Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File: pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier: kTsmyuKG0zpAQMGNLEQ0b5UwB3Aq0y/N3/M0M5++57g=
Subject key identifier: 6A:5F:49:58:84:22:8A:88:56:28:61:85:9E:93:1F:C7:0B:4C:A8:40
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer: /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial: 01967E344E613FA13843A48F812E1F84EF28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number: 08B0
Signing time: Mon 28 Apr 2025 21:01:19 +0000
Manifest this update: Mon 28 Apr 2025 21:01:19 +0000
Manifest next update: Tue 29 Apr 2025 21:01:19 +0000
Files and hashes: 1: H2ciew030YT_ZKL58SNBSDs0iQc.roa (hash: dr7FPAyraTf1nqxR0HjlvGsow4ZxkGibDCSpB0tZ3CU=)
2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: JDqjRcBpNj3i3wOmNSlw2yVCdusOC9jFZcupGH9IHRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:34:4e:61:3f:a1:38:43:a4:8f:81:2e:1f:84:ef:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Validity
Not Before: Apr 28 21:01:19 2025 GMT
Not After : Apr 29 21:01:19 2025 GMT
Subject: CN=6a5f495884228a88562861859e931fc70b4ca840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ab:e4:da:49:a8:89:7e:51:d4:a9:bb:f6:f5:
cf:de:59:da:7d:9f:a4:91:b4:8e:ba:53:91:cb:d0:
ca:74:d0:56:6f:f3:93:20:cf:c9:b7:14:2b:b3:e6:
bf:0e:fc:da:99:dd:85:78:d7:02:75:cb:72:3f:bf:
2b:86:81:45:9c:7a:70:c9:37:98:ba:4e:56:95:ad:
73:69:38:a4:03:d8:e0:d2:ee:b5:94:f4:ac:c8:f1:
46:f1:a8:9c:5e:38:34:0f:18:a5:ed:fd:a5:c5:2f:
de:68:6b:f0:94:cf:5c:2c:3e:20:51:ec:e7:f8:16:
ae:c6:91:90:bb:f0:3e:51:79:69:37:72:ff:03:f2:
2c:af:0e:05:50:17:c5:db:86:b1:e4:5b:dc:3f:f0:
81:08:dc:57:9a:d1:4e:84:bd:bd:ab:c1:36:06:bc:
26:9c:40:37:7c:ff:6a:49:ed:dc:2e:aa:89:b7:7a:
ff:93:08:27:94:cc:5b:a5:e1:b7:9e:f6:84:98:0e:
6c:f2:61:60:c2:6f:5b:c2:06:a6:6d:2b:66:77:7d:
3b:cf:7a:88:af:81:3c:45:8f:17:07:9c:95:d1:73:
90:da:b1:4d:68:5e:d5:4a:ae:f4:f8:1c:bd:5e:be:
7b:e5:bb:28:5b:e2:93:57:23:38:60:35:67:0a:33:
9b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5F:49:58:84:22:8A:88:56:28:61:85:9E:93:1F:C7:0B:4C:A8:40
X509v3 Authority Key Identifier:
keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:d3:65:fc:03:46:c1:c3:f5:e2:11:54:48:a0:d8:54:56:db:
f2:fb:a7:58:05:be:05:9a:5f:c4:79:98:4b:76:4e:45:12:df:
df:f4:4b:8e:15:39:f0:31:06:87:08:21:2c:64:ba:63:80:23:
f9:40:0a:27:51:92:2a:45:8e:96:4c:32:59:88:8f:31:90:cf:
63:58:3b:bb:bf:22:22:66:12:46:5f:da:10:21:c7:ae:d9:bc:
73:25:a7:fc:d6:c5:33:50:2b:bd:e1:8e:e2:96:82:2e:34:ba:
b6:7e:0e:12:49:30:cc:45:2d:3a:da:4d:be:71:52:a2:9e:a4:
65:b4:47:d9:ee:47:84:c9:bd:07:10:42:3b:da:17:c8:3e:4c:
c0:ef:e0:63:5a:3c:19:6d:0b:fe:e4:c6:ec:39:5d:78:8c:90:
7e:09:50:0f:aa:e8:c8:61:c7:8f:1a:4d:56:bd:80:28:1b:7e:
42:5d:a4:ff:e7:f5:d8:51:5e:a7:8b:c8:b7:11:94:6f:88:e1:
68:bc:19:f4:16:04:50:45:c5:b8:dc:9b:cd:ce:8c:9a:ec:76:
03:e2:7f:6f:62:38:ea:40:de:4f:9d:9f:73:50:c2:ea:2b:83:
b9:9c:22:ea:5d:66:66:72:19:e8:80:dd:3d:74:6f:0a:6d:58:
fa:49:fb:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:02:02 2025 by rpki-client