Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
File: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft (raw, json)
Hash identifier: T+8SxdkbO+mZTDqP5pniuzrL7e3RL0JG7Z1h41Ui+Zc=
Subject key identifier: 6D:AE:6C:18:60:74:FA:C1:FE:18:CE:34:A6:A8:39:EE:16:4E:FE:3C
Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Certificate serial: 01967A57291C0A67ECB9A69656E68D588053
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
Manifest number: 1517
Signing time: Mon 28 Apr 2025 03:00:54 +0000
Manifest this update: Mon 28 Apr 2025 03:00:54 +0000
Manifest next update: Tue 29 Apr 2025 03:00:54 +0000
Files and hashes: 1: UzSEdJBP2Gqr1z-0qx79WTsLauw.roa (hash: vl1ow4mOIeKlrrAdbJAJQJmVxWS6mp39VC/9XaCz00U=)
2: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl (hash: LUX+2OXqfgWNFX/yyRhpUliNx+gkT7bb3sr4AS8gx1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:57:29:1c:0a:67:ec:b9:a6:96:56:e6:8d:58:80:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8
Validity
Not Before: Apr 28 03:00:54 2025 GMT
Not After : Apr 29 03:00:54 2025 GMT
Subject: CN=6dae6c186074fac1fe18ce34a6a839ee164efe3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:fe:bd:f2:37:71:24:7c:37:d3:f2:3e:c1:
6b:63:df:40:a5:98:bd:a3:58:81:e4:68:e4:34:03:
25:4c:e6:94:03:7a:74:2d:17:84:9e:e9:d8:f8:cd:
7d:71:ba:4f:5f:bb:f4:a3:c2:c9:ba:e2:f6:89:50:
53:07:58:b7:92:70:5e:97:87:b1:17:49:ba:bd:dd:
cd:4b:e7:6b:c8:79:30:37:59:a2:91:bc:63:b4:e1:
f1:2f:20:0b:ad:4b:79:fb:ba:2e:d9:b1:a7:36:33:
1f:41:20:49:f9:65:88:c6:26:fa:24:33:9c:2f:f1:
de:b8:96:d6:3f:69:39:3a:83:db:94:32:26:91:91:
20:fb:7e:82:c1:d7:2f:67:f1:0c:84:3a:70:db:12:
ac:d5:25:89:7f:68:8b:f1:9e:89:9b:60:63:80:ee:
e8:1d:45:91:e2:2a:4f:82:4e:b3:c4:b0:51:54:9d:
13:8f:78:54:92:94:52:6c:f3:20:60:8d:f2:dc:0a:
ed:d4:58:ce:7f:3b:2a:0d:40:dc:b9:85:a7:63:0b:
2d:5f:01:a4:d9:70:1e:92:73:48:39:d3:c0:1d:2b:
12:2e:36:9f:a2:4d:31:1f:3c:6b:c3:35:e3:5c:12:
a8:49:2a:9c:05:c5:d1:ca:0d:9f:56:6f:5b:23:08:
ea:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AE:6C:18:60:74:FA:C1:FE:18:CE:34:A6:A8:39:EE:16:4E:FE:3C
X509v3 Authority Key Identifier:
keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ea:02:aa:75:11:5f:be:8e:20:34:41:e9:6e:5e:4e:9b:12:
06:85:60:04:24:ed:44:00:86:fd:15:17:2e:ce:71:3b:36:db:
ba:de:1f:e9:0b:39:96:8a:9c:d3:7f:09:b9:e7:e9:2a:e8:19:
a3:d7:31:a8:cd:b8:60:8f:07:eb:03:14:0d:b7:9d:08:36:41:
6f:91:cc:da:8a:b4:47:6a:a1:b2:86:d1:16:59:12:43:0a:99:
54:9c:33:a4:24:5d:3d:68:b5:49:36:70:11:f0:c1:97:b4:ca:
a9:ea:5f:70:b0:81:b8:89:ad:7c:d2:6e:d8:7f:b3:bc:a6:e4:
7a:7d:a2:25:12:71:fa:10:8d:e0:ca:30:a5:29:c6:a9:1a:da:
df:ca:7b:af:b2:8f:63:69:a5:3d:b8:e7:c3:33:47:e7:4c:fb:
f0:ef:2d:24:fd:df:85:4a:99:4f:97:d3:a1:33:d2:da:3c:67:
e4:28:2f:b8:8c:62:26:14:b7:17:b1:da:c1:18:ba:ba:46:e2:
5a:ab:7b:1e:0e:20:36:0d:b4:25:06:1d:19:82:b2:9f:5e:87:
ae:66:26:9d:64:7c:7c:f5:1b:e5:9b:ab:69:fa:ed:7f:1c:8f:
4d:be:90:fd:c5:f3:7d:da:3a:00:ad:1f:01:a9:49:14:70:c8:
d5:c5:3d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:41:58 2025 by rpki-client