Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
File: hDz1u4drdyt63kMpBctpbxNMqjk.mft (raw, json)
Hash identifier: sfHpnbQZ55XVWmXjbDH/UieUzbli0YzryVM/dZl7BWE=
Subject key identifier: D6:39:5C:69:1C:0C:C3:E1:E3:27:A0:BB:BE:27:C2:AB:0A:01:1D:93
Authority key identifier: 84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
Certificate issuer: /CN=843cf5bb876b772b7ade432905cb696f134caa39
Certificate serial: 0196993D64C49DF2F12D4228BDE9156E8805
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
Manifest number: 1525
Signing time: Sun 04 May 2025 03:00:59 +0000
Manifest this update: Sun 04 May 2025 03:00:59 +0000
Manifest next update: Mon 05 May 2025 03:00:59 +0000
Files and hashes: 1: 8SOVzbdZRi1TiXuPdQBPQag2b1I.roa (hash: 4UxgH1Bm5rLISlPUt1abtwizcDNcCBaAAK4mH1Wxzxk=)
2: hDz1u4drdyt63kMpBctpbxNMqjk.crl (hash: JcBObA++f59fzJjvJO4buEnnLb9KJbkeBDIOiUhHnKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:99:3d:64:c4:9d:f2:f1:2d:42:28:bd:e9:15:6e:88:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843cf5bb876b772b7ade432905cb696f134caa39
Validity
Not Before: May 4 03:00:59 2025 GMT
Not After : May 5 03:00:59 2025 GMT
Subject: CN=d6395c691c0cc3e1e327a0bbbe27c2ab0a011d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:21:ae:93:dd:b0:df:88:d3:eb:5c:96:41:ea:
d8:28:4b:e5:40:b9:2f:e1:b1:b1:32:c8:3f:43:69:
96:b7:a0:c5:9a:f5:11:78:d0:53:c4:e5:c2:63:23:
87:6d:8c:99:cb:59:c9:dd:05:31:19:5c:9d:4b:69:
f9:87:9f:c4:15:a1:b8:f3:7c:e9:fa:60:ba:7f:97:
30:a7:6d:6a:e7:ea:63:c2:f0:e3:55:38:04:1e:af:
b5:0f:e2:5c:57:df:e2:ef:e5:8f:35:55:22:3b:68:
77:5a:27:ad:55:41:da:79:8d:de:aa:48:3c:02:d5:
8b:00:2b:b6:65:0b:3f:19:01:cf:0e:8d:5e:1f:8c:
99:bd:9c:d8:0f:6d:9f:06:3d:a0:5b:c3:93:91:87:
ae:5d:c9:74:e4:fc:0e:ce:78:b2:42:f8:43:09:94:
a5:ee:d9:87:47:8e:76:d1:a0:3b:1b:91:5d:ff:22:
a4:c6:a4:fa:0b:c0:e2:3d:ee:76:ae:b9:3a:6d:8a:
8e:4f:79:36:3f:f1:5c:4d:6d:9c:55:7d:d5:74:c1:
8c:55:99:7a:90:77:8f:69:f7:a7:bd:ec:c7:da:52:
51:16:84:8e:80:ce:82:af:a0:9b:37:1f:7b:7b:af:
72:c8:a7:6a:b0:f8:c0:c1:ac:3e:96:12:85:6a:77:
24:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:39:5C:69:1C:0C:C3:E1:E3:27:A0:BB:BE:27:C2:AB:0A:01:1D:93
X509v3 Authority Key Identifier:
keyid:84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:75:25:ce:15:f4:93:5d:04:c8:c3:76:46:9d:aa:e4:3d:e7:
4e:ef:7c:d0:f3:76:99:57:e1:4b:d3:cf:d9:93:1b:1d:db:18:
a1:d7:4b:8b:6f:97:c9:25:0a:00:eb:64:78:3e:8c:c0:d1:b5:
d2:e4:77:a5:23:70:89:d6:13:4b:8e:e0:e7:12:74:dc:d1:fd:
09:d3:ae:e3:19:41:aa:98:c9:1f:29:b9:88:ef:f2:f4:9b:44:
cb:cb:c7:13:ca:83:b9:f9:7d:20:31:f3:ad:60:45:1d:47:7f:
62:b3:a9:e3:08:0a:a9:34:67:64:bb:51:be:6e:6b:5b:0d:8b:
8c:24:32:4a:40:5e:cd:7a:6d:22:fb:e0:fc:8d:b8:89:10:65:
08:1d:67:18:34:1b:7d:7c:0e:b9:d8:38:c5:03:0f:ea:44:23:
e8:cc:f1:66:66:77:96:0b:36:c6:1a:d6:1c:7f:e6:e2:d0:52:
2d:a3:61:ef:2d:20:0a:5f:57:4b:48:b1:01:de:a5:1d:55:87:
83:2d:a2:f8:31:72:10:ed:d0:f2:a6:09:30:67:bf:63:bb:eb:
86:b8:9a:04:52:00:03:45:ac:a4:10:45:3c:26:85:2c:58:f9:
e3:42:67:cc:ff:74:ab:91:a9:10:fc:31:35:14:79:11:7f:d3:
c4:e6:9c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 11:29:39 2025 by rpki-client