Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
File: hst0KgO8nIVQcheiUgTf_4L8zfk.mft (raw, json)
Hash identifier: NEe4oJncGHf8J6nbJk/OW66WAfc8V3RIOjI3cNvbQ/0=
Subject key identifier: 7A:53:2B:01:53:27:27:27:C1:D4:FC:71:28:BB:7E:C0:A8:4D:51:5F
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 01967454721393739210047100F6D2E736B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
Manifest number: 0E19
Signing time: Sat 26 Apr 2025 23:00:13 +0000
Manifest this update: Sat 26 Apr 2025 23:00:13 +0000
Manifest next update: Sun 27 Apr 2025 23:00:13 +0000
Files and hashes: 1: 1-TKHNCKbZE8g4XJcuPLU9wUNwXw.roa (hash: 4YE3N5IWvrJIb1gbK5UKUvbBqNqAEHWjC5reIu6mjb8=)
2: LbhZMBeDnr1qMQnMxvTged4AkBg.roa (hash: emzGjVkdxSZb/ajPZYnZYJApon4Jb9kZGLpvd1zwrzU=)
3: P4l18X0E6wGAiypR58C2CsBAfew.roa (hash: V35a2kBLapjAgjmC/NuotWMp7OBF1Qv4aZCQYf/dZTg=)
4: YfG3Zer9S1-dTwVZ058bt2jGz7A.roa (hash: 2aerzGz5WDeQmLCPvnO2oE90pi2KsboywKSSiTQQgEI=)
5: hst0KgO8nIVQcheiUgTf_4L8zfk.crl (hash: 4jlkQlocriQodLwzOXI3vCfAeIdF74GWplQlxQc3yuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:54:72:13:93:73:92:10:04:71:00:f6:d2:e7:36:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Apr 26 23:00:13 2025 GMT
Not After : Apr 27 23:00:13 2025 GMT
Subject: CN=7a532b0153272727c1d4fc7128bb7ec0a84d515f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:57:0c:6d:66:04:79:fb:65:11:0f:bc:45:d8:
13:a1:70:45:b7:61:d4:02:75:18:18:1f:15:ed:cb:
e7:97:c7:07:09:40:6f:56:b4:fa:32:9c:1a:54:50:
1a:07:ba:ee:57:c1:36:12:f4:0a:5e:d7:aa:e2:06:
c3:65:04:e1:7c:66:26:5b:73:96:4c:fe:b0:ef:a0:
f9:9f:1f:85:cb:89:18:03:a4:51:68:ee:31:72:34:
2d:6c:1c:78:6c:99:05:4f:ed:50:88:4e:e2:9c:0f:
94:18:7e:83:4d:df:7b:95:65:ec:43:cd:c7:c6:83:
a4:3a:e0:76:8c:41:b9:d3:b7:89:ad:f3:49:de:fb:
a1:4f:a8:d5:f1:7e:e6:97:50:50:cb:36:f0:30:bc:
c5:27:d4:e3:5c:ba:3c:4c:66:2b:97:2f:09:40:db:
9f:a7:7c:c0:5e:cb:42:86:73:e8:4d:16:70:3e:55:
40:46:4d:77:e7:9d:8e:71:b4:aa:eb:04:19:52:bd:
8b:5e:67:ba:24:14:ee:b0:9b:cd:6e:13:0d:db:f8:
78:cf:52:ed:27:b3:7e:91:40:7c:c6:9c:de:ae:6d:
25:f2:5f:1d:a8:c2:9b:ba:3a:45:22:4e:e7:f1:e2:
19:42:f8:7d:89:fc:98:46:c3:86:76:74:c1:22:5c:
0b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:53:2B:01:53:27:27:27:C1:D4:FC:71:28:BB:7E:C0:A8:4D:51:5F
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:51:9a:cc:b2:71:c7:ff:ab:0a:db:73:39:19:e4:32:b8:86:
43:64:84:7c:be:59:c7:61:94:9a:12:cb:b4:39:fc:5a:34:d0:
0c:64:54:4c:13:7f:c6:96:ef:b7:41:fe:dc:1b:3e:ee:32:a7:
de:9f:2a:c6:b6:7d:45:02:23:15:6d:a6:a2:a7:89:80:40:f6:
68:49:19:4f:83:89:3a:7b:25:c7:5b:f9:fd:ef:f4:40:78:39:
f1:f9:5f:fe:42:c0:2a:7a:64:9b:88:f3:02:03:fb:af:4c:60:
9c:d1:c6:46:33:8a:f1:a7:6b:14:fe:42:4c:e6:38:80:aa:69:
51:fa:1f:a0:f9:67:48:50:91:b9:6a:5c:9e:19:22:8b:8f:ea:
a6:fe:21:2c:33:11:8b:88:30:30:65:a8:f1:5d:54:71:b2:f5:
7b:3a:42:02:59:07:c9:11:d0:72:bc:a7:e7:c5:05:93:06:12:
79:7b:c1:04:76:a3:93:03:67:f5:9a:b4:67:18:0a:2a:17:00:
e2:96:5f:5b:04:4a:6c:55:ad:b7:17:6d:04:fc:16:06:05:c8:
27:2f:90:c4:4b:fa:f1:f3:87:f9:50:ba:a6:70:b8:17:3b:a1:
2d:85:08:9b:a9:8e:25:8b:80:a4:bd:0e:dc:a9:43:3a:6e:9c:
f9:a6:6c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:48:08 2025 by rpki-client