Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json)
Hash identifier: SW9afdisyfzQxM+0cIkKvOmCnHJdKF6IM42lCy7cIuM=
Subject key identifier: E5:C2:BD:98:BB:77:90:B4:E3:07:90:7A:7C:5D:64:75:74:C2:37:82
Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Certificate serial: 0196C53A208D8699D5BA82C9864DF2A1D2D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
Manifest number: 0F14
Signing time: Mon 12 May 2025 16:00:43 +0000
Manifest this update: Mon 12 May 2025 16:00:43 +0000
Manifest next update: Tue 13 May 2025 16:00:43 +0000
Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: x/TdFcBZDbAvMqg1107kQhg+Q5SLXS0gagmGzNnL6F0=)
2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:20:8d:86:99:d5:ba:82:c9:86:4d:f2:a1:d2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d
Validity
Not Before: May 12 16:00:43 2025 GMT
Not After : May 13 16:00:43 2025 GMT
Subject: CN=e5c2bd98bb7790b4e307907a7c5d647574c23782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:b2:21:a1:2c:5d:0b:56:7d:67:74:ec:a4:
c3:68:c7:15:b9:39:5e:11:09:4a:59:69:74:8f:cc:
69:31:bd:20:ab:76:55:4b:f5:42:23:6c:52:9f:38:
2e:7b:90:43:36:23:d1:9c:90:82:03:a2:50:36:9a:
86:b0:99:46:bc:5f:52:50:8b:97:00:34:ce:70:5f:
54:f0:b3:07:62:7e:05:3b:17:1b:ec:5c:15:e4:12:
95:59:4d:01:d1:27:da:2c:12:18:76:dd:1f:13:e3:
75:4a:5f:1c:2b:c2:e0:85:0b:cc:ba:69:db:4c:7d:
e0:7a:17:29:a4:51:4b:ce:f3:a7:89:41:23:5f:fe:
1e:5b:32:76:1e:ec:34:45:12:4e:7e:2e:66:41:ab:
0a:8d:e7:55:32:cf:b8:8a:85:09:2d:3d:92:b5:65:
b1:b6:2a:dc:fc:b9:9d:05:ba:20:06:25:0d:ee:0b:
74:bd:fd:d7:87:ed:dc:9e:7d:a2:76:2c:3a:c2:40:
99:9f:d9:9e:78:b5:9a:66:97:a6:64:b5:bd:c9:a8:
54:d2:8f:85:82:6d:a6:ab:84:a4:bc:9d:6b:ae:d3:
af:54:14:79:f2:ee:03:ad:ff:c5:fd:a7:be:c5:d9:
ba:55:6b:a1:0b:a0:70:b5:85:70:13:d7:6c:47:94:
51:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C2:BD:98:BB:77:90:B4:E3:07:90:7A:7C:5D:64:75:74:C2:37:82
X509v3 Authority Key Identifier:
keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:31:be:0e:37:7e:ae:bf:92:fe:b0:16:75:16:6a:f1:0d:96:
22:64:95:8f:94:2d:66:68:3a:30:1a:e6:27:6a:49:59:87:3a:
2a:cf:af:3d:e4:22:98:ec:38:df:39:17:92:92:3c:99:77:36:
35:22:29:e1:a8:96:80:5a:a7:34:b4:8b:d5:65:6f:87:b1:ec:
e5:d5:cd:15:e9:03:17:38:65:42:9e:01:2f:38:25:d5:6c:fc:
2b:fe:ef:01:8f:46:d6:60:d8:7d:98:6e:fa:8e:3e:cb:f5:6e:
8b:70:63:89:ee:ba:32:8a:ab:06:f4:51:ee:3d:4e:3f:e4:e8:
92:44:4d:3e:e9:77:a6:5c:28:95:aa:7f:38:27:33:f5:ad:ae:
0c:8d:f5:82:f6:d0:f5:d9:ba:f3:fd:a1:c7:d3:6a:62:48:e7:
61:9e:e8:b8:c8:c6:d3:34:af:28:ac:83:76:15:7d:ab:5a:2f:
d5:f6:9d:6d:8b:73:27:19:45:79:a9:3a:ce:ab:0c:9e:5d:02:
26:b6:49:96:75:a3:5e:38:16:7b:e8:31:6a:6a:e1:22:a1:24:
60:4d:8b:ce:cd:5d:f1:c4:4a:a9:d0:58:52:64:5a:02:37:1e:
81:c5:aa:66:9b:32:27:d6:62:26:89:87:b9:cd:da:27:ef:9c:
37:29:9c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:05:51 2025 by rpki-client