9b:6f:14:88:
a2:d7:75:12:68:a7:4b:90:d0:68:f4:e9:b7:b6:df:f7:44:fb:
95:cc:00:39:d3:09:3d:ae:53:7c:bc:96:ae:ff:5d:33:b9:92:
ac:e5:9f:ea:b8:16:82:9b:33:32:67:6f:7c:76:7e:b2:81:cf:
2b:ff:f7:e9:a1:64:1e:76:e2:e5:b8:27:22:0a:0d:2e:d9:0b:
45:52:d9:9b:a5:ca:0d:a0:ae:d6:65:51:c9:d5:26:f8:29:01:
f9:f4:bb:69:af:6f:f1:c6:e9:79:bc:a4:ac:12:17:f5:db:d7:
6b:ad:50:5f:06:7a:30:9b:61:ec:d4:4a:d7:8f:d9:da:a1:13:
ea:aa:ef:1e:6c:d0:d4:ac:09:b0:ce:c9:9f:00:d7:eb:a9:e2:
2d:80:5f:f1:f8:1c:f5:30:ff:97:ee:e9:b8:44:42:2a:54:01:
f5:72:bf:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:13:55 2025 by rpki-client