Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json)
Hash identifier: hbUP904IxibIFkxlTZBEpbXWF8KBtZ+kdUkIAIP5W5s=
Subject key identifier: 81:32:B9:AC:9E:34:46:81:56:94:F9:BB:AD:32:52:EE:91:4B:D0:AF
Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Certificate serial: 01968058C1500EF586101CEFB069D79A1303
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
Manifest number: 0729
Signing time: Tue 29 Apr 2025 07:00:22 +0000
Manifest this update: Tue 29 Apr 2025 07:00:22 +0000
Manifest next update: Wed 30 Apr 2025 07:00:22 +0000
Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=)
2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: r3htSeRpYFw+xjHvzDc2ycnMIKrn69Jv/46/o2CCn4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:58:c1:50:0e:f5:86:10:1c:ef:b0:69:d7:9a:13:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae
Validity
Not Before: Apr 29 07:00:22 2025 GMT
Not After : Apr 30 07:00:22 2025 GMT
Subject: CN=8132b9ac9e3446815694f9bbad3252ee914bd0af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:3c:06:57:f8:35:34:ca:01:97:23:5b:1e:
d3:72:1b:f1:3e:92:9b:04:01:f3:ae:ab:df:7d:20:
af:5c:d9:4e:da:f5:f3:b9:05:2f:ed:96:0c:b2:bd:
c8:06:82:11:2a:21:6a:a9:da:c7:25:fa:4b:3a:97:
42:59:9e:74:5c:5e:a6:29:5c:e8:77:e8:69:bc:42:
19:2e:5d:aa:0a:cd:2a:96:8a:9d:04:78:fe:c6:6e:
e6:a7:b3:4c:79:15:21:de:f6:00:10:69:7b:e9:25:
37:0c:56:7f:02:e5:a5:48:e4:66:91:78:3f:64:4c:
2a:71:0a:f0:d1:16:09:6e:c2:c5:8a:04:11:0e:7a:
66:b3:c4:94:cf:d9:7a:c1:09:16:b3:98:d7:bf:3a:
ca:76:b8:eb:a3:a3:fe:ff:2c:c4:de:a4:2b:5c:60:
4f:f0:b8:88:cf:d4:fb:ef:08:14:29:44:86:e1:58:
2d:6d:7a:63:9c:55:79:2f:5d:f9:c2:0b:f9:e9:ec:
3d:2a:34:33:c0:91:aa:ad:9e:36:70:be:f8:d4:41:
5a:a4:66:0b:01:69:1e:de:f5:1d:53:73:90:27:eb:
eb:77:3c:41:93:74:19:4a:ee:1e:27:df:0d:0a:fd:
79:0e:ed:cb:18:37:75:2c:4b:ce:82:2f:02:e4:33:
69:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:32:B9:AC:9E:34:46:81:56:94:F9:BB:AD:32:52:EE:91:4B:D0:AF
X509v3 Authority Key Identifier:
keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:40:fe:f0:da:26:06:cf:b9:ae:a0:92:e7:86:8d:71:25:09:
60:37:70:d5:d2:c9:ce:cb:1b:d8:4c:56:2f:28:e9:b0:d1:15:
bc:4b:b0:4c:4f:df:9c:0b:44:ca:20:2e:6f:3d:b4:c6:27:93:
33:4f:fc:62:9d:76:6b:7c:74:bb:3a:f5:6f:f5:d2:34:4a:54:
a8:72:84:5c:d7:50:70:3b:90:eb:2a:1d:06:40:85:64:30:78:
f0:a2:91:4b:74:c1:39:7d:3e:12:64:c0:f2:ca:b4:be:0c:af:
d1:3b:f2:11:33:28:b8:cb:a6:a0:16:24:93:57:f9:5c:42:a4:
9f:09:60:b6:9c:fb:40:db:80:e3:e5:48:61:ca:b3:b2:c6:28:
e9:53:93:2d:c1:b0:24:cb:2c:d0:c1:67:5e:4a:b4:1f:da:e1:
1c:32:43:13:15:e2:61:65:1a:47:1b:74:f2:e8:22:6b:a8:40:
68:02:f9:90:12:d9:a3:6c:57:06:27:1c:a8:00:ac:8d:75:09:
e6:8c:ef:1c:3e:6b:81:1c:6f:1f:c5:23:d1:3a:62:b1:4e:02:
48:de:18:72:1e:03:98:db:f7:fb:af:75:f9:f4:f7:a4:a1:65:
b7:5e:f6:af:c4:7e:9c:a1:02:8a:61:36:e1:45:aa:17:0b:ea:
40:73:81:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:26:40 2025 by rpki-client