Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
File: hSOM5-r2mlui8JR7K6BTOUtFts0.mft (raw, json)
Hash identifier: Y31aQnmJJEkEsYMjVjUEiS5LP1aqPidxNL2VAr/UzYw=
Subject key identifier: 54:A9:CD:43:4D:C3:FC:8A:BB:49:9A:40:31:65:DE:00:30:52:45:66
Authority key identifier: 85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
Certificate issuer: /CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Certificate serial: 0196CB3BE3438D9006EF2A02C9B39CF4AF05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
Manifest number: 14CC
Signing time: Tue 13 May 2025 20:00:21 +0000
Manifest this update: Tue 13 May 2025 20:00:21 +0000
Manifest next update: Wed 14 May 2025 20:00:21 +0000
Files and hashes: 1: WlFkHZf-mGa6meWaQmN57qSrEtA.roa (hash: B5J0da5BqpBMDIf+RMe68Zm2sCoZIjqiRagoU19Nd+4=)
2: hSOM5-r2mlui8JR7K6BTOUtFts0.crl (hash: njFL7E9ypAsXBJvYBTbErppuhd5+Zsy1SmEp2iA8UNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 20:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:3b:e3:43:8d:90:06:ef:2a:02:c9:b3:9c:f4:af:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85238ce7eaf69a5ba2f0947b2ba053394b45b6cd
Validity
Not Before: May 13 20:00:21 2025 GMT
Not After : May 14 20:00:21 2025 GMT
Subject: CN=54a9cd434dc3fc8abb499a403165de0030524566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:da:25:cc:c1:3a:0e:a9:7b:b6:08:5b:7e:7a:
98:d9:fc:9c:2b:f0:9a:6c:d8:f4:70:40:b0:6b:2f:
b3:e0:74:dd:c5:42:8e:a4:b1:9b:09:2b:e9:f7:15:
8c:86:de:df:9f:c1:21:35:6c:ec:0e:93:48:7f:d5:
0a:41:b5:60:c0:71:aa:a0:a0:e5:f5:0f:db:5a:16:
73:a0:ac:0b:04:bc:4e:0d:8f:5d:19:86:1d:25:1f:
61:43:d4:ae:9e:9b:61:73:2d:f1:b0:7a:0b:92:fb:
8c:8f:2c:d8:f5:3d:5b:5e:e9:3f:06:4e:98:d5:40:
31:d9:14:b0:40:17:80:08:c4:15:d3:43:60:29:32:
c1:3c:05:c5:38:04:9f:35:4d:2d:a0:25:57:d6:2e:
21:45:cf:55:ee:0e:62:dc:33:c4:3a:c5:8d:e2:0b:
de:8a:33:14:ab:bc:e7:88:f0:9b:47:f3:0f:35:71:
eb:33:0e:99:91:b6:d2:6a:eb:3f:a4:21:37:c1:83:
a4:d8:f9:2a:62:85:5e:da:c7:ba:22:99:d8:ab:0a:
19:4d:67:70:1c:3c:6a:41:e6:52:13:d5:73:e3:aa:
fc:b6:6a:31:ca:f4:69:8f:ab:21:76:95:58:f4:b4:
33:20:7c:99:42:9c:5e:c6:01:25:f5:24:f3:f8:b1:
0c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A9:CD:43:4D:C3:FC:8A:BB:49:9A:40:31:65:DE:00:30:52:45:66
X509v3 Authority Key Identifier:
keyid:85:23:8C:E7:EA:F6:9A:5B:A2:F0:94:7B:2B:A0:53:39:4B:45:B6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSOM5-r2mlui8JR7K6BTOUtFts0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ca4114-2fb9-43d1-b528-032af836c172/1/hSOM5-r2mlui8JR7K6BTOUtFts0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:0c:d8:4c:7c:16:1e:58:fa:7d:ee:30:a7:f8:77:9f:95:5c:
98:42:5a:eb:82:bb:88:2b:63:ac:3a:c8:49:88:0f:0f:6e:70:
76:a8:4c:fd:b6:0b:b3:8a:5a:f9:82:8b:2b:36:e6:7d:52:d4:
9d:a7:57:f8:5a:85:0a:d6:79:62:af:e2:37:67:71:7a:5d:b8:
d3:b8:8d:4a:d0:83:7c:3e:8b:7b:b6:63:8b:72:e9:d0:56:15:
e7:d9:f2:5e:6b:ad:2e:3e:b6:59:06:72:82:3b:8d:d7:78:96:
4b:70:ea:ce:01:05:c6:cb:7e:69:2c:5e:11:ef:90:a2:b7:ca:
d8:28:b4:e5:18:ec:4b:0b:48:5b:e0:54:85:ae:5e:1f:ad:52:
b1:27:cb:f0:89:9c:c4:dd:bb:bb:d4:60:62:b2:85:e2:62:39:
af:72:a0:d0:3d:29:39:4a:b7:eb:60:2f:0d:72:9d:e7:ad:a9:
6f:4d:5d:1d:cf:f8:41:fa:a2:51:93:c1:78:05:26:55:32:90:
70:2e:c5:54:24:fe:6b:4d:6f:88:e1:97:5c:aa:c0:58:4e:7b:
1c:f8:7b:a7:8c:e8:ec:f2:77:33:1a:53:25:3f:b2:b6:c2:81:
21:c3:37:0f:15:de:9b:e9:93:9b:73:52:6c:58:d0:83:f8:e7:
bc:00:e1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:14:22 2025 by rpki-client