Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json)
Hash identifier: wgy1DuHZoArR0lO+ZHZcURb4H6ax3PfRx9gZz8SmCIY=
Subject key identifier: EF:69:D5:BD:1E:20:FF:F9:35:90:84:A0:0A:69:0A:A5:8F:18:33:59
Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Certificate serial: 0196B2FD07511A803AA354539E238CD0F2FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
Manifest number: 0151
Signing time: Fri 09 May 2025 03:00:48 +0000
Manifest this update: Fri 09 May 2025 03:00:48 +0000
Manifest next update: Sat 10 May 2025 03:00:48 +0000
Files and hashes: 1: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: aEsJSXqrMB/9G1gjRqGaTmfxj0yga/nE1Zk0MtEU0So=)
2: uLnIOwRkGxrsBbDo0gQE4-hCZ48.roa (hash: s37fBcagBo3TMxYLMpYCF62YuISi5XxqQMy7wxYlEsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 03:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:fd:07:51:1a:80:3a:a3:54:53:9e:23:8c:d0:f2:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138
Validity
Not Before: May 9 03:00:48 2025 GMT
Not After : May 10 03:00:48 2025 GMT
Subject: CN=ef69d5bd1e20fff9359084a00a690aa58f183359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:be:23:33:05:b3:db:6c:22:3b:b2:dd:83:
ad:db:7c:08:ef:d0:5b:b5:e5:3c:4a:24:8e:00:c8:
ad:97:c8:89:5c:35:6d:10:a6:92:5c:37:9f:96:2c:
f9:15:aa:0e:dc:16:7e:c2:5f:4a:2a:11:b4:15:d3:
93:58:99:11:7c:75:8d:3f:a9:86:ce:66:e4:97:49:
ed:60:dc:6e:73:b2:31:87:66:77:5c:27:e8:53:82:
36:f6:5c:56:a3:8f:01:7d:18:bf:b7:23:65:6c:68:
ef:e3:f1:94:a1:75:bc:fc:b4:d6:89:a6:bb:2e:95:
f6:ef:26:c5:c8:94:9a:4b:b0:4c:26:2b:4f:1f:56:
97:6f:37:56:ed:ab:ce:09:7a:17:b2:49:94:e0:d0:
21:4e:14:5f:3e:8f:c0:0f:b6:a9:63:8d:9a:10:f9:
66:74:65:43:e1:54:20:77:43:7b:33:84:e4:f0:15:
9b:0d:7c:24:af:a5:f6:82:7d:98:62:fb:52:9c:62:
50:68:db:33:2a:ad:e2:fe:56:90:74:72:ac:2c:7a:
86:20:e3:60:ec:8d:cf:8a:c6:54:39:78:2e:86:4a:
46:d0:be:43:77:ed:9f:69:7c:aa:ab:8b:05:a6:7a:
d0:57:a4:6d:d5:a5:d4:29:ac:23:d3:8e:80:c3:6f:
ca:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:69:D5:BD:1E:20:FF:F9:35:90:84:A0:0A:69:0A:A5:8F:18:33:59
X509v3 Authority Key Identifier:
keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:69:ca:17:32:47:6f:3d:41:78:c4:83:59:40:40:75:03:25:
74:8c:03:c8:9a:3b:34:65:56:f1:54:c0:6b:a7:fb:e6:d5:ee:
f9:51:4a:e5:e8:36:82:4f:73:68:a5:98:74:11:1c:15:14:75:
63:6c:dd:80:d4:7c:0b:e6:e6:a7:ba:b6:ae:b9:ef:9b:b5:8a:
de:69:c7:e2:47:00:93:6b:c0:bb:b0:e3:4d:6b:b8:94:66:1b:
4a:c2:32:e7:3b:0a:ac:26:08:42:46:77:63:ab:9c:f9:e0:c5:
3b:c0:3b:5f:1b:fa:cd:4f:f7:40:bb:04:d5:fd:d3:08:56:17:
f4:d6:5c:9c:2c:ec:f4:46:b4:31:fe:7e:dc:d4:48:a2:6f:94:
43:ea:ca:8e:ae:98:c0:3c:f6:6f:32:4b:ab:bc:74:5f:e5:5b:
c8:08:d5:2a:27:1d:9a:ea:7a:9a:3d:94:bd:30:5a:7c:fa:4a:
18:a9:52:7a:5e:c9:74:3d:5d:ba:d5:af:86:0b:97:5d:94:f0:
8c:90:f9:c8:f9:57:70:17:b5:de:5a:1f:ff:86:0c:9f:24:89:
32:b2:b3:f2:b5:c6:e4:bd:f5:df:95:cd:a3:7b:54:68:6c:25:
c0:d5:36:34:27:2e:a4:bc:05:20:ae:ce:0f:8a:ce:10:78:03:
d0:d3:d9:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 11:59:19 2025 by rpki-client