Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
File: h1bSd2jhHZSgu837P7zXQNRaAPQ.mft (raw, json)
Hash identifier: rdhtSjWF2Gt4J31lvX71cHw8UR0hSQ8oR6E9obTrNDE=
Subject key identifier: 05:1B:2B:D6:A6:FE:A3:AC:F7:2B:07:AD:41:95:8D:60:24:07:B9:A4
Authority key identifier: 87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
Certificate issuer: /CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Certificate serial: 0196B3D91519F48E96B4C29DC57E4FCFBF6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
Manifest number: 1011
Signing time: Fri 09 May 2025 07:01:10 +0000
Manifest this update: Fri 09 May 2025 07:01:10 +0000
Manifest next update: Sat 10 May 2025 07:01:10 +0000
Files and hashes: 1: b2XsYiMu1xHQndcNQ0ucXkzeN7E.roa (hash: uYxfaCmhcw362gqaEMF6PdCZbjIYOfXpyFCpshaBqpM=)
2: h1bSd2jhHZSgu837P7zXQNRaAPQ.crl (hash: TtRXLdIyX3iWM4givhuOeufGrGNf86JAG+OtxqViVG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:d9:15:19:f4:8e:96:b4:c2:9d:c5:7e:4f:cf:bf:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8756d27768e11d94a0bbcdfb3fbcd740d45a00f4
Validity
Not Before: May 9 07:01:10 2025 GMT
Not After : May 10 07:01:10 2025 GMT
Subject: CN=051b2bd6a6fea3acf72b07ad41958d602407b9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:e3:1d:86:17:51:8c:ca:33:ae:b8:a4:0f:
ac:b0:3a:ab:cf:bd:02:60:0c:fc:fd:b8:16:bf:07:
fe:1c:ac:84:18:0d:04:85:85:5b:73:13:7a:18:d9:
10:40:79:83:8a:77:b4:cb:65:e4:d7:b4:08:57:a6:
58:57:fb:fc:f0:e5:e6:52:13:61:4a:af:4f:5c:42:
ee:2d:ed:c3:2b:35:b5:f5:95:b3:fb:b2:45:fb:0a:
7a:d6:19:7b:78:53:8a:71:78:cc:15:7b:c6:80:ab:
fd:4b:3f:9b:77:d0:93:60:67:f8:14:d8:a5:24:60:
05:ff:8d:7c:dc:17:89:ee:b6:37:d2:69:d6:b2:1e:
56:ad:e2:66:0f:bb:95:69:18:ad:bf:cc:13:c1:1c:
42:02:a8:ee:cd:49:09:61:0d:37:1b:69:96:96:18:
4b:d5:e9:57:62:d5:c2:cb:f7:a5:73:85:61:2a:71:
bd:62:60:1b:02:8c:ee:b1:a3:fd:3d:77:3e:95:0e:
75:b9:57:a9:8e:5b:5c:d6:8c:c0:85:c9:b0:53:88:
d7:77:d0:75:de:02:1b:e3:a5:68:d0:58:53:19:52:
50:a8:54:61:9f:58:f7:51:e0:65:29:ea:0c:49:ee:
1e:70:a7:b7:3a:23:72:2a:87:df:f2:d1:28:b3:ce:
f0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1B:2B:D6:A6:FE:A3:AC:F7:2B:07:AD:41:95:8D:60:24:07:B9:A4
X509v3 Authority Key Identifier:
keyid:87:56:D2:77:68:E1:1D:94:A0:BB:CD:FB:3F:BC:D7:40:D4:5A:00:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1bSd2jhHZSgu837P7zXQNRaAPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/957bb3-2de5-45cf-acf3-c3a02d7c0697/1/h1bSd2jhHZSgu837P7zXQNRaAPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ed:a6:e8:95:81:89:1a:e0:58:50:18:bd:d2:e8:ae:0b:5d:
7c:75:33:dc:a0:0c:a4:db:df:fc:5c:64:4f:fd:f1:61:6e:16:
59:e3:02:e4:9a:2f:b1:44:9d:1d:73:b4:bc:bf:d7:8c:32:5f:
36:bd:97:30:68:eb:de:9d:45:9d:50:a8:ee:35:48:8c:99:b9:
86:b9:93:c1:ac:59:07:22:3f:75:5a:8e:a9:86:32:01:e7:08:
e2:cd:cf:ba:cb:53:59:5c:91:07:b8:c0:60:54:94:8f:f4:93:
32:72:82:2c:d9:c8:8c:4c:6a:e4:53:b1:80:1d:ac:ec:d5:e9:
3b:88:ee:8f:9b:28:6b:c2:d4:d9:98:e6:fb:aa:f9:3d:56:98:
11:c2:d3:22:e2:95:e9:c9:72:15:7b:7f:8a:86:70:ca:07:6a:
01:57:c6:f5:ee:0e:9f:e5:d7:f3:67:a7:ec:3c:c8:ef:ee:58:
8c:c0:42:3c:44:d7:90:88:8d:80:19:b7:6c:3b:1e:98:f7:7b:
36:a9:cb:bc:12:fd:f8:c1:5e:27:b5:3d:c7:63:f5:79:17:f8:
87:d4:bf:38:84:6a:29:77:3f:6e:7a:33:65:ce:7e:ef:5f:08:
1f:b3:2a:ba:5d:e7:84:7e:a6:11:06:42:4a:54:1e:a7:04:38:
f4:2c:d0:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:37:23 2025 by rpki-client