Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
File: 8HHkN5gsw0b26BfKZIknI-21QZo.mft (raw, json)
Hash identifier: feGEjoeOM1gHtImibekg5x7iS8bvmY5NHaf/rcspKN8=
Subject key identifier: 17:F9:97:CC:03:04:D2:0A:CE:EC:11:B3:8F:9C:AE:06:8B:42:7F:9F
Authority key identifier: F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
Certificate issuer: /CN=f071e437982cc346f6e817ca64892723edb5419a
Certificate serial: 01968F9513F3E00E93FC5A8B1D7A818E9BAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
Manifest number: 0E7D
Signing time: Fri 02 May 2025 06:00:33 +0000
Manifest this update: Fri 02 May 2025 06:00:33 +0000
Manifest next update: Sat 03 May 2025 06:00:33 +0000
Files and hashes: 1: 8HHkN5gsw0b26BfKZIknI-21QZo.crl (hash: t57rIFjceQ2TRcn/+5WmoTvHPn6CwK+iio4UDHUN5IE=)
2: Wb0clcxCuCcUH9RDxENV44_1l9w.roa (hash: IOO34gWbQwbQwVQDhS544nKGrCLE+a+zuAW9waRkyRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:95:13:f3:e0:0e:93:fc:5a:8b:1d:7a:81:8e:9b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071e437982cc346f6e817ca64892723edb5419a
Validity
Not Before: May 2 06:00:33 2025 GMT
Not After : May 3 06:00:33 2025 GMT
Subject: CN=17f997cc0304d20aceec11b38f9cae068b427f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:47:fa:81:ed:ac:b9:1a:ba:85:f1:46:64:8e:
0c:51:5a:15:72:34:50:24:67:dc:78:c5:6b:5c:43:
8c:81:7c:3a:15:54:3b:95:6a:7f:38:fd:66:c7:3e:
5e:72:cd:ec:86:c4:71:35:a7:79:c1:13:c1:51:a0:
13:bd:d9:c6:48:95:20:a1:49:08:b7:63:13:49:80:
3f:cd:e5:07:f5:89:85:aa:78:ed:fc:43:3f:97:66:
93:10:74:b5:f9:d9:24:7a:2d:38:9c:80:07:6e:ca:
76:4a:5b:88:c9:5d:52:47:1c:fc:eb:cb:3e:3f:f0:
f0:f8:38:e5:38:e0:2e:5d:f2:14:21:e3:91:3c:f2:
9c:07:9f:43:ec:69:88:fa:1b:9f:f8:f8:04:e9:bc:
2a:75:d0:c8:ba:71:26:56:40:56:34:8f:50:9c:20:
ba:cb:18:ca:d7:9c:a4:98:6c:65:2a:db:c7:fb:40:
48:60:bc:6b:f8:90:f9:af:e5:33:27:7e:b3:fd:22:
e3:aa:ac:ad:89:79:ce:35:99:7e:a6:65:71:b2:b1:
ec:3f:5a:87:69:41:44:49:4a:cc:20:80:ea:44:b9:
19:59:7d:8d:fc:13:13:b3:bc:6b:47:6f:79:37:85:
de:e4:39:1a:94:1b:c0:38:60:bc:b1:4e:e5:5c:0b:
40:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F9:97:CC:03:04:D2:0A:CE:EC:11:B3:8F:9C:AE:06:8B:42:7F:9F
X509v3 Authority Key Identifier:
keyid:F0:71:E4:37:98:2C:C3:46:F6:E8:17:CA:64:89:27:23:ED:B5:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HHkN5gsw0b26BfKZIknI-21QZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/00725a-19ef-4244-8897-78cb59b78a4f/1/8HHkN5gsw0b26BfKZIknI-21QZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:a4:6a:bd:04:9c:af:47:3a:63:aa:ba:c9:80:ec:44:44:d8:
6e:d6:1d:2a:c9:b0:7c:a5:9e:80:ba:8c:64:d5:7a:63:8a:bc:
db:1c:7e:b3:11:26:e7:51:14:8f:97:a0:ed:31:c8:6c:aa:f2:
ea:b3:ee:3b:b5:47:d8:f4:f9:11:0a:e7:d4:a5:6d:eb:7c:56:
7e:82:1f:9d:7f:84:20:08:a3:da:21:90:8c:c5:1b:ec:c4:3c:
2e:ea:f4:59:6c:d8:3c:ff:3a:eb:99:a1:8c:ad:77:49:62:4b:
12:39:a1:80:9a:e8:9b:d3:18:b8:2d:9c:5d:2d:97:f3:b9:2c:
be:82:71:9d:23:ca:f2:35:fc:7b:90:6e:1f:9d:93:c4:ab:f4:
27:96:d2:54:07:b2:b2:02:d8:6d:26:30:ca:74:7c:77:9d:19:
c4:01:8e:82:7a:ef:00:91:28:9a:c0:3e:4a:1c:8d:a1:bb:16:
b0:c8:f8:37:b0:89:53:24:d4:41:7c:7b:1d:22:43:17:f5:8a:
4e:fa:67:0c:41:c4:c9:97:4b:1c:1c:51:8c:e9:49:6f:36:88:
13:ff:14:8b:34:f4:d1:90:f5:68:1d:ae:e8:f7:96:57:1a:75:
4d:be:38:23:9f:8e:25:7c:9a:3e:d8:4b:bc:ab:5d:f1:22:88:
4d:8f:f3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:46:14 2025 by rpki-client