Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json)
Hash identifier: AXOLpm6Sgy411zCfzBhLklqenpfepMtlwfE99LiW5kE=
Subject key identifier: 80:93:A8:B3:2B:07:75:02:DA:3B:9D:08:85:EB:88:EB:FE:B4:9E:21
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 019678686D1EA006FA45BDFB8CA4FCBCF15D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
Manifest number: 10BC
Signing time: Sun 27 Apr 2025 18:00:31 +0000
Manifest this update: Sun 27 Apr 2025 18:00:31 +0000
Manifest next update: Mon 28 Apr 2025 18:00:31 +0000
Files and hashes: 1: EgrdXaLN-vc8C2zZS8RN3DywvDo.roa (hash: hzm54PDUPW3onP/qtSLZRsQOvKv3wuQ4riGx7IRQcQA=)
2: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: FY8oGLg8y8Zf9LaKxYmNoCUZ/jYhmUDdISmizJdrIWE=)
3: rAaiXMvO9i5snovqluPbyo_QCN0.roa (hash: pt3vDzVbNzSpy4PSZ8+XX3gpZBn6uEG/ZRILx9TbDQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:6d:1e:a0:06:fa:45:bd:fb:8c:a4:fc:bc:f1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: Apr 27 18:00:31 2025 GMT
Not After : Apr 28 18:00:31 2025 GMT
Subject: CN=8093a8b32b077502da3b9d0885eb88ebfeb49e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:44:55:0c:c0:f4:26:e9:87:59:2f:f7:fc:82:
17:69:6a:01:0f:37:11:87:77:b8:7a:0c:02:43:1c:
94:6e:fc:46:ff:6b:64:b6:83:3a:e5:b1:c3:e0:35:
d0:35:90:7d:62:87:de:f8:c5:35:77:05:7f:38:4f:
3d:82:7a:0d:34:f6:14:67:32:d2:58:ea:93:4d:1a:
1e:d1:a0:37:9d:2e:b5:e9:ec:a7:52:1c:49:17:d4:
08:dc:5d:55:be:45:8f:1a:b8:75:d2:33:17:b9:32:
15:d8:f2:1a:4f:00:5d:73:c0:16:2f:07:19:7b:79:
e4:ce:d7:e0:0c:25:ef:82:d7:de:ac:d4:5e:76:bd:
b1:ee:a8:23:1f:a7:81:f0:49:be:4c:dc:db:a0:f3:
dd:91:a4:52:53:ac:08:cc:d9:34:0c:68:5f:b7:88:
18:c2:56:8f:7d:8b:c7:48:bb:da:a0:cd:32:b2:b3:
6d:7f:33:49:2b:69:b4:54:16:2a:1b:5f:83:8f:9c:
7d:ec:d0:19:c6:1e:ea:28:ab:e4:08:b7:e8:cc:ee:
eb:82:15:d7:83:04:f7:8a:4a:b9:46:71:3e:4b:57:
e4:ef:b9:49:3c:3c:74:10:56:eb:da:cf:d5:95:5a:
1d:51:d8:9c:1c:f5:43:99:b5:c0:68:e8:a7:c5:a9:
3e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:93:A8:B3:2B:07:75:02:DA:3B:9D:08:85:EB:88:EB:FE:B4:9E:21
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:e6:b9:fe:f8:22:ef:97:c9:9e:6f:45:0a:be:5d:b3:f1:91:
cc:00:d2:f7:ea:49:84:29:7d:08:fa:4b:5f:19:1c:f5:12:e9:
57:1b:45:19:e2:ed:07:62:50:a2:a5:06:0b:0f:8d:6d:37:6b:
17:ac:92:a6:ce:29:58:b6:13:73:86:11:1c:31:a7:a0:61:d8:
73:ee:d8:a0:15:af:7c:cc:75:9e:fa:35:de:b5:ef:12:a2:34:
14:64:91:92:78:2b:72:1a:10:50:bf:e2:3e:13:0c:c2:5e:f9:
8a:d1:97:4f:14:6f:1e:6c:4f:b4:4d:48:62:e8:ac:84:43:4d:
0e:21:a9:3d:af:7f:2e:0c:6e:20:19:65:45:a7:a5:82:93:d9:
ca:bc:31:b5:d7:c1:fd:8f:0e:b0:c1:a8:3b:93:c7:e8:8a:56:
53:9c:19:f3:af:82:18:35:ef:a4:b4:28:60:3e:f1:03:58:13:
3e:20:d4:3f:b6:85:08:06:49:53:27:2f:33:ab:dd:d6:ed:4e:
f6:40:f1:01:9e:68:bb:70:d3:b2:6b:81:39:23:ed:fb:95:0c:
8e:bc:35:99:9c:b7:5b:36:4d:e0:57:9d:7b:f3:06:7d:8e:d6:
9e:ac:f2:dd:23:35:08:72:96:6e:5c:3a:3e:38:68:74:e5:62:
9e:b7:ac:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:03:45 2025 by rpki-client