Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
File: _hEX6Xaz4zlTuTYbtLseui9Ane0.mft (raw, json)
Hash identifier: wJmZZVxnrOVwC/wSZgZRTDrfYjde2B9zczJrzoaC9Ww=
Subject key identifier: 48:98:57:9A:B6:A2:FF:F4:91:97:E7:14:E2:B8:B8:B3:31:9A:86:E9
Authority key identifier: FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
Certificate issuer: /CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Certificate serial: 0196A164B7C8ED4BB7C220C0E43985E38D78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
Manifest number: 0642
Signing time: Mon 05 May 2025 17:00:54 +0000
Manifest this update: Mon 05 May 2025 17:00:54 +0000
Manifest next update: Tue 06 May 2025 17:00:54 +0000
Files and hashes: 1: _hEX6Xaz4zlTuTYbtLseui9Ane0.crl (hash: tusTL6CQzGZkAoWkdSJ++/OJIj6vvTnLGWLNwcAmg1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 17:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:64:b7:c8:ed:4b:b7:c2:20:c0:e4:39:85:e3:8d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe1117e976b3e33953b9361bb4bb1eba2f409ded
Validity
Not Before: May 5 17:00:54 2025 GMT
Not After : May 6 17:00:54 2025 GMT
Subject: CN=4898579ab6a2fff49197e714e2b8b8b3319a86e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f3:3c:6b:d7:77:27:fc:e7:2e:36:98:04:4f:
31:a9:27:84:a9:ad:da:72:ee:55:36:44:05:b1:01:
e2:2f:9c:2b:bd:7f:fb:e2:9d:94:3a:9a:a2:52:9c:
24:cb:79:4b:e7:a8:8a:37:42:89:b2:d8:92:d3:7c:
e3:3e:a3:e4:72:9e:b3:4f:6c:74:10:67:a0:e6:57:
05:a4:42:1f:bd:28:6e:c2:0e:4f:cc:1a:07:48:ef:
84:c9:18:fe:d0:57:5d:9c:66:ee:72:75:ec:7c:53:
95:10:4f:f9:f8:a3:6e:f9:0b:46:e5:e1:58:c8:32:
cd:3e:47:38:ab:27:f7:cd:39:71:ed:18:82:d4:bb:
dd:6f:c6:4d:9a:c6:b2:16:70:fc:6c:3f:32:b0:1b:
e0:9f:62:bc:89:ea:07:a9:52:79:5e:e1:52:c8:3b:
89:5b:83:53:e5:b3:0a:1f:a8:e7:03:53:f2:34:38:
8f:22:b7:cd:1e:4b:c9:6c:b4:aa:30:f5:ef:6f:12:
64:e2:42:f3:4d:7a:5c:ec:20:a2:8c:7a:0f:92:f0:
38:10:c4:24:72:f3:cd:b2:4c:9f:09:25:06:1f:c4:
4d:17:6c:d7:0d:85:37:8e:23:29:2a:2f:9f:7a:3b:
3b:6b:ad:42:99:b5:e7:c6:b7:6a:d7:78:dc:b2:7c:
68:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:98:57:9A:B6:A2:FF:F4:91:97:E7:14:E2:B8:B8:B3:31:9A:86:E9
X509v3 Authority Key Identifier:
keyid:FE:11:17:E9:76:B3:E3:39:53:B9:36:1B:B4:BB:1E:BA:2F:40:9D:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_hEX6Xaz4zlTuTYbtLseui9Ane0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ccfb64-2ec9-4d86-aace-846e1f41fc62/1/_hEX6Xaz4zlTuTYbtLseui9Ane0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:7f:08:f1:be:4f:21:7b:49:5b:95:ea:8b:f7:c2:55:3d:7f:
4a:14:79:10:84:6b:c9:21:0c:54:cd:de:6e:51:da:11:4b:c0:
f6:13:4a:21:f5:ea:56:a7:5d:1b:0e:5f:70:d2:a6:da:d5:3f:
ee:93:f4:77:8a:09:a5:36:3c:54:92:c6:13:4b:28:4a:b9:ca:
ce:22:2e:db:8d:fe:a3:48:15:c6:52:3a:03:89:be:76:18:c3:
f5:3f:8f:5c:6b:0b:2d:32:77:09:a8:95:a5:38:c4:84:57:bd:
f6:a9:c0:e7:ed:70:8d:f9:cc:e5:af:a8:78:91:cb:b6:ba:ff:
c9:54:b7:b8:ee:a2:47:a9:99:95:45:08:69:6b:02:94:38:a1:
6f:72:09:85:f3:cb:91:bd:ee:14:e7:90:7e:9e:d3:d8:ff:b4:
7c:11:10:7c:d7:38:f6:43:c7:9a:ff:71:3c:91:ce:0a:2c:08:
da:43:47:e6:5c:e0:3b:26:86:df:b5:d6:7a:64:c2:29:8c:5f:
de:0d:f3:7d:7d:dd:e5:58:5f:34:d9:35:88:df:2e:38:3e:46:
ed:95:09:56:9d:da:f3:d9:9a:88:6f:cb:e6:1b:9f:52:cc:a6:
24:7c:ac:e5:c0:d0:9b:f1:ca:85:b7:eb:4e:87:32:25:4c:93:
d2:b4:5e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 01:01:37 2025 by rpki-client